Skip to main content
Threat Radar animated logo
DashboardThreatsMapFeedsAPILifetime Access
reconnecting
Press slash or control plus K to focus the search. Use the arrow keys to navigate results and press enter to open a threat.
Reconnecting to live updates…

Maltrail IOC for 2026-03-08

0
Medium
Malwaretlp:clearmalwaremisp:threat-level="medium-risk"misp:event-type="observation"misp:automation-level="unsupervised"type:osintosint:lifetime="perpetual"osint:source-type="manual-collection"
Published: Sun Mar 08 2026 (03/08/2026, 00:00:00 UTC)
Source: CIRCL OSINT Feed
Vendor/Project: tlp
Product: clear

Description

Maltrail IOC for 2026-03-08

AI-Powered Analysis

AILast updated: 03/08/2026, 14:51:59 UTC

Technical Analysis

The provided information describes a Maltrail Indicator of Compromise (IOC) reported on March 8, 2026, sourced from the CIRCL OSINT Feed. Maltrail is a network traffic detection system that identifies suspicious or malicious network activity by analyzing traffic patterns and known threat indicators. This IOC is categorized as malware-related network activity with a medium risk level, but it lacks specific details such as affected software versions, exploit mechanisms, or concrete indicators like IP addresses, domains, or file hashes. The absence of known exploits in the wild and lack of available patches suggest that this IOC is primarily an observation of suspicious network behavior rather than an active, widespread attack. The data is tagged as TLP: clear, indicating it is intended for unrestricted public sharing. The technical details include a UUID and an original timestamp, but no further technical specifics are provided. This limits the ability to perform targeted detection or remediation. The threat intelligence is derived from manual OSINT collection, emphasizing external analysis of network activity. Overall, this IOC serves as a network anomaly alert that may indicate early-stage reconnaissance, malware communication, or other suspicious activity detected by Maltrail sensors.

Potential Impact

The potential impact of this threat is moderate, primarily affecting organizations' network monitoring and incident response capabilities. Since no direct exploit or malware payload details are provided, the immediate risk of system compromise or data breach is low. However, the presence of such an IOC indicates possible malicious network activity that could precede more severe attacks. Organizations lacking robust network traffic analysis tools may miss early warning signs, increasing their exposure to subsequent threats. The medium severity suggests that while this IOC alone may not cause direct damage, it is a valuable indicator for identifying potential threats and preventing escalation. Failure to investigate or correlate such network anomalies could lead to delayed detection of malware infections or command-and-control communications. The impact is thus more strategic and operational, affecting threat detection efficacy rather than causing direct confidentiality, integrity, or availability losses.

Mitigation Recommendations

To mitigate risks associated with this IOC, organizations should enhance their network traffic monitoring capabilities by deploying or updating Maltrail or similar network anomaly detection systems. Regularly update threat intelligence feeds to incorporate the latest IOCs and ensure detection signatures are current. Conduct thorough investigations of any alerts triggered by Maltrail to identify potential malware communications or reconnaissance activity. Implement network segmentation and strict egress filtering to limit unauthorized outbound connections that malware might use. Employ behavioral analytics to detect deviations from normal network patterns. Integrate IOC data into Security Information and Event Management (SIEM) systems for correlation with other security events. Train security teams to recognize and respond promptly to network-based indicators of compromise. Since no patches are available, focus on detection and containment strategies. Finally, participate in information sharing communities to stay informed about evolving network threats and related IOCs.

Affected Countries

United StatesUnited States
GermanyGermany
FranceFrance
United KingdomUnited Kingdom
NetherlandsNetherlands
JapanJapan
South KoreaSouth Korea
AustraliaAustralia
CanadaCanada
SingaporeSingapore
Pro Console: star threats, build custom feeds, automate alerts via Slack, email & webhooks.Upgrade to Pro

