Reconnecting to live updates…

Infrastructure of Interest: High Confidence Detection

Severity: mediumType: campaign

These indicators of compromise (IOCs) were identified through LevelBlue Labs' proprietary collection and threat hunting processes, leveraging AI-driven heuristics to detect anomalous patterns, behavioral analysis of malicious activity, and cross-referenced intelligence from endpoint telemetry and external sources. Use this data to enhance detection rules, block malicious infrastructure, or correlate with existing incident investigations.

AI Analysis

Technical Summary

The provided information describes a threat intelligence report titled "Infrastructure of Interest: High Confidence," issued by AlienVault OTX General and derived from LevelBlue Labs' proprietary threat hunting and AI-driven heuristics. The report identifies certain indicators of compromise (IOCs) linked to malicious infrastructure, detected through behavioral analysis, anomaly detection, and correlation with endpoint telemetry and external intelligence sources. However, the report lacks specific technical details such as affected software versions, adversary attribution, concrete IOCs, or exploit mechanisms. It is characterized as a campaign-level threat with medium severity but without known exploits in the wild or patch information. The primary value of this intelligence lies in enhancing detection rules, blocking malicious infrastructure, and supporting incident investigations by correlating these IOCs with existing data. The absence of detailed technical indicators or affected products limits the ability to precisely define the threat vector or attack methods. Nonetheless, the use of AI-driven heuristics and cross-source telemetry suggests a sophisticated approach to identifying potentially malicious infrastructure used in cyber campaigns, which could be leveraged by threat actors for command and control, data exfiltration, or other malicious activities.

Potential Impact

For European organizations, the impact of this threat depends largely on the nature and targeting of the malicious infrastructure identified. Since the report does not specify affected systems or sectors, the potential impact is generalized. If the infrastructure is used for command and control or delivery of malware, organizations could face risks including data breaches, operational disruption, or espionage. The medium severity rating indicates a moderate risk level, suggesting that while exploitation is not currently widespread or highly destructive, the presence of such infrastructure could facilitate future attacks. European entities with extensive digital footprints or those in critical sectors (finance, energy, government) could be at risk if their networks interact with or are targeted by this infrastructure. The lack of known exploits in the wild reduces immediate urgency but does not eliminate the threat, as adversaries may leverage this infrastructure in evolving campaigns.

Mitigation Recommendations

Given the limited technical details, mitigation should focus on proactive threat intelligence integration and network hygiene. European organizations should: 1) Integrate the provided IOCs into security information and event management (SIEM) and endpoint detection and response (EDR) systems to enhance detection capabilities. 2) Employ network traffic analysis to identify and block communications with known malicious infrastructure. 3) Maintain updated threat intelligence feeds and collaborate with information sharing organizations such as CERT-EU and sector-specific ISACs to receive timely updates. 4) Conduct regular threat hunting exercises leveraging AI and behavioral analytics to detect anomalous activities potentially linked to this infrastructure. 5) Harden network perimeters and enforce strict egress filtering to prevent unauthorized outbound connections. 6) Educate security teams on interpreting and operationalizing threat intelligence reports, especially those with limited explicit indicators. These steps go beyond generic advice by emphasizing intelligence-driven detection and proactive network defense tailored to the nature of infrastructure-based threats.

