🚨
Critical Threats Require Immediate Attention
0 Known Exploited Vulnerabilities • 6 Critical CVEs • 0 Active C2 Servers • 0 High-Risk IPs
PATCH NOW
BLOCK IPS
🦠
500
Malware
🎯
0
C2 Servers
🔗
500
Mal URLs
📦
500
Payloads
🔓
100
CVEs
🔐
500
SSL Certs
🔑
97
JA3
☠️
500
ThreatFox
🌐
15
IPs
📊 Data Coverage
Total Collected:
2713
Total IOCs:
2597
CVE References:
489
Display Limit:
100/table
CVEs
100 / 100
100%
URLs
100 / 500
20%
Malware
100 / 500
20%
IPs
15 / 15
100%
Payloads
100 / 500
20%
SSL Certs
100 / 500
20%
JA3
97 / 97
100%
ThreatFox
100 / 500
20%
📤 Exportable IOC Summary (Click to download CSV)
🦠 Top Malware Families
Mirai
396
Unknown Stea...
265
Unknown malw...
93
Mozi
38
Kimsuky
37
AgentTesla
34
ClearFake
32
Formbook
23
☠️ ThreatFox IOC Types
domain
304
url
95
md5_hash
31
sha256_hash
30
sha1_hash
29
ip:port
11
📁 File Types
unknown
507
html
207
elf
184
exe
43
zip
17
js
16
🔐 SSL Blacklist Reasons
Vidar C&C
126
ConnectWise C&C
54
PureHVNC C&C
48
OffLoader C&C
46
ACRStealer C&C
33
RatonRAT C&C
26
🔑 JA3 Malware Types
Tofsee
45
Adware
24
TrickBot
9
Dridex
4
Quakbot
2
Gozi
2
🔓 Vulnerability Intelligence
100 shown / 100 total| CVE ID | Severity | CVSS | EPSS | Percentile | Priority |
|---|---|---|---|---|---|
| CVE-2026-11518 | LOW | 2.1 | 0.39% | 30.4% |
|
| CVE-2026-11517 | HIGH | 7.4 | 0.60% | 43.9% |
|
| CVE-2026-11516 | LOW | 2 | 0.37% | 28.6% |
|
| CVE-2026-9549 | MEDIUM | 4.8 | 0.14% | 3.8% |
|
| CVE-2026-8833 | HIGH | 8.5 | 0.14% | 3.7% |
|
| CVE-2026-8078 | MEDIUM | 4.8 | 0.14% | 3.8% |
|
| CVE-2026-7765 | MEDIUM | 6.3 | 0.19% | 8.5% |
|
| CVE-2026-7186 | HIGH | 8.5 | 0.14% | 3.3% |
|
| CVE-2026-11577 | HIGH | 7.2 | 0.32% | 23.7% |
|
| CVE-2026-11515 | MEDIUM | 5.5 | 0.28% | 19.1% |
|
| CVE-2026-11514 | LOW | 2.1 | 0.20% | 9.9% |
|
| CVE-2026-11513 | LOW | 2.1 | 0.20% | 9.9% |
|
| CVE-2026-11512 | LOW | 2.1 | 0.27% | 18.8% |
|
| CVE-2026-11511 | LOW | 2 | 0.19% | 8.9% |
|
| CVE-2026-50752 | HIGH | 7.4 | 4.25% | 89.7% |
|
| CVE-2026-50751 | CRITICAL | 9.3 | 6.22% | 92.6% |
|
| CVE-2026-47430 | CRITICAL | 9.5 | 0.54% | 41.1% |
|
| CVE-2026-3011 | MEDIUM | 6.4 | 0.20% | 10.0% |
|
| CVE-2026-11569 | MEDIUM | 5.4 | 0.14% | 3.5% |
|
| CVE-2026-11510 | LOW | 2.1 | 0.20% | 9.9% |
|
| CVE-2026-11509 | MEDIUM | 5.3 | 0.19% | 9.0% |
|
| CVE-2026-11508 | LOW | 2.1 | 0.20% | 9.9% |
|
| CVE-2026-11507 | LOW | 2.1 | 0.20% | 9.9% |
|
| CVE-2026-11506 | LOW | 2.1 | 0.20% | 9.9% |
|
| CVE-2026-11505 | LOW | 2.3 | 0.19% | 8.8% |
|
| CVE-2026-11504 | HIGH | 7.4 | 0.47% | 36.6% |
|
| CVE-2026-9506 | HIGH | 8.7 | 0.46% | 36.0% |
|
| CVE-2026-11503 | HIGH | 7.4 | 0.80% | 51.5% |
|
| CVE-2026-11502 | LOW | 1.3 | 0.38% | 29.6% |
|
| CVE-2026-11501 | MEDIUM | 5.5 | 0.41% | 32.7% |
|
| CVE-2026-11500 | LOW | 1.3 | 0.44% | 35.0% |
|
| CVE-2024-56123 | UNKNOWN | -- | -- | -- |
|
| CVE-2024-56122 | UNKNOWN | -- | -- | -- |
|
| CVE-2024-56121 | UNKNOWN | -- | -- | -- |
|
| CVE-2024-56120 | UNKNOWN | -- | -- | -- |
|
| CVE-2026-41724 | HIGH | 8 | 0.20% | 10.0% |
|
| CVE-2026-41723 | HIGH | 8 | 0.27% | 17.7% |
|
| CVE-2026-41722 | HIGH | 8 | 0.27% | 17.7% |
|
| CVE-2026-3238 | HIGH | 7.5 | 2.80% | 84.6% |
|
| CVE-2026-11499 | CRITICAL | 9.3 | 0.61% | 44.3% |
|
| CVE-2026-11498 | HIGH | 8.7 | 0.47% | 36.6% |
|
| CVE-2026-11497 | MEDIUM | 5.5 | 0.43% | 34.3% |
|
| CVE-2026-11495 | LOW | 2.1 | 0.20% | 9.9% |
|
| CVE-2026-11494 | LOW | 2.1 | 0.21% | 11.8% |
|
| CVE-2026-11493 | LOW | 1.3 | 0.22% | 12.8% |
|
| CVE-2026-11492 | LOW | 2.1 | 0.44% | 35.1% |
|
| CVE-2026-11491 | LOW | 1.9 | 0.22% | 12.7% |
|
| CVE-2026-11490 | MEDIUM | 5.5 | 0.27% | 19.0% |
|
| CVE-2026-11489 | MEDIUM | 5.5 | 0.27% | 19.0% |
|
| CVE-2026-11488 | MEDIUM | 5.5 | 0.27% | 19.0% |
|
🌐 Enriched IP Intelligence
15 shown / 15 total| IP Address | Risk Score | GreyNoise | Abuse % | Ports | ISP | TOR |
|---|---|---|---|---|---|---|
| 142.4.6.57 |
|
unknown | 0% | 99312320862087 |
Unified Layer | |