Technical Details

Uuid
59b761e9-9482-40c2-86f4-3afbca62f405
Original Timestamp
1772978409

Indicators of Compromise

Url

ValueDescriptionCopy
urlhttps://api.github.com/repos/stamparm/maltrail/commits/8c6403d315bf445b57db9fb01e4ca0d6dfc062d7
apt_lazarus
urlhttps://api.github.com/repos/stamparm/maltrail/commits/b689f7995596cb7b60c3d6e083d84b80f3365e09
android_joker
urlhttps://api.github.com/repos/stamparm/maltrail/commits/bb5c0aef8ec4a8110499c9ce6d8bd3ef8eaedc9e
plugx
urlhttps://x.com/G60930953/status/2030423022805414258
plugx
urlhttps://www.virustotal.com/gui/file/b963a90730a0ac04e07f18e1cdcf9289c9e0aed336e448d3cf670bc13d000f3e/detection
plugx
urlhttps://www.virustotal.com/gui/file/216d4208f515859135457d7ed4788d8a2c200e5f84df31a25c0cf9accd5e8e1a/detection
plugx
urlhttps://www.virustotal.com/gui/file/b4d92c5557a3650fd136fd101c3b118d93929a996ac934e677b9d812b7af781b/detection
plugx
urlhttps://api.github.com/repos/stamparm/maltrail/commits/4ebc03838fadc82f3daf162c1b85267789c00fbd
apt_transparenttribe
urlhttps://api.github.com/repos/stamparm/maltrail/commits/13ca0a34fd16afcb895efce52ce08a72c47d3dcf
osx_nova
urlhttps://api.github.com/repos/stamparm/maltrail/commits/856c279b139881d3355f4e0037df642ad35df647
fakeapp
urlhttps://x.com/MalasadaTech/status/2030509315854148058
fakeapp
urlhttps://api.github.com/repos/stamparm/maltrail/commits/6620954c26617e19ad24b3d67576d26d91683e89
urlhttps://api.github.com/repos/stamparm/maltrail/commits/301678477a4a501dcb7b1f489792e394da4c27ab
osx_atomic
urlhttps://api.github.com/repos/stamparm/maltrail/commits/9ee5705eca0659f1fadf7e56629e358bab4d9d04
urlhttps://api.github.com/repos/stamparm/maltrail/commits/148a193fb80d05125a4b39b96ba8b5afd672f9c6
osx_atomic
urlhttps://api.github.com/repos/stamparm/maltrail/commits/7fc4c73896ee8a8843ece3c7865f918b5c3e476e
ek_clearfake
urlhttps://api.github.com/repos/stamparm/maltrail/commits/911a612ec4836e02eb093d2b2a715f6c4bf975f5
osx_atomic
urlhttps://api.github.com/repos/stamparm/maltrail/commits/3f5c776268cca11cc193bdaea615646613575078
hak5cloud_c2
urlhttps://api.github.com/repos/stamparm/maltrail/commits/073197d571f126107310ede5791d230b61a0c8b0
fakeapp
urlhttps://github.com/hagezi/dns-blocklists/issues/9347
fakeapp
urlhttps://api.github.com/repos/stamparm/maltrail/commits/134bdd3787a9da1f9ba82171ed080f78fc33692a
fakeapp
urlhttps://api.github.com/repos/stamparm/maltrail/commits/3c85734c2d41bd7e8725436a88404bfc00f7fad1
android_joker
urlhttps://api.github.com/repos/stamparm/maltrail/commits/ba54efe0aef25a445578d83ef805e5326c0fa308
apt_kimsuky
urlhttps://api.github.com/repos/stamparm/maltrail/commits/57a2bac195724d6a4cc0a6fc3ff93902880561a7
apt_kimsuky
urlhttps://api.github.com/repos/stamparm/maltrail/commits/bc4d41dd0259bd592c0fc1dccfea5ee73f647021
simplehelp
urlhttps://www.virustotal.com/gui/file/442663b95111367fba650401c6da93f2fbbc78565c1f0f666346ede5f893c050/detection
simplehelp
urlhttps://api.github.com/repos/stamparm/maltrail/commits/9383bb2d27aea26777da91013d12f15aac94fd32
simplehelp
urlhttps://api.github.com/repos/stamparm/maltrail/commits/a8526d88de463a0c775b2e63ec49a18a2477a6c7
fakeapp
urlhttps://api.github.com/repos/stamparm/maltrail/commits/5827d6340c1ebd4054a462a2891fd572ee5b80f2
fakeapp
urlhttps://www.virustotal.com/gui/file/37d7640534023cc6f98f3ec9e010e3dbfbf8959add18bfcf696ea691ae132f2a/detection
fakeapp
urlhttps://api.github.com/repos/stamparm/maltrail/commits/114ddd71aad9f57dd62e6db6a82e2cf6d9d90572
fakeapp
urlhttps://www.virustotal.com/gui/file/3944ed42f76657b67b4500b415cb5963d7521ddfc8338f73d46c874806c61a44/detection
fakeapp
urlhttps://api.github.com/repos/stamparm/maltrail/commits/6eee7065d3f103869702cd0c1d5e558217d5e0a5
asyncrat
urlhttps://www.virustotal.com/gui/file/ac4071dfc307c02ab0a479835eb7aa995da63db95e8a010df9bb96f77df1ae0d/detection
asyncrat
urlhttps://www.virustotal.com/gui/file/fdc5cb297ca663c2560bbb87ed5bf3a564728a4e6ab6f21d1dd4db59c8dd2a81/detection
asyncrat
urlhttps://api.github.com/repos/stamparm/maltrail/commits/86f7a3729961d7abbbe51a03562689d6366d8db5
fakeapp
urlhttps://www.virustotal.com/gui/file/71ffa173ecbbb56dbf2dd34d84cfef9b01e26f1594f064ae52df7b334463da97/detection
fakeapp
urlhttps://api.github.com/repos/stamparm/maltrail/commits/a56e09ba37b5e9cdb8bca3cce602a1308c943982
fakeapp
urlhttps://api.github.com/repos/stamparm/maltrail/commits/6e5e67595cc480800bbb5148ba2c5dc01499a808
osx_atomic
urlhttps://api.github.com/repos/stamparm/maltