ThreatFox IOC Database

You are viewing the ThreatFox database entry for url https://velvetcrossing.top/profile/callback-schema.js.

Database Entry

Add tag Delete this IOC  Report False Positive Export IOC (JSON)    Export IOC (CSV)
IOC ID:1836332
IOC: https://velvetcrossing.top/profile/callback-schema.js
IOC Type :url
Threat Type :payload_delivery
Malware: SmartApeSG
Malware alias:HANEYMANEY, ZPHP
Confidence Level : Confidence level is high (100%)
Is compromised? : True
ASN:AS213230 HETZNER-CLOUD2-AS
Country:- DE
First seen:2026-06-23 14:13:50 UTC
Last seen:never
UUID:8f44c77e-6f04-11f1-97fa-42010aa4000a
Reporter monitorsg
Reward 5 credits from ThreatFox
Tags:SmartApeSG
Reference: https://infosec.exchange/@monitorsg/116799575032383410

Avatar
monitorsg
hXXps://ibharcan[.]com/q (injected) --> hXXps://velvetcrossing[.]top/profile/callback-schema.js --> hXXps://velvetcrossing[.]top/profile/private-sessionstore --> hXXps://velvetcrossing[.]top/profile/logout-state.js (clickfix)