ThreatFox IOC Database

You are viewing the ThreatFox database entry for domain gin-tne-fahcesmukw.cn-hangzhou.fcapp.run.

Database Entry

IOC ID:	1814524
IOC:	gin-tne-fahcesmukw.cn-hangzhou.fcapp.run
IOC Type :	domain
Threat Type :	botnet_cc
Malware:	Unknown malware
Confidence Level :	Confidence level is moderate (49%)
Is compromised? :	False
ASN:	AS37963 ALIBABA-CN-NET
Country:	CN
First seen:	2026-05-15 13:46:17 UTC
Last seen:	never
UUID:	7ae3c9fc-5042-11f1-b930-42010aa4000a
Reporter	johannes
Reward	5 credits from ThreatFox
Tags:	TencShell
Reference:	https://www.cryptika.com/new-malware-framework-enables-screen-control-browser-artifact-access-and-uac-bypass/

johannes

Attacker-controlled domain, from the Cryptika report "New Malware Framework Enables Screen Control, Browser Artifact Access, and UAC Bypass". See all IOC from that report at https://rosti.dev/reports/nCsnObZs