ThreatFox IOC Database

You are viewing the ThreatFox database entry for url https://nama-belakang.nebao.icu/statistics/discover.txt.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1815072
IOC: https://nama-belakang.nebao.icu/statistics/discover.txt
IOC Type :url
Threat Type :botnet_cc
Malware: Unknown malware
Confidence Level : Confidence level is moderate (49%)
Is compromised? : False
ASN:AS13335 CLOUDFLARENET
Country:- US
First seen:2026-05-15 15:58:35 UTC
Last seen:never
UUID:93ffb05c-5076-11f1-b930-42010aa4000a
Reporter johannes
Reward 5 credits from ThreatFox
Reference: https://www.cryptika.com/hackers-abuse-scheduled-tasks-to-maintain-persistence-in-frostyneighbor-attacks/

Avatar
johannes
Cobalt Strike beacon endpoint, from the Cryptika report "Hackers Abuse Scheduled Tasks to Maintain Persistence in FrostyNeighbor Attacks". See all IOC from that report at https://rosti.dev/reports/BdhWYmer