Affected Countries

Germany, France, United Kingdom, Netherlands, Italy, Spain, Poland

Indicators of Compromise

domain: medienparadies.com
domain: adlsafcprotcctcd.com
domain: adsynnptotic.com
domain: 2d8gqaigz67duiawfhx4nmtiakmf3.ve
domain: atxuormpg.com
domain: 2sloknynd40uj4qumwjjmnfebtk08.cy
domain: 5j1mshnzy3nh0pf1sobwv5qanwzq5.mg
domain: 4isl26kravnlkmqjivbfkrthegfhr.tl
domain: arjxsxujcs.info
domain: aicez.com
domain: 7r0knuzozmkyszvzp6thyjslellt9.ni
domain: adsynnptotlc.com
domain: avxuifhoze.net
domain: ayhxpmixtzgwjkfpi4hr0h48iu8y0.km
domain: axukcdja.net
domain: bacxhelorboy.com
domain: 7uerfmx70jbqdg1pqsie3h4uqcgr4.th
domain: 51tfyqgwraown3bdf6fnxpogtohyf.am
domain: bevbjebnhxqu.xyz
domain: bjdcekvif.org
domain: 3qqppwwyr8fkkylw2hltetgvf0dbb.nz
domain: bmtgdsgwyv.info
domain: 3ogg5mbfc2p9lpxkgawrfhkhjkzud.ba
domain: bwfzzfze.com
domain: bhjdnbxddat.net
domain: cchmj.biz
domain: cmkqokad.info
domain: crkfj.info
domain: cvcrcsttcclh.net
domain: dcqzpwbvvys.cn
domain: djpiudnpex.cc
domain: diekqzhzilk.net
domain: brekkyinmybed.com
domain: dkshayef.cn
domain: dm4gxce0doniz7skk1k9kel1lkfa8.ec
domain: cqhikshunncrp9tp0zqvmnd6n7a7h.ye
domain: doubicvcrify.com
domain: cloublcvcrify.com
domain: dwswbemtay.info
domain: dqwwoskwr.cc
domain: dqwfonluwl.ws
domain: eaucxdlbxicakrbjzgmsnl0d6aief.by
domain: edbgthtal.info
domain: cvcrcstteclh.net
domain: dvtehdhphcy.com
domain: dqvhevkiuds.net
domain: enjyiti2emi9qnwwoxu6t96sf8dzl.bf
domain: ehdpxlcb.biz
domain: ephdseahq.xyz
domain: erppgazqbw.info
domain: exidovlaxzw.org
domain: f02eym8ifmzl6wggpi93bf7y9qboo.hn
domain: ewueipbnek.cc
domain: faaiowuancz.biz
domain: eutbznmkfoo.com
domain: fdsnwenks.info
domain: ffzgnqbog.info
domain: fhkdiwszhvi.com
domain: doulblevcrify.com
domain: fcziorwb.info
domain: foyxcrvcio.info
domain: fruxz.biz
domain: fxgtisdxoqs.org
domain: fxmoulyw.xyz
domain: gdjwipdpv.info
domain: eydlndverei.cn
domain: gooqletaqrranaqer.com
domain: gooqletaqserv1ces.com
domain: gshvwiaoa.com
domain: gv8ekmcd4hxyhtzdshvg8mcsbjeji.ca
domain: gvtiizuogw.cn
domain: helt4jjie62lmdi1efo462lk1slu2.dz
domain: heuwvewyfb.org
domain: hfuxbmzln.com
domain: hnxbgsnq.info
domain: huulc.info
domain: hsnyn084zg4k0uhfzb3qmadxmtifk.pk
domain: hvqjlvkpxfj.biz
domain: hvmjktrpoog.net
domain: fontawcsorrc.com
domain: idn6pt1yrveglga34hxlti1g1q6jd.bf
domain: hzzmkuqgy.net
domain: ialmaqhbjg.org
domain: ikcwlqprfku.net
domain: imdiamcxprcss.com
domain: fnbbon3pwtgty8clrgrl4ph2yaosj.ru
domain: inixtxyajbdsfhu3klnshwmesgl8n.km
domain: imrvvorldvvidle.com
domain: irwjr71fgpgnimcs7pqu9wtnprt6a.rw
domain: iuolvbjvkx.cn
domain: jgzrgwaiwnut6nds3wv95it4r0z25.ci
domain: jljuxzkjljl.biz
domain: jowhf.org
domain: jqausod.ws
domain: jqdneoahjlo.ws
domain: jmuoqggi.biz
domain: jqipdfsltu.com
domain: jeszdiqt.biz
domain: juysqudhjre.xyz
domain: jqjimqma.cn
domain: karqvumxzaz.info
domain: kfvfiqkihnz.info
domain: khbjzb.info
domain: kn54nawxeh88grj7fmi7c40jmmgpc.mv
domain: jednorazovka.com
domain: iprcdlictivc.com
domain: ktxij.biz
domain: ku4dstnkdqasmmsycdk0yuflzmser.sx
domain: i3zemkiqsvdbcxeosvf5kzskq0bwt.fr
domain: kxywguhj.net
domain: lcjrg.info
domain: leaqucofleqends.com
domain: lexiconkids.com
domain: lirlcshrirlc.net
domain: livcadcxchamger.com
domain: lksmalvzdgi.info
domain: ljfdhuyv.info
domain: llnikshrlnik.net
domain: lfdzmfgohhk.org
domain: lssazmz.biz
domain: lwdqhcidit.org
domain: lwnczyestz.info
domain: lzikn5fvfexacz2ruuvqicdisikb4.me
domain: jypqjobnp.info
domain: marddhngdqia6n6wawxsegkx7w943.ie
domain: kej75dkm05noda1ymmqhdg6uglsdx.so
domain: mguflgrmtu.cn
domain: mjrqk.biz
domain: mmlbjslpu.xyz
domain: mjwgsr.org
domain: mwuqefgma.biz
domain: n6lxnxcxyxjvyvmh4hzwtex956zl9.aw
domain: nfsudpmarjs.com
domain: neczyefa.org
domain: njqmxbk.biz
domain: nkonksusz1dnvjslpzbrrrl4gncxi.ng
domain: noqjqcfjxx.com
domain: nqlqgfwjmknti.xyz
domain: noomuufudleo.com
domain: nseblx.info
domain: nsriekjacvi.com
domain: nviu0vjd5onwb5uavozpvbcr4xx8m.hm
domain: ntakucptrg.info
domain: nxjlghzsyz.cc
domain: nyzurdf.biz
domain: lntcrncthabcr.com
domain: oaekoqflznz.info
domain: oifcldvmaq.cn
domain: olipvysq.info
domain: oozqkmlgsu.net
domain: opnulfrgncq.cc
domain: ozsbqaie.net
domain: pegcillm.info
domain: opmbae.biz
domain: pbhc8h3rnrmbjum7fpmjkglmwdeha.lt
domain: pipmjuev.biz
domain: pjpuevuwnar.cc
domain: phxczzix.info
domain: plzsqq.info
domain: predhdvgjf.cc
domain: pqtkcqqqpim.com
domain: ppeai.info
domain: osfvhqfe7hkfliugvhji2paqz5fxs.mg
domain: qfmff5cuzuqzrjya3bxzjbdmkpu3w.ca
domain: pvdgq.biz
domain: qkxlslho.info
domain: qooqletaqmanaqer.com
domain: qvauoicekb.org
domain: qqphpxo.ws
domain: qvejoylisw.biz
domain: qkeydwxt.net
domain: qw4yow5qlmr7ngf3xbtf8u9zurcac.su
domain: qxadsic.com
domain: qwdaaaxyfxw.biz
domain: qzwvmbgxn.info
domain: qzyoucnemmu.cn
domain: rcbircctvoluum.com
domain: rcdlrcctvoluum.com
domain: rapiddevapi.com
domain: q00qletaqmanaqer.com
domain: reczwfdokua.cn
domain: qqscji.com
domain: pgzeidwv.biz
domain: qfn660wggcthory0wwmq9khmzv0xc.nf
domain: sasagxkh.biz
domain: sfdevzep.info
domain: safebrovvsirg.apple
domain: slohvnf.biz
domain: spotxchqange.com
domain: sticikyaclstv.com
domain: sticlcyadlstv.com
domain: svtxj.info
domain: swthnzzg.biz
domain: safebrovvslng.apple
domain: spdlelnsen.cn
domain: stiekyaclstv.com
domain: t8x289bhlebpmkqvlcxjfllquh0ix.il
domain: teclhcrurclh.com
domain: tjqprbhffzu.net
domain: thewhlzmarlketlng.com
domain: tlhelcitclhn.com
domain: rcdircctvoluun.com
domain: tllhekitclhn.com
domain: tllhekitcllhn.com
domain: tillktollkcdn.com
domain: tprxobcoly.info
domain: tqnmz.info
domain: tq51r9ckdkpmybgjhi42drqnllpjr.cg
domain: tsewdtjqd.org
domain: trkvtfouppg.cn
domain: sukupuoliyhteys.com
domain: tpyeuouacbi.net
domain: ubcrfhhqaqceial4ytkco6ljxbdek.pe
domain: uebjiofg.ws
domain: safcbrovvsing.apple
domain: uehznekd.biz
domain: u5p2x9jo7qn9xtvkom6phwfy2pajz.pe
domain: tilctoilccdn.com
domain: uqazqnkqmo.com
domain: usmqsthmx.info
domain: unrulynncdia.com
domain: utjntuhtzlj.net
domain: uudpgortu.org
domain: uwffhjypcyf.com
domain: uxkzv.biz
domain: uzknyovo.info
domain: vfyrlfuqbn.net
domain: unrulyrrcdia.com
domain: vgyhwkup.com
domain: viqxkiqzrk.com
domain: vjjqe.cn
domain: vlhvef6ukomgvipupprdynpsepuav.gu
domain: vujoegsr.info
domain: vxkfgren.biz
domain: vyotnetikzf.cc
domain: vvinbovvsupbate.com
domain: wcoqewgx.info
domain: w6rl84v5pg8ttnpmeaob7bwoqmxcb.ae
domain: web-tools.cloud
domain: wfwxsqqwup.cc
domain: wquycb.ws
domain: wsfklpcuawt.net
domain: wtqxx6v4xuvruaktlragickokgapm.la
domain: wwzokuzf.org
domain: x83xf6xafxb7xa6xd4vmrxf50xd7sx97xbd0.ml
domain: xdevoquz.info
domain: xdsorvipen.net
domain: xerzbfeuq.com
domain: xdzhif.info
domain: xfaro.com
domain: xhbbkexg.info
domain: xjjlrrqrls.ws
domain: xli5r5pv8prixrpjrwqgipdsrakyv.ng
domain: xdjapcrtv.com
domain: xoohp.com
domain: xqyatxjfud.ws
domain: xsfrmkoz.biz
domain: xuovmcjs.info
domain: xyfxwcoj.biz
domain: yltpdhapvi.net
domain: xpd3jdl1mhrgtidmm8p3r5fry1z2m.na
domain: yqrdf3dokehluudxyzior5qdtc1xy.gy
domain: ysjic.info
domain: ytuljll.info
domain: yzolghclbtl.net
domain: zaahbwomt.cn
domain: ytihlxakrh.org
domain: zhozrwihd.com
domain: zpdomnuxepr.cn
domain: zpbphs.org
domain: zxkszrxi.net
domain: zppdzccc.biz
domain: youutbe.com

Infrastructure of Interest: High Confidence Detection

Severity: medium

Type: campaign

Technical Summary

Potential Impact

Mitigation Recommendations

Affected Countries

Germany, France, United Kingdom, Netherlands, Italy, Spain, Poland

Indicators of Compromise

domain: medienparadies.com
domain: adlsafcprotcctcd.com
domain: adsynnptotic.com
domain: 2d8gqaigz67duiawfhx4nmtiakmf3.ve
domain: atxuormpg.com
domain: 2sloknynd40uj4qumwjjmnfebtk08.cy
domain: 5j1mshnzy3nh0pf1sobwv5qanwzq5.mg
domain: 4isl26kravnlkmqjivbfkrthegfhr.tl
domain: arjxsxujcs.info
domain: aicez.com
domain: 7r0knuzozmkyszvzp6thyjslellt9.ni
domain: adsynnptotlc.com
domain: avxuifhoze.net
domain: ayhxpmixtzgwjkfpi4hr0h48iu8y0.km
domain: axukcdja.net
domain: bacxhelorboy.com
domain: 7uerfmx70jbqdg1pqsie3h4uqcgr4.th
domain: 51tfyqgwraown3bdf6fnxpogtohyf.am
domain: bevbjebnhxqu.xyz
domain: bjdcekvif.org
domain: 3qqppwwyr8fkkylw2hltetgvf0dbb.nz
domain: bmtgdsgwyv.info
domain: 3ogg5mbfc2p9lpxkgawrfhkhjkzud.ba
domain: bwfzzfze.com
domain: bhjdnbxddat.net
domain: cchmj.biz
domain: cmkqokad.info
domain: crkfj.info
domain: cvcrcsttcclh.net
domain: dcqzpwbvvys.cn
domain: djpiudnpex.cc
domain: diekqzhzilk.net
domain: brekkyinmybed.com
domain: dkshayef.cn
domain: dm4gxce0doniz7skk1k9kel1lkfa8.ec
domain: cqhikshunncrp9tp0zqvmnd6n7a7h.ye
domain: doubicvcrify.com
domain: cloublcvcrify.com
domain: dwswbemtay.info
domain: dqwwoskwr.cc
domain: dqwfonluwl.ws
domain: eaucxdlbxicakrbjzgmsnl0d6aief.by
domain: edbgthtal.info
domain: cvcrcstteclh.net
domain: dvtehdhphcy.com
domain: dqvhevkiuds.net
domain: enjyiti2emi9qnwwoxu6t96sf8dzl.bf
domain: ehdpxlcb.biz
domain: ephdseahq.xyz
domain: erppgazqbw.info
domain: exidovlaxzw.org
domain: f02eym8ifmzl6wggpi93bf7y9qboo.hn
domain: ewueipbnek.cc
domain: faaiowuancz.biz
domain: eutbznmkfoo.com
domain: fdsnwenks.info
domain: ffzgnqbog.info
domain: fhkdiwszhvi.com
domain: doulblevcrify.com
domain: fcziorwb.info
domain: foyxcrvcio.info
domain: fruxz.biz
domain: fxgtisdxoqs.org
domain: fxmoulyw.xyz
domain: gdjwipdpv.info
domain: eydlndverei.cn
domain: gooqletaqrranaqer.com
domain: gooqletaqserv1ces.com
domain: gshvwiaoa.com
domain: gv8ekmcd4hxyhtzdshvg8mcsbjeji.ca
domain: gvtiizuogw.cn
domain: helt4jjie62lmdi1efo462lk1slu2.dz
domain: heuwvewyfb.org
domain: hfuxbmzln.com
domain: hnxbgsnq.info
domain: huulc.info
domain: hsnyn084zg4k0uhfzb3qmadxmtifk.pk
domain: hvqjlvkpxfj.biz
domain: hvmjktrpoog.net
domain: fontawcsorrc.com
domain: idn6pt1yrveglga34hxlti1g1q6jd.bf
domain: hzzmkuqgy.net
domain: ialmaqhbjg.org
domain: ikcwlqprfku.net
domain: imdiamcxprcss.com
domain: fnbbon3pwtgty8clrgrl4ph2yaosj.ru
domain: inixtxyajbdsfhu3klnshwmesgl8n.km
domain: imrvvorldvvidle.com
domain: irwjr71fgpgnimcs7pqu9wtnprt6a.rw
domain: iuolvbjvkx.cn
domain: jgzrgwaiwnut6nds3wv95it4r0z25.ci
domain: jljuxzkjljl.biz
domain: jowhf.org
domain: jqausod.ws
domain: jqdneoahjlo.ws
domain: jmuoqggi.biz
domain: jqipdfsltu.com
domain: jeszdiqt.biz
domain: juysqudhjre.xyz
domain: jqjimqma.cn
domain: karqvumxzaz.info
domain: kfvfiqkihnz.info
domain: khbjzb.info
domain: kn54nawxeh88grj7fmi7c40jmmgpc.mv
domain: jednorazovka.com
domain: iprcdlictivc.com
domain: ktxij.biz
domain: ku4dstnkdqasmmsycdk0yuflzmser.sx
domain: i3zemkiqsvdbcxeosvf5kzskq0bwt.fr
domain: kxywguhj.net
domain: lcjrg.info
domain: leaqucofleqends.com
domain: lexiconkids.com
domain: lirlcshrirlc.net
domain: livcadcxchamger.com
domain: lksmalvzdgi.info
domain: ljfdhuyv.info
domain: llnikshrlnik.net
domain: lfdzmfgohhk.org
domain: lssazmz.biz
domain: lwdqhcidit.org
domain: lwnczyestz.info
domain: lzikn5fvfexacz2ruuvqicdisikb4.me
domain: jypqjobnp.info
domain: marddhngdqia6n6wawxsegkx7w943.ie
domain: kej75dkm05noda1ymmqhdg6uglsdx.so
domain: mguflgrmtu.cn
domain: mjrqk.biz
domain: mmlbjslpu.xyz
domain: mjwgsr.org
domain: mwuqefgma.biz
domain: n6lxnxcxyxjvyvmh4hzwtex956zl9.aw
domain: nfsudpmarjs.com
domain: neczyefa.org
domain: njqmxbk.biz
domain: nkonksusz1dnvjslpzbrrrl4gncxi.ng
domain: noqjqcfjxx.com
domain: nqlqgfwjmknti.xyz
domain: noomuufudleo.com
domain: nseblx.info
domain: nsriekjacvi.com
domain: nviu0vjd5onwb5uavozpvbcr4xx8m.hm
domain: ntakucptrg.info
domain: nxjlghzsyz.cc
domain: nyzurdf.biz
domain: lntcrncthabcr.com
domain: oaekoqflznz.info
domain: oifcldvmaq.cn
domain: olipvysq.info
domain: oozqkmlgsu.net
domain: opnulfrgncq.cc
domain: ozsbqaie.net
domain: pegcillm.info
domain: opmbae.biz
domain: pbhc8h3rnrmbjum7fpmjkglmwdeha.lt
domain: pipmjuev.biz
domain: pjpuevuwnar.cc
domain: phxczzix.info
domain: plzsqq.info
domain: predhdvgjf.cc
domain: pqtkcqqqpim.com
domain: ppeai.info
domain: osfvhqfe7hkfliugvhji2paqz5fxs.mg
domain: qfmff5cuzuqzrjya3bxzjbdmkpu3w.ca
domain: pvdgq.biz
domain: qkxlslho.info
domain: qooqletaqmanaqer.com
domain: qvauoicekb.org
domain: qqphpxo.ws
domain: qvejoylisw.biz
domain: qkeydwxt.net
domain: qw4yow5qlmr7ngf3xbtf8u9zurcac.su
domain: qxadsic.com
domain: qwdaaaxyfxw.biz
domain: qzwvmbgxn.info
domain: qzyoucnemmu.cn
domain: rcbircctvoluum.com
domain: rcdlrcctvoluum.com
domain: rapiddevapi.com
domain: q00qletaqmanaqer.com
domain: reczwfdokua.cn
domain: qqscji.com
domain: pgzeidwv.biz
domain: qfn660wggcthory0wwmq9khmzv0xc.nf
domain: sasagxkh.biz
domain: sfdevzep.info
domain: safebrovvsirg.apple
domain: slohvnf.biz
domain: spotxchqange.com
domain: sticikyaclstv.com
domain: sticlcyadlstv.com
domain: svtxj.info
domain: swthnzzg.biz
domain: safebrovvslng.apple
domain: spdlelnsen.cn
domain: stiekyaclstv.com
domain: t8x289bhlebpmkqvlcxjfllquh0ix.il
domain: teclhcrurclh.com
domain: tjqprbhffzu.net
domain: thewhlzmarlketlng.com
domain: tlhelcitclhn.com
domain: rcdircctvoluun.com
domain: tllhekitclhn.com
domain: tllhekitcllhn.com
domain: tillktollkcdn.com
domain: tprxobcoly.info
domain: tqnmz.info
domain: tq51r9ckdkpmybgjhi42drqnllpjr.cg
domain: tsewdtjqd.org
domain: trkvtfouppg.cn
domain: sukupuoliyhteys.com
domain: tpyeuouacbi.net
domain: ubcrfhhqaqceial4ytkco6ljxbdek.pe
domain: uebjiofg.ws
domain: safcbrovvsing.apple
domain: uehznekd.biz
domain: u5p2x9jo7qn9xtvkom6phwfy2pajz.pe
domain: tilctoilccdn.com
domain: uqazqnkqmo.com
domain: usmqsthmx.info
domain: unrulynncdia.com
domain: utjntuhtzlj.net
domain: uudpgortu.org
domain: uwffhjypcyf.com
domain: uxkzv.biz
domain: uzknyovo.info
domain: vfyrlfuqbn.net
domain: unrulyrrcdia.com
domain: vgyhwkup.com
domain: viqxkiqzrk.com
domain: vjjqe.cn
domain: vlhvef6ukomgvipupprdynpsepuav.gu
domain: vujoegsr.info
domain: vxkfgren.biz
domain: vyotnetikzf.cc
domain: vvinbovvsupbate.com
domain: wcoqewgx.info
domain: w6rl84v5pg8ttnpmeaob7bwoqmxcb.ae
domain: web-tools.cloud
domain: wfwxsqqwup.cc
domain: wquycb.ws
domain: wsfklpcuawt.net
domain: wtqxx6v4xuvruaktlragickokgapm.la
domain: wwzokuzf.org
domain: x83xf6xafxb7xa6xd4vmrxf50xd7sx97xbd0.ml
domain: xdevoquz.info
domain: xdsorvipen.net
domain: xerzbfeuq.com
domain: xdzhif.info
domain: xfaro.com
domain: xhbbkexg.info
domain: xjjlrrqrls.ws
domain: xli5r5pv8prixrpjrwqgipdsrakyv.ng
domain: xdjapcrtv.com
domain: xoohp.com
domain: xqyatxjfud.ws
domain: xsfrmkoz.biz
domain: xuovmcjs.info
domain: xyfxwcoj.biz
domain: yltpdhapvi.net
domain: xpd3jdl1mhrgtidmm8p3r5fry1z2m.na
domain: yqrdf3dokehluudxyzior5qdtc1xy.gy
domain: ysjic.info
domain: ytuljll.info
domain: yzolghclbtl.net
domain: zaahbwomt.cn
domain: ytihlxakrh.org
domain: zhozrwihd.com
domain: zpdomnuxepr.cn
domain: zpbphs.org
domain: zxkszrxi.net
domain: zppdzccc.biz
domain: youutbe.com

Source: AlienVault OTX General

Published: Thu Aug 07 2025

Infrastructure of Interest: High Confidence Detection

Medium

Campaign

Published: Thu Aug 07 2025 (08/07/2025, 07:07:55 UTC)

Source: AlienVault OTX General

Description

AI-Powered Analysis

AILast updated: 08/08/2025, 07:48:41 UTC

Technical Analysis

Potential Impact

Mitigation Recommendations

Affected Countries

Need more detailed analysis?Get Pro

Pro Feature

For access to advanced analysis and higher rate limits, contact root@offseq.com

Technical Details

Author: AlienVault
Tlp: white
References: []
Adversary: null
Pulse Id: 689450cb694d3772d640ae3a
Threat Score: null

Indicators of Compromise

Domain

Value	Description	Copy
domainmedienparadies.com	—
domainadlsafcprotcctcd.com	—
domainadsynnptotic.com	—
domain2d8gqaigz67duiawfhx4nmtiakmf3.ve	—
domainatxuormpg.com	—
domain2sloknynd40uj4qumwjjmnfebtk08.cy	—
domain5j1mshnzy3nh0pf1sobwv5qanwzq5.mg	—
domain4isl26kravnlkmqjivbfkrthegfhr.tl	—
domainarjxsxujcs.info	—
domainaicez.com	—
domain7r0knuzozmkyszvzp6thyjslellt9.ni	—
domainadsynnptotlc.com	—
domainavxuifhoze.net	—
domainayhxpmixtzgwjkfpi4hr0h48iu8y0.km	—
domainaxukcdja.net	—
domainbacxhelorboy.com	—
domain7uerfmx70jbqdg1pqsie3h4uqcgr4.th	—
domain51tfyqgwraown3bdf6fnxpogtohyf.am	—
domainbevbjebnhxqu.xyz	—
domainbjdcekvif.org	—
domain3qqppwwyr8fkkylw2hltetgvf0dbb.nz	—
domainbmtgdsgwyv.info	—
domain3ogg5mbfc2p9lpxkgawrfhkhjkzud.ba	—
domainbwfzzfze.com	—
domainbhjdnbxddat.net	—
domaincchmj.biz	—
domaincmkqokad.info	—
domaincrkfj.info	—
domaincvcrcsttcclh.net	—
domaindcqzpwbvvys.cn	—
domaindjpiudnpex.cc	—
domaindiekqzhzilk.net	—
domainbrekkyinmybed.com	—
domaindkshayef.cn	—
domaindm4gxce0doniz7skk1k9kel1lkfa8.ec	—
domaincqhikshunncrp9tp0zqvmnd6n7a7h.ye	—
domaindoubicvcrify.com	—
domaincloublcvcrify.com	—
domaindwswbemtay.info	—
domaindqwwoskwr.cc	—
domaindqwfonluwl.ws	—
domaineaucxdlbxicakrbjzgmsnl0d6aief.by	—
domainedbgthtal.info	—
domaincvcrcstteclh.net	—
domaindvtehdhphcy.com	—
domaindqvhevkiuds.net	—
domainenjyiti2emi9qnwwoxu6t96sf8dzl.bf	—
domainehdpxlcb.biz	—
domainephdseahq.xyz	—
domainerppgazqbw.info	—
domainexidovlaxzw.org	—
domainf02eym8ifmzl6wggpi93bf7y9qboo.hn	—
domainewueipbnek.cc	—
domainfaaiowuancz.biz	—
domaineutbznmkfoo.com	—
domainfdsnwenks.info	—
domainffzgnqbog.info	—
domainfhkdiwszhvi.com	—
domaindoulblevcrify.com	—
domainfcziorwb.info	—
domainfoyxcrvcio.info	—
domainfruxz.biz	—
domainfxgtisdxoqs.org	—
domainfxmoulyw.xyz	—
domaingdjwipdpv.info	—
domaineydlndverei.cn	—
domaingooqletaqrranaqer.com	—
domaingooqletaqserv1ces.com	—
domaingshvwiaoa.com	—
domaingv8ekmcd4hxyhtzdshvg8mcsbjeji.ca	—
domaingvtiizuogw.cn	—
domainhelt4jjie62lmdi1efo462lk1slu2.dz	—
domainheuwvewyfb.org	—
domainhfuxbmzln.com	—
domainhnxbgsnq.info	—
domainhuulc.info	—
domainhsnyn084zg4k0uhfzb3qmadxmtifk.pk	—
domainhvqjlvkpxfj.biz	—
domainhvmjktrpoog.net	—
domainfontawcsorrc.com	—
domainidn6pt1yrveglga34hxlti1g1q6jd.bf	—
domainhzzmkuqgy.net	—
domainialmaqhbjg.org	—
domainikcwlqprfku.net	—
domainimdiamcxprcss.com	—
domainfnbbon3pwtgty8clrgrl4ph2yaosj.ru	—
domaininixtxyajbdsfhu3klnshwmesgl8n.km	—
domainimrvvorldvvidle.com	—
domainirwjr71fgpgnimcs7pqu9wtnprt6a.rw	—
domainiuolvbjvkx.cn	—
domainjgzrgwaiwnut6nds3wv95it4r0z25.ci	—
domainjljuxzkjljl.biz	—
domainjowhf.org	—
domainjqausod.ws	—
domainjqdneoahjlo.ws	—
domainjmuoqggi.biz	—
domainjqipdfsltu.com	—
domainjeszdiqt.biz	—
domainjuysqudhjre.xyz	—
domainjqjimqma.cn	—
domainkarqvumxzaz.info	—
domainkfvfiqkihnz.info	—
domainkhbjzb.info	—
domainkn54nawxeh88grj7fmi7c40jmmgpc.mv	—
domainjednorazovka.com	—
domainiprcdlictivc.com	—
domainktxij.biz	—
domainku4dstnkdqasmmsycdk0yuflzmser.sx	—
domaini3zemkiqsvdbcxeosvf5kzskq0bwt.fr	—
domainkxywguhj.net	—
domainlcjrg.info	—
domainleaqucofleqends.com	—
domainlexiconkids.com	—
domainlirlcshrirlc.net	—
domainlivcadcxchamger.com	—
domainlksmalvzdgi.info	—
domainljfdhuyv.info	—
domainllnikshrlnik.net	—
domainlfdzmfgohhk.org	—
domainlssazmz.biz	—
domainlwdqhcidit.org	—
domainlwnczyestz.info	—
domainlzikn5fvfexacz2ruuvqicdisikb4.me	—
domainjypqjobnp.info	—
domainmarddhngdqia6n6wawxsegkx7w943.ie	—
domainkej75dkm05noda1ymmqhdg6uglsdx.so	—
domainmguflgrmtu.cn	—
domainmjrqk.biz	—
domainmmlbjslpu.xyz	—
domainmjwgsr.org	—
domainmwuqefgma.biz	—
domainn6lxnxcxyxjvyvmh4hzwtex956zl9.aw	—
domainnfsudpmarjs.com	—
domainneczyefa.org	—
domainnjqmxbk.biz	—
domainnkonksusz1dnvjslpzbrrrl4gncxi.ng	—
domainnoqjqcfjxx.com	—
domainnqlqgfwjmknti.xyz	—
domainnoomuufudleo.com	—
domainnseblx.info	—
domainnsriekjacvi.com	—
domainnviu0vjd5onwb5uavozpvbcr4xx8m.hm	—
domainntakucptrg.info	—
domainnxjlghzsyz.cc	—
domainnyzurdf.biz	—
domainlntcrncthabcr.com	—
domainoaekoqflznz.info	—
domainoifcldvmaq.cn	—
domainolipvysq.info	—
domainoozqkmlgsu.net	—
domainopnulfrgncq.cc	—
domainozsbqaie.net	—
domainpegcillm.info	—
domainopmbae.biz	—
domainpbhc8h3rnrmbjum7fpmjkglmwdeha.lt	—
domainpipmjuev.biz	—
domainpjpuevuwnar.cc	—
domainphxczzix.info	—
domainplzsqq.info	—
domainpredhdvgjf.cc	—
domainpqtkcqqqpim.com	—
domainppeai.info	—
domainosfvhqfe7hkfliugvhji2paqz5fxs.mg	—
domainqfmff5cuzuqzrjya3bxzjbdmkpu3w.ca	—
domainpvdgq.biz	—
domainqkxlslho.info	—
domainqooqletaqmanaqer.com	—
domainqvauoicekb.org	—
domainqqphpxo.ws	—
domainqvejoylisw.biz	—
domainqkeydwxt.net	—
domainqw4yow5qlmr7ngf3xbtf8u9zurcac.su	—
domainqxadsic.com	—
domainqwdaaaxyfxw.biz	—
domainqzwvmbgxn.info	—
domainqzyoucnemmu.cn	—
domainrcbircctvoluum.com	—
domainrcdlrcctvoluum.com	—
domainrapiddevapi.com	—
domainq00qletaqmanaqer.com	—
domainreczwfdokua.cn	—
domainqqscji.com	—
domainpgzeidwv.biz	—
domainqfn660wggcthory0wwmq9khmzv0xc.nf	—
domainsasagxkh.biz	—
domainsfdevzep.info	—
domainsafebrovvsirg.apple	—
domainslohvnf.biz	—
domainspotxchqange.com	—
domainsticikyaclstv.com	—
domainsticlcyadlstv.com	—
domainsvtxj.info	—
domainswthnzzg.biz	—
domainsafebrovvslng.apple	—
domainspdlelnsen.cn	—
domainstiekyaclstv.com	—
domaint8x289bhlebpmkqvlcxjfllquh0ix.il	—
domainteclhcrurclh.com	—
domaintjqprbhffzu.net	—
domainthewhlzmarlketlng.com	—
domaintlhelcitclhn.com	—
domainrcdircctvoluun.com	—
domaintllhekitclhn.com	—
domaintllhekitcllhn.com	—
domaintillktollkcdn.com	—
domaintprxobcoly.info	—
domaintqnmz.info	—
domaintq51r9ckdkpmybgjhi42drqnllpjr.cg	—
domaintsewdtjqd.org	—
domaintrkvtfouppg.cn	—
domainsukupuoliyhteys.com	—
domaintpyeuouacbi.net	—
domainubcrfhhqaqceial4ytkco6ljxbdek.pe	—
domainuebjiofg.ws	—
domainsafcbrovvsing.apple	—
domainuehznekd.biz	—
domainu5p2x9jo7qn9xtvkom6phwfy2pajz.pe	—
domaintilctoilccdn.com	—
domainuqazqnkqmo.com	—
domainusmqsthmx.info	—
domainunrulynncdia.com	—
domainutjntuhtzlj.net	—
domainuudpgortu.org	—
domainuwffhjypcyf.com	—
domainuxkzv.biz	—
domainuzknyovo.info	—
domainvfyrlfuqbn.net	—
domainunrulyrrcdia.com	—
domainvgyhwkup.com	—
domainviqxkiqzrk.com	—
domainvjjqe.cn	—
domainvlhvef6ukomgvipupprdynpsepuav.gu	—
domainvujoegsr.info	—
domainvxkfgren.biz	—
domainvyotnetikzf.cc	—
domainvvinbovvsupbate.com	—
domainwcoqewgx.info	—
domainw6rl84v5pg8ttnpmeaob7bwoqmxcb.ae	—
domainweb-tools.cloud	—
domainwfwxsqqwup.cc	—
domainwquycb.ws	—
domainwsfklpcuawt.net	—
domainwtqxx6v4xuvruaktlragickokgapm.la	—
domainwwzokuzf.org	—
domainx83xf6xafxb7xa6xd4vmrxf50xd7sx97xbd0.ml	—
domainxdevoquz.info	—
domainxdsorvipen.net	—
domainxerzbfeuq.com	—
domainxdzhif.info	—
domainxfaro.com	—
domainxhbbkexg.info	—
domainxjjlrrqrls.ws	—
domainxli5r5pv8prixrpjrwqgipdsrakyv.ng	—
domainxdjapcrtv.com	—
domainxoohp.com	—
domainxqyatxjfud.ws	—
domainxsfrmkoz.biz	—
domainxuovmcjs.info	—
domainxyfxwcoj.biz	—
domainyltpdhapvi.net	—
domainxpd3jdl1mhrgtidmm8p3r5fry1z2m.na	—
domainyqrdf3dokehluudxyzior5qdtc1xy.gy	—
domainysjic.info	—
domainytuljll.info	—
domainyzolghclbtl.net	—
domainzaahbwomt.cn	—
domainytihlxakrh.org	—
domainzhozrwihd.com	—
domainzpdomnuxepr.cn	—
domainzpbphs.org	—
domainzxkszrxi.net	—
domainzppdzccc.biz	—
domainyouutbe.com	—

Threat ID: 6895a81fad5a09ad00013bfe

Added to database: 8/8/2025, 7:32:47 AM

Last enriched: 8/8/2025, 7:48:41 AM

Last updated: 11/20/2025, 4:00:47 PM

Community Reviews

0 reviews

Crowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.

Sort by

Loading community insights…

Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.

Related Threats

Cooking up trouble: How TamperedChef uses signed apps to deliver stealthy payloads

Medium

CampaignThu Nov 20 2025

330 custom email domains, and what this tells us about how attackers build infrastructure for fake account creation

Medium

CampaignTue Nov 18 2025

ShadowRay 2.0: Active Global Campaign Hijacks Ray AI Infrastructure Into Self-Propagating Botnet | Oligo Security

Medium

CampaignTue Nov 18 2025

Microsoft Azure Blocks Massive 15.72 Tbps of DDoS Attack Powered by Aisuru Botnet

Medium

CampaignTue Nov 18 2025

Cat's Got Your Files: Lynx Ransomware

Medium

CampaignTue Nov 18 2025

Actions

PRO

Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.

Please log in to the Console to use AI analysis features.

External Links

Search on Google

Need enhanced features?

Contact root@offseq.com for Pro access with improved analysis and higher rate limits.

Infrastructure of Interest: High Confidence Detection

AI Analysis

Technical Summary

Potential Impact

Mitigation Recommendations

Affected Countries

Indicators of Compromise

Infrastructure of Interest: High Confidence Detection

Description

AI-Powered Analysis

Technical Analysis

Potential Impact

Mitigation Recommendations

Affected Countries

Technical Details

Indicators of Compromise

Domain

Community Reviews

Related Threats

Cooking up trouble: How TamperedChef uses signed apps to deliver stealthy payloads

330 custom email domains, and what this tells us about how attackers build infrastructure for fake account creation

ShadowRay 2.0: Active Global Campaign Hijacks Ray AI Infrastructure Into Self-Propagating Botnet | Oligo Security

Microsoft Azure Blocks Massive 15.72 Tbps of DDoS Attack Powered by Aisuru Botnet

Cat's Got Your Files: Lynx Ransomware

Actions

External Links

Need enhanced features?

Latest Threats

Keyboard Shortcuts

Navigation

Search & Filters

UI Controls

Accessibility