| 162.144.127.197 |
|
unknown | 0% | 99320824432086 |
Unified Layer | |
| 49.212.179.180 |
|
unknown | 0% | 8044322 |
SAKURA Internet Inc. | |
| 194.58.98.196 |
|
unknown | 0% | 8044322 |
Reg.Ru Hosting | |
| 67.213.75.205 |
|
unknown | 0% | 1651884 Ontario Inc. | ||
| 192.73.238.101 |
|
unknown | 0% | RAMNODE | ||
| 51.178.161.32 |
|
unknown | 0% | OVH SAS | ||
| 64.225.35.35 |
|
unknown | 0% | DigitalOcean, LLC | ||
| 195.159.28.230 |
|
unknown | 0% | 99558714380 |
Jpg AS | |
| 93.186.200.154 |
|
unknown | 0% | fast IT Colocation | ||
| 103.61.101.11 |
|
unknown | 0% | 8020008291 |
Calcify It Services ... | |
| 5.9.178.143 |
|
unknown | 0% | 443 |
Closco Ltd | |
| 37.139.2.140 |
|
unknown | 0% | DigitalOcean | ||
| 23.160.192.125 |
|
unknown | 0% | NetInformatik Inc. | ||
| 195.231.69.151 |
|
unknown | 0% | 338922 |
Aruba S.p.A. - Cloud... |
🦠 Malware Samples
100 shown / 500 total| SHA256 | Family | Name |
|---|---|---|
| 0123e5f6cf8bf26734c63909bc01274fd93916fbaa87baf01dfa3848a8aacc87 | Mirai | data_arm5 |
| 4c790f5eb50d081f47c574812aa7aadda3e1519bc6152070943b0057c3468487 | Mirai | e.mpsl |
| 25f73d70600a4e0103f550186a4ae2add18e15a2e4e064e5ae1134abc683014e | Mirai | arm6 |
| 9af3cab9fc4fb9058756e2fa82cf74faa4171668d9c2ce056768a396cca02ee3 | Mirai | i686 |
| 87ea020692d830d5496d829761804838cb00e5f52b8ba3f06e90605e20f7ec93 | Mirai | sh4 |
| 0388bd0daae2d281ec66bc02b9e9ab7792afdacf01e3a52ededdc28ebd4b71d7 | Mirai | x86 |
| dd45c3d9ec75ae9bd89cbdfdce7ec75d0b6522521521ec46967b81df0f155670 | Mirai | ppc |
| 31d68cfc65ff74aea56b55dee1b3f1fad746927958d3e7f2933c78e3c8419e06 | Mirai | m68k |
| 87b29c0e4c00b0dfda7a9bd2d7d44a924f6fcd9c5fae1a838e9b7faa065c3df8 | Mirai | arm5 |
| e205e4af3b35edbc402f73cdb6f95826629743454f72b862e0c58c0d9a0076f8 | Mirai | floyyd.sh |
| bbb6d2fad4a0ca9fa7af8e4938384dd7fd693ae4ffbd2e4ac5c450c5709be3a5 | Mirai | mpsl |
| 93eea5d06446eb96890f5521a463818b7442dfc2deceef3682b4d676bf87daee | Mirai | arm |
| 8b3652814e1b6c91e557755483029eb3acde7ef83ba486577fd043d19c7adeb6 | Mirai | dbg |
| bc7f77cb108bf68eef820a0d10db5eb5706d04aa22c31c7c35f2c049dbd5ba37 | Mirai | mips |
| b69ed137e66ee6a90939454d1840f381f65cf303ce4144cf6312c6047d6354f8 | Mirai | arm7 |
| 147619253c08b9394fad2ebe9e32b6fbdd7133d90a966056ffffd66cada9701a | Mirai | x86_64 |
| 54aaf9737793d344181319f058b1c1abc5946f8c482ffe589a0740fbe82a4fc0 | Mirai | spc |
| 0e4aa46affcf4892ff867e1d3a5f3c19be247aba6f0093e84ccc1d62681e7582 | NetSupport | grace.zip |
| 17f63f27aef64e352975448611840ae32acef7becf81c29f7912674ca8772167 | Mirai | data_x86 |
| 931f5016ab384478a856405f7087401511bd8405a71e058eb31944d7f24a6933 | Mirai | data_x86_64 |
| 8c0a69f9554abefe8ccaba367a00e833bb61e32dc8b6471fdb6f71ffe21441ff | Mirai | data_arm6 |
| 0b6eb1f6e4bbcf863d63292c912779699c51839f46458d0f94cd5e0bfda1128e | Mirai | data_powerpc |
| 14f62053739732d93f517339bc700faa7de9ced2050b9055d71c84108feb577a | AgentTesla | rzdtyigydgthyfgjmuhk.exe |
| a72bcd6d6ccaea1aa2a00b644897f2768e3ae945e962a66e49668b8a8b1a8b9a | Mirai | data_arm4 |
| 402c40bfac55e78f3f04b4a4c8dabd0c3ec576da95e2d932e051a0781ab7032f | njrat | IMG-Orden de compra-20260... |
| 09cf564075e4a500b6df3a3ca263076c47730b28d60c12fc59c7fd4e7464fa85 | AsyncRAT | scandocument20262206.scr |
| fcda75eb7bc30baf64028d34c08a6fdce3d14487e28fa2fa34d0bd43af92b04a | AgentTesla | PO_5778.js |
| 65be1a2c9c01702ceef1fc9f63845983054b415d7c5385e72c80bc9c8657668a | RemcosRAT | Swift Copy 41,5332 HIKf.c... |
| 18c7e2dc3aa3a2d0aa5493eddb3b08e24f21020da05e54a158a15ade67dc9279 | RemcosRAT | 6141.js |
| 1c8e130fdf1bf24f3aa4b2fa8a430285dc21c7be0f92d683a239216ad6fa6811 | Mirai | data_mipsel |
| 4eda2d732a1403938bfd842cba0b5022b5f2bfc08b768c4b012ed0bf6685f517 | Mirai | memory_load.mips |
| 56da46c67458a3d4867234056f5ceb37220353db5420f4f7101ddaf073cdabe6 | Mirai | e.mips |
| 67bf549cc2af64f5de93aaef5339ac083a50232398ac92120680014c82096efd | ConnectWise | ScreenConnect.ClientSetup... |
| a7663397f98e1f860b03f8595b9652c7a9c5b2f107013a889b5c7d150b38d2b7 | QuasarRAT | quasar.exe |
| f7d0e1b80ed48e6a5b46a7ea7090550c284cd61289bc4200cd226b04779307c9 | ConnectWise | ScreenConnect.ClientSetup... |
| 56e40788e87392cbea4328852c9e5cfcf5ab0a96b778a540835b4fb0bd4cb2d1 | ConnectWise | support.client.exe |
| 295b1d35795472012f55ec6f2e8753fc1d4db5f15fd332d6f78c5a22b9efb3d8 | ConnectWise | ScreenConnect.ClientSetup... |
| af3ecfc347087c080111b1e845c7d84a2e2625f6d126a0744c016d63ad74483c | ConnectWise | support.client.exe |
| 57a17538be51fd67c23990096c864f953b32bed6087ad8e0662db2bdcab3c147 | ConnectWise | support.client.exe |
| 4076bc9926135de4a68ab8ef78afb6e06dcec197f1e2e0a14e9430e35d4f42a6 | XWorm | z1001_26EDO00136703616232... |
| 7932a822d7057e61a771669e8176f51af83b34f1ec900c92a9c57291f38d2c56 | Mirai | 7932a822d7057e61a771669e8... |
| 724a40f99cbbb044e6cc1179ad9922257107e0b86cfb9d3c428eb806f7095716 | Prometei | 724a40f99cbbb044e6cc1179a... |
| dae99b4fcbb3ca64c0a1a611f7dffefcceb4d0e800db2800c4e169b911d9d616 | Mirai | pppc |
| c6ac835a35f6343a5cb28862031df4d4b0a4401e379f82ffc050de41da1bdf7d | Mirai | pppc |
| 94649e2369719ae4e2c4b49d6a30f8dfdbb6cc097bffd2ecef6831998300368c | Mirai | ok |
| 624cf70d7a16f5cfff690424ba1daf62c8c407f7aa62e72be9da784c4e714e28 | Gafgyt | wget |
| 21bce6b5ad6a7cdf83ba83060d2d3665876921852879c3519dd027482a172f50 | Gafgyt | tftp |
| 8abe32af404a4ac4b81ddcee7fa36a9f8ce8fff137a6610bc0c82bb5c3bbc08d | Gafgyt | sshd |
| 86e34b74d026e92ffb78ccae015717cf3f1ea198eb3b4c93f59602d2e4473f69 | Gafgyt | ntpd |
| 0e4b967cf400146df784018409c0269c67af58fd64b285a33aec6aaa27479324 | Mirai | parm5 |
🎯 C2 Infrastructure
0 shown / 0 total| IP | Port | Family | Status |
|---|---|---|---|
| No data | |||
🔗 Malicious URLs
100 shown / 500 total| URL | Threat | Status | SURBL | Spamhaus | Tags |
|---|---|---|---|---|---|
| http://123.14.254.102:60758/i | malware_download | online | not listed | not listed | 32-bitelf |
| http://42.239.113.110:55847/i | malware_download | online | not listed | not listed | 32-bitelf |
| https://uuoecnbs.mechanickhodakarami.shop/f7b20024-4a99-404a-8420-e3dc9e0f4594 | malware_download | offline | not listed | not listed | ClearFake |
| http://119.185.240.97:38547/bin.sh | malware_download | online | not listed | not listed | 32-bitelf |
| http://115.50.5.92:57907/i | malware_download | online | not listed | not listed | 32-bitelf |
| http://125.40.113.118:45151/i | malware_download | online | not listed | not listed | 32-bitelf |
| http://42.232.238.130:33808/i | malware_download | online | not listed | not listed | 32-bitelf |
| http://222.139.204.223:49641/bin.sh | malware_download | online | not listed | not listed | 32-bitelf |
| http://91.92.42.28/bins/sh4 | malware_download | online | not listed | not listed | elfmirai |
| http://91.92.42.28/bins/i686 | malware_download | online | not listed | not listed | elfmirai |
| http://91.92.42.28/bins/arm6 | malware_download | online | not listed | not listed | armelf |
| http://91.92.42.28/bins/x86 | malware_download | online | not listed | not listed | elfmirai |
| http://91.92.42.28/bins/ppc | malware_download | online | not listed | not listed | elfmirai |
| http://91.92.42.28/bins/arm | malware_download | online | not listed | not listed | armelf |
| http://91.92.42.28/bins/mpsl | malware_download | online | not listed | not listed | elfmips |
| http://91.92.42.28/bins/floyyd.sh | malware_download | online | not listed | not listed | miraiopendir |
| http://91.92.42.28/bins/arm5 | malware_download | online | not listed | not listed | armelf |
| http://91.92.42.28/bins/m68k | malware_download | online | not listed | not listed | elfm68k |
| http://91.92.42.28/bins/x86_64 | malware_download | online | not listed | not listed | elfmirai |
| http://91.92.42.28/bins/spc | malware_download | online | not listed | not listed | elfmirai |
| http://91.92.42.28/bins/dbg | malware_download | online | not listed | not listed | elfmirai |
| http://91.92.42.28/bins/arm7 | malware_download | online | not listed | not listed | armelf |
| http://91.92.42.28/bins/mips | malware_download | online | not listed | not listed | elfmips |
| http://115.50.5.92:57907/bin.sh | malware_download | online | not listed | not listed | 32-bitelf |
| http://42.239.113.110:55847/bin.sh | malware_download | online | not listed | not listed | 32-bitelf |
| http://123.14.254.102:60758/bin.sh | malware_download | online | not listed | not listed | 32-bitelf |
| http://42.232.238.130:33808/bin.sh | malware_download | online | not listed | not listed | 32-bitelf |
| https://xcioxhpp.masirpayambari.xyz/017e7c95-0403-4b73-aac4-6bc4f5530957 | malware_download | offline | not listed | not listed | ClearFake |
| http://222.137.99.226:35842/i | malware_download | online | not listed | not listed | 32-bitelf |
| http://86.54.82.179/bins/frosty.mips | malware_download | offline | not listed | not listed | botnetmirai |
| http://24.99.31.131:41895/Mozi.m | malware_download | offline | not listed | not listed | botnetmirai |
| http://110.37.95.120:46249/Mozi.a | malware_download | offline | not listed | not listed | botnetmirai |
| http://110.37.30.68:49431/Mozi.a | malware_download | offline | not listed | not listed | botnetmirai |
| http://tube-18.xyz/superplayer.cmd | malware_download | online | listed | spammer_domain | c2-monitor-autodropped-by-amadey |
| https://vid-16-07.vercel.app/?download=1 | malware_download | online | listed | not listed | apkmamont |
| http://103.245.204.42:8490/i | malware_download | online | not listed | not listed | botnethajime |
| https://policework1606.vercel.app/?download=1 | malware_download | online | listed | not listed | apkmamont |
| https://police1606real.vercel.app/?download=1 | malware_download | online | listed | not listed | apkmamont |
| http://31.56.39.60/memory_bin_dir/memory_load.mips | malware_download | online | not listed | not listed | botnetmirai |
| http://110.36.20.85:36978/Mozi.m | malware_download | online | not listed | not listed | botnetmirai |
| http://91.92.242.236/files-129312398/files/file_1aa54dbfab99756a.exe | malware_download | offline | not listed | not listed | c2-monitor-autodropped-by-amadey |
| http://91.92.242.236/files-129312398/files/file_3e952b2ae3899c34.exe | malware_download | offline | not listed | not listed | c2-monitor-autodropped-by-amadey |
| http://91.92.242.236/files-129312398/files/file_ea56972b95adac82.exe | malware_download | offline | not listed | not listed | c2-monitor-autodropped-by-amadey |
| http://91.92.242.236/files-129312398/files/file_81337d63d9d5c258.exe | malware_download | offline | not listed | not listed | c2-monitor-autodropped-by-amadey |
| http://91.92.242.236/files-129312398/files/file_e5f0e058762035a4.exe | malware_download | offline | not listed | not listed | c2-monitor-autodropped-by-amadey |
| http://91.92.242.236/files-129312398/files/file_298a62ccdd240062.exe | malware_download | offline | not listed | not listed | c2-monitor-autodropped-by-amadey |
| http://91.92.242.236/files-129312398/files/file_20f0cbfc975b37a7.exe | malware_download | offline | not listed | not listed | c2-monitor-autodropped-by-amadey |
| http://91.92.242.236/files-129312398/files/file_feba8078a56702f7.msi | malware_download | offline | not listed | not listed | c2-monitor-autodropped-by-amadey |
| http://91.92.242.236/files-129312398/files/file_5838417cf4675a38.exe | malware_download | offline | not listed | not listed | c2-monitor-autodropped-by-amadey |
| http://91.92.242.236/files-129312398/files/file_6e653d7c095f5305.exe | malware_download | offline | not listed | not listed | c2-monitor-autodropped-by-amadey |
📦 URLhaus Payloads (with VirusTotal)
100 shown / 500 total| SHA256 | Family | Type |
|---|---|---|
| f98ea94f705d13e62a6063ad4ecce207c41d94eb83279cb079ee756da4b7b649 | -- | elf |
| 66dbd463376caaa15bb59a3a44b7bf9ad5f7113ecf7a36d0cd938d9694bed9f1 | -- | html |
| 8386aacec42413205afed18d650738ca367dbdc042b53b7c7b83ce8c08c86001 | -- | html |
| 30e1549664a3158e5a4462d64ae45e8aedcfcd96b36986f2b548f4e30aac9c6a | -- | elf |
| f94a0f1621b4fbf5eac30137ab716cccc70f572496578725f5712f825cf43d42 | -- | html |
| 79ae776977e109cd7d3814a88e2164dddf0d88ea1b732cc3f24f5b3749938142 | -- | html |
| ff076d2f723d450f3be8dfd8b65574de20bf75fad0034449815358d62c66c9ba | -- | txt |
| a72edc6f1aac6a0aa374866757d9582e53c2edd7f7f59538d9fbe1ef04d2a530 | -- | html |
| 9b07624aed79aa0b2701165b06750a0628517dca207033dc009fe98f234c9e90 | -- | html |
| 7f351e858f90cc90c50c777258a2872e516b8ea8b01827cd33f17f2d33cb30cd | -- | sh |
| 7e85b36b041acb0e0c639e489c5100a9970efeb2e817c04aea913365dd1d1e91 | -- | html |
| 4293c1d8574dc87c58360d6bac3daa182f64f7785c9d41da5e0741d2b1817fc7 | Mozi | elf |
| 05031d45c2ab744928e1301955e1c9de9265d18351ac6a8bd319b6408282facc | -- | unknown |
| 4293c1d8574dc87c58360d6bac3daa182f64f7785c9d41da5e0741d2b1817fc7 | Mozi | elf |
| 69b4fdf4dc33089f3d76753242d2cffa717b3bcdec738a86de1e7e154dc46c40 | Mirai | elf |
| b3f80730160af280bf994474fa9098085742c9ddc6115f98fdcbd0ac66a78eb8 | -- | js |
| ff076d2f723d450f3be8dfd8b65574de20bf75fad0034449815358d62c66c9ba | -- | txt |
| 4293c1d8574dc87c58360d6bac3daa182f64f7785c9d41da5e0741d2b1817fc7 | Mozi | elf |
| 4293c1d8574dc87c58360d6bac3daa182f64f7785c9d41da5e0741d2b1817fc7 | Mozi | elf |
| cc8975251256d73e8e9aec87e2ace5c6d402d4433f1ca9ad514124780cdd87f7 | -- | html |
| ff076d2f723d450f3be8dfd8b65574de20bf75fad0034449815358d62c66c9ba | -- | txt |
| 214054a3008c163e0df6cc504d83171ebec02538f97766392be318befb30011f | -- | html |
| d8a443f4214bffb4c10dec1646ec03d27fe04403d68df02211d1ab0212d03817 | -- | html |
| 4293c1d8574dc87c58360d6bac3daa182f64f7785c9d41da5e0741d2b1817fc7 | Mozi | elf |
| 765092eceaca4f7a8580755386f4a7e569cc6513450d58d4f6db8ee2e0a88744 | -- | exe |
| c20667ea908574a24efc35b78093d40b7d42bcf591834409db6c72960d11e597 | -- | html |
| 4293c1d8574dc87c58360d6bac3daa182f64f7785c9d41da5e0741d2b1817fc7 | Mozi | elf |
| 4293c1d8574dc87c58360d6bac3daa182f64f7785c9d41da5e0741d2b1817fc7 | Mozi | elf |
| 661e6274a532ea15a94761cd3c4df6566bc9ff5eaff854efa81b25011dc676a0 | -- | html |
| 16dfa0c87ff3966bee7c8bbbec8ed28d3c6e5c3b460d3a8d7710aa257baccd29 | -- | js |
| 0411287655a03474484e579014a664e34f6039bedd896a97a2d06d8676185bb3 | Mirai | elf |
| b670e420e9170da6a2344e8ab376bea09ac8e57f7e1464a7a8a45ba571176519 | -- | html |
| 495692b422ac48b9e2e8b6bf1fe3f260bf53714529547ebb6cc0b442ee07c4f1 | -- | html |
| 518658b420b891ccf052a1b6fb02bea6da10e43c8c82f96a12688cbc68da31b4 | -- | html |
| 0efa32dae37ca2f04ddb108bb20f662414ded7f1a3bbeb7bd5be7c9b62a75578 | -- | html |
| dfcca5f0e65f2b7550fcf8c4588ab0f62a424dbc3f2cb5b61ff922c9b9a167f9 | -- | html |
| 0123e5f6cf8bf26734c63909bc01274fd93916fbaa87baf01dfa3848a8aacc87 | Mirai | elf |
| 4c790f5eb50d081f47c574812aa7aadda3e1519bc6152070943b0057c3468487 | Mirai | elf |
| 9af3cab9fc4fb9058756e2fa82cf74faa4171668d9c2ce056768a396cca02ee3 | Mirai | elf |
| 87ea020692d830d5496d829761804838cb00e5f52b8ba3f06e90605e20f7ec93 | Mirai | elf |
| 25f73d70600a4e0103f550186a4ae2add18e15a2e4e064e5ae1134abc683014e | Mirai | elf |
| 53e78a3715dde2cb919e2a932a54610bb0158e52000c63b2eb1b68d20a18f2de | -- | zip |
| 0388bd0daae2d281ec66bc02b9e9ab7792afdacf01e3a52ededdc28ebd4b71d7 | Mirai | elf |
| dd45c3d9ec75ae9bd89cbdfdce7ec75d0b6522521521ec46967b81df0f155670 | Mirai | elf |
| 348a82709d9ddec8cd56b8b2c55d7793bb99c2ec0d52cb0c388e7485178486ce | Mirai | elf |
| 53e78a3715dde2cb919e2a932a54610bb0158e52000c63b2eb1b68d20a18f2de | -- | zip |
| 87b29c0e4c00b0dfda7a9bd2d7d44a924f6fcd9c5fae1a838e9b7faa065c3df8 | Mirai | elf |
| bbb6d2fad4a0ca9fa7af8e4938384dd7fd693ae4ffbd2e4ac5c450c5709be3a5 | Mirai | elf |
| 31d68cfc65ff74aea56b55dee1b3f1fad746927958d3e7f2933c78e3c8419e06 | Mirai | elf |
| e205e4af3b35edbc402f73cdb6f95826629743454f72b862e0c58c0d9a0076f8 | Mirai | sh |
☠️ ThreatFox IOCs
100 shown / 500 total| IOC | Type | Malware | Confidence | Threat |
|---|---|---|---|---|
| uuoecnbs.mechanickhodakarami.shop | domain | ClearFake |
|
payload_delivery |
| img-static.wearepowerplay.com | domain | FAKEUPDATES |
|
botnet_cc |
| xcioxhpp.masirpayambari.xyz | domain | ClearFake |
|
payload_delivery |
| 45.59.163.198:1244 | ip:port | BeaverTail |
|
botnet_cc |
| abelmomaroc.com | domain | Unknown Stealer |
|
payload_delivery |
| abilitaseguros.com.br | domain | Unknown Stealer |
|
payload_delivery |
| ac4hosting.com | domain | Unknown Stealer |
|
payload_delivery |
| afroskin.id | domain | Unknown Stealer |
|
payload_delivery |
| activationlbanmastercredit.info | domain | Unknown Stealer |
|
payload_delivery |
| activeiman.com | domain | Unknown Stealer |
|
payload_delivery |
| chiltonlabs.org | domain | Unknown Stealer |
|
payload_delivery |
| clauscreations.nl | domain | Unknown Stealer |
|
payload_delivery |
| https://granitequill.top/token/permissio... | url | SmartApeSG |
|
payload_delivery |
| granitequill.top | domain | SmartApeSG |
|
payload_delivery |
| https://granitequill.top/token/scope-req... | url | SmartApeSG |
|
payload_delivery |
| https://granitequill.top/token/signin-sc... | url | SmartApeSG |
|
payload_delivery |
| 2rbo.com.mx | domain | Unknown Stealer |
|
payload_delivery |
| wrlunpmj.masaelmohandesi.xyz | domain | ClearFake |
|
payload_delivery |
| ab950zja.testpaye.xyz | domain | ClearFake |
|
payload_delivery |
| brcorni.mabaninazari.shop | domain | ClearFake |
|
payload_delivery |
| xlyvz7lr.motuntakhasosi.store | domain | ClearFake |
|
payload_delivery |
| m7nohnc7.modiriyatnikbakht.xyz | domain | ClearFake |
|
payload_delivery |
| jfxdrqqn.maharatmodiran.xyz | domain | ClearFake |
|
payload_delivery |
| www.mavimetal.com.co | domain | Unknown Stealer |
|
payload_delivery |
| www.sabine-kley.com | domain | Unknown Stealer |
|
payload_delivery |
| www.securepath.tech | domain | Unknown Stealer |
|
payload_delivery |
| www.smkn1darulkamal.sch.id | domain | Unknown Stealer |
|
payload_delivery |
| www.thmonofuku.lat | domain | Unknown Stealer |
|
payload_delivery |
| www.tr88.uno | domain | Unknown Stealer |
|
payload_delivery |
| wwwlows-survey.info | domain | Unknown Stealer |
|
payload_delivery |
| yacht-trash.com | domain | Unknown Stealer |
|
payload_delivery |
| yourmusicboost.com | domain | Unknown Stealer |
|
payload_delivery |
| volunteersnetworkofkenya.org | domain | Unknown Stealer |
|
payload_delivery |
| voyaimpresionarte.com | domain | Unknown Stealer |
|
payload_delivery |
| wbworkshops.com | domain | Unknown Stealer |
|
payload_delivery |
| webeffa.com | domain | Unknown Stealer |
|
payload_delivery |
| webexpress.cl | domain | Unknown Stealer |
|
payload_delivery |
| wellzonebuildingcleaningservicesco.com | domain | Unknown Stealer |
|
payload_delivery |
| westlandconsultants.com | domain | Unknown Stealer |
|
payload_delivery |
| wiltumbusiness.com | domain | Unknown Stealer |
|
payload_delivery |
| withyou.ma | domain | Unknown Stealer |
|
payload_delivery |
| worldnews24.xyz | domain | Unknown Stealer |
|
payload_delivery |
| www.citymoversmagazine.com.ng | domain | Unknown Stealer |
|
payload_delivery |
| www.corterosantico.com | domain | Unknown Stealer |
|
payload_delivery |
| www.danialrad.com | domain | Unknown Stealer |
|
payload_delivery |
| www.elficarum.com | domain | Unknown Stealer |
|
payload_delivery |
| www.geekpsychologyseries.com | domain | Unknown Stealer |
|
payload_delivery |
| www.itinera.healthcare | domain | Unknown Stealer |
|
payload_delivery |
| www.keizalinnews.web.id | domain | Unknown Stealer |
|
payload_delivery |
| www.kushalcardiaccare.com | domain | Unknown Stealer |
|
payload_delivery |
🔐 SSL Blacklist
100 shown / 500 total| SHA1 Fingerprint | Reason | Listed |
|---|---|---|
| e313dded93cdf3b45d590ed15e2e0e0fef620a71 | ACRStealer C&C | 2026-06-16 12:30:17 |
| 59f0554dda32cbf5b5b5b08fe508480d81172f2d | Vidar C&C | 2026-06-16 12:02:38 |
| 3c94f5e78cc03430f78033b240e6c065c5937c6a | Vidar C&C | 2026-06-16 12:02:18 |
| 4b2bfe2a2c3d4ed1d3995d5006d4a395469c33fe | ConnectWise C&C | 2026-06-16 12:01:30 |
| 0ebf5398afb45300a7c1688c14f80a795b701945 | ConnectWise C&C | 2026-06-16 12:00:58 |
| 19a91358c182211dbf4f90a148755a47fbfe79c9 | ConnectWise C&C | 2026-06-16 12:00:13 |
| b8bc17cde99ce9ebb205c3968c6b870d3154ef40 | ConnectWise C&C | 2026-06-16 11:59:33 |
| 8f15e3e07c691ae493b4059222638003e0bf0a9b | OffLoader C&C | 2026-06-16 11:58:53 |
| 54fdaf6635064f8d7e6f84b1118eb60edcc697e8 | Vidar C&C | 2026-06-16 09:18:15 |
| 22e028ce259e7584f4573e44594eced4214e6606 | DeerStealer C&C | 2026-06-15 17:02:45 |
| eb96b9eb03a776f21ad2937432c58fbc72efbabc | Vidar C&C | 2026-06-15 16:34:38 |
| c29edff70ee75b8d341d6d13dbcd40e63f30cfbe | CobaltStrike C&C | 2026-06-15 16:33:26 |
| cc2c6a3d1b7c955eeff33e6ae387dae90bce02b6 | KongTuke C&C | 2026-06-15 16:32:39 |
| b6f62f51d751b564304a7dfddc1eefa21af87459 | Amadey C&C | 2026-06-15 16:32:36 |
| 9e21649650307360f41b165d054d97889620c3fa | Vidar C&C | 2026-06-15 16:32:08 |
| 72d548ec5583927298e50ad46fba5ecd4145a04b | ConnectWise C&C | 2026-06-15 16:31:50 |
| 8d79c837a2368109e8af602105399674c699fdcf | ConnectWise C&C | 2026-06-15 16:31:46 |
| c58e2e4f5b271eb8b1599a58ad883e3c2e333032 | KongTuke C&C | 2026-06-15 16:29:14 |
| fad1aa4c3f36fab0335108ddc93772f10758e780 | Vidar C&C | 2026-06-15 16:28:30 |
| 715dd75b296c7dc50f702a0f224955077ea17b8a | ConnectWise C&C | 2026-06-15 16:27:47 |
| 29d07b943fc8b78b78ff98965a5970e34f53d8fe | ConnectWise C&C | 2026-06-15 16:27:17 |
| c70762fc7fe08cfe234430d725d939f054684fda | ConnectWise C&C | 2026-06-15 16:26:51 |
| 11384bd3145571afaa6220f38fa51d43e34da326 | ConnectWise C&C | 2026-06-15 16:26:45 |
| acc6ad5a01d81c7676b1368b446ed1bfeb7a6d18 | ConnectWise C&C | 2026-06-15 16:25:31 |
| b72406daaed2726e6c2ebaa24f6708c6bb20ee1f | ConnectWise C&C | 2026-06-15 16:24:36 |
| 9f6fa5ad26b8d0355c7e92c3ed52319e03072745 | ConnectWise C&C | 2026-06-15 16:23:04 |
| 029c10f64fa87730734af7c67b6651c128cd13d6 | ConnectWise C&C | 2026-06-15 16:22:37 |
| 62f5d886c34cffea5d8f60f0f95b4ba640ba73ed | ConnectWise C&C | 2026-06-15 16:17:50 |
| 179d58746ed8c7942d8fbb8c96f361da884694b1 | ConnectWise C&C | 2026-06-15 16:16:45 |
| 5e5fda812857febb23cccc41195c3f5ef68db16e | ConnectWise C&C | 2026-06-15 16:13:05 |
| 39cb09b8a95d3c86193c867d52bedc2f60826637 | ConnectWise C&C | 2026-06-15 16:12:09 |
| 31d9584d4f274382e632d947458813b59950e125 | ConnectWise C&C | 2026-06-15 16:11:30 |
| f2695207db456e19374ced7d508ab870e173b523 | ConnectWise C&C | 2026-06-15 16:10:48 |
| 226accb652736c33451ff0a7e06c8db3a51da9ff | ConnectWise C&C | 2026-06-15 16:10:00 |
| 6e57498581143836a6309db80af63f26d26bbfb5 | ConnectWise C&C | 2026-06-15 16:08:07 |
| ea135d924c08963acf4f8fdf909098b610ea64f8 | ConnectWise C&C | 2026-06-15 16:07:36 |
| a40d226e544e32539f138f5f5ea56b95d78d3a5c | ConnectWise C&C | 2026-06-15 16:06:44 |
| 2499ae4345400c30f707d026ca6a6ca6d2e0f088 | ConnectWise C&C | 2026-06-15 16:06:02 |
| dcf3ba3e8806b237038fe6da72d7d7bdf57f3929 | RatonRAT C&C | 2026-06-15 16:05:42 |
| 07b9cc5297fa301794171aadd1f6bb28dafe1362 | Vidar C&C | 2026-06-15 16:05:34 |
| c23e34d6f2e426e788cc39d7330ac1c6f105f94a | RatonRAT C&C | 2026-06-15 15:56:20 |
| 42e876e393fbb0039ec7923465179a4948f08792 | RatonRAT C&C | 2026-06-15 15:56:08 |
| 159aa5349f1094216b5ec24334c9a4ea25c006f3 | Vidar C&C | 2026-06-15 15:55:37 |
| 4a7fadf57b9328d55c83105aaa8c6a4678e6fc7b | Vidar C&C | 2026-06-15 15:47:21 |
| c25b3f592815f9c56d8daaadc6de1d2561954155 | RatonRAT C&C | 2026-06-15 15:46:37 |
| a5c8dbc58d92a5fd1f8ae7b22e6b6fefc6f28220 | CobaltStrike C&C | 2026-06-15 15:45:35 |
| 031af28814511239c0172b71c2c5092660676632 | OffLoader C&C | 2026-06-15 15:45:20 |
| 7c2f90bc6ce35e24576174cd26e2e4f5ecaf97fe | PureHVNC C&C | 2026-06-15 15:42:56 |
| bbb88b3ea65ab18c6a1f5d8c4f6f156dc8182d46 | PureHVNC C&C | 2026-06-15 15:42:42 |
| 2beac2ee8b2fe7625d4de9f5381d37f200965f91 | LummaStealer C&C | 2026-06-15 15:31:41 |
🔑 JA3 Fingerprints
97 shown / 97 total| JA3 Hash | Reason | First Seen |
|---|---|---|
| b386946a5a44d1ddcc843bc75336dfce | Dridex | 2017-07-14 18:08:15 |
| 8991a387e4cc841740f25d6f5139f92d | Adware | 2017-07-14 19:02:03 |
| cb98a24ee4b9134448ffb5714fd870ac | Dridex | 2017-07-14 19:48:28 |
| 1aa7bf8b97e540ca5edd75f7b8384bfa | TrickBot | 2017-07-14 20:23:38 |
| 3d89c0dfb1fa44911b8fa7523ef8dedb | Adware | 2017-07-15 04:23:45 |
| bc6c386f480ee97b9d9e52d472b772d8 | Adware | 2017-07-15 10:57:38 |
| 8f52d1ce303fb4a6515836aec3cc16b1 | TrickBot | 2017-07-15 19:05:11 |
| d6f04b5a910115f4b50ecec09d40a1df | Dridex | 2017-07-15 19:42:24 |
| 35c0a31c481927f022a3b530255ac080 | Tofsee | 2017-07-15 19:43:19 |
| e330bca99c8a5256ae126a55c4c725c5 | Adware | 2017-07-15 19:59:29 |
| d551fafc4f40f1dec2bb45980bfa9492 | Adware | 2017-07-15 19:59:29 |
| 83e04bc58d402f9633983cbf22724b02 | Adware | 2017-07-16 01:32:03 |
| b8f81673c0e1d29908346f3bab892b9b | Adware | 2017-07-16 01:32:03 |
| 70722097d1fe1d78d8c2164640ab6df4 | Tofsee | 2017-07-16 02:39:08 |
| 9c2589e1c0e9f533a022c6205f9719e1 | Adware | 2017-07-16 08:37:17 |
| 849b04bdbd1d2b983f6e8a457e0632a8 | Adware | 2017-07-16 08:37:17 |
| 16efcf0e00504ddfedde13bfea997952 | Adware | 2017-07-16 19:45:45 |
| 4d7a28d6f2263ed61de88ca66eb011e3 | Tofsee | 2017-07-16 21:20:29 |
| 550dce18de1bb143e69d6dd9413b8355 | Adware | 2017-07-16 22:17:20 |
| c50f6a8b9173676b47ba6085bd0c6cee | TrickBot | 2017-07-16 22:38:41 |
| 590a232d04d56409fab72e752a8a2634 | Tofsee | 2017-07-18 18:53:24 |
| 51a7ad14509fd614c7bb3a50c4982b8c | JBifrost | 2017-07-19 07:28:19 |
| 96eba628dcb2b47607192ba74a3b55ba | Tofsee | 2017-07-19 18:53:48 |
| df5c30e670dba99f9270ed36060cf054 | Tofsee | 2017-07-20 17:44:07 |
| 098f55e27d8c4b0a590102cbdb3a5f3a | Adware | 2017-07-21 09:52:01 |
| 29085f03f8e8a03f0b399c5c7cf0b0b8 | Adware | 2017-07-22 14:07:36 |
| 46efd49abcca8ea9baa932da68fdb529 | Adware | 2017-07-22 14:07:36 |
| d7150af4514b868defb854db0f62a441 | Tofsee | 2017-07-23 09:39:24 |
| 03e186a7f83285e93341de478334006e | Tofsee | 2017-07-24 18:17:14 |
| 3cda52da4ade09f1f781ad2e82dcfa20 | Quakbot | 2017-07-30 18:41:36 |
| b13d01846ad7a14a70bf030a16775c78 | Adware | 2017-08-08 07:12:49 |
| 1543a7c46633acf71e8401baccbd0568 | Tofsee | 2017-08-08 21:32:28 |
| 1d095e68489d3c535297cd8dffb06cb9 | Tofsee | 2017-08-12 19:56:28 |
| 698e36219f3979420fa2581b21dac7ec | Adware | 2017-08-28 12:20:47 |
| 93d056782d649deb51cda44ecb714bb0 | Adware | 2017-08-28 12:20:47 |
| 1712287800ac91b34cadd5884ce85568 | TorrentLocker | 2017-08-28 16:01:59 |
| 5e573c9c9f8ba720ef9b18e9fce2e2f7 | Adware | 2017-08-30 13:44:56 |
| f6fd83a21f9f3c5f9ff7b5c63bbc179d | Adware | 2017-10-20 08:03:21 |
| 92579701f145605e9edc0b01a901c6d5 | Adware | 2017-10-23 00:10:48 |
| a61299f9b501adcf680b9275d79d4ac6 | Tofsee | 2017-11-04 18:03:59 |
| b2b61db7b9490a60d270ccb20b462826 | Adware | 2017-11-14 20:12:03 |
| 7dcce5b76c8b17472d024758970a406b | Tofsee | 2017-11-22 12:42:46 |
| 534ce2dbc413c68e908363b5df0ae5e0 | TrickBot | 2017-12-22 09:36:21 |
| fb00055a1196aeea8d1bc609885ba953 | TrickBot | 2018-01-01 22:49:25 |
| a50a861119aceb0ccc74902e8fddb618 | Tofsee | 2018-01-02 08:16:23 |
| e7643725fcff971e3051fe0e47fc2c71 | Tofsee | 2018-01-31 08:06:13 |
| 7c410ce832e848a3321432c9a82e972b | Tofsee | 2018-01-31 20:04:25 |
| da949afd9bd6df820730f8f171584a71 | Tofsee | 2018-02-03 05:19:37 |
| 906004246f3ba5e755b043c057254a29 | Tofsee | 2018-03-11 08:25:38 |
| fd80fa9c6120cdeea8520510f3c644ac | Tofsee | 2018-03-11 09:34:30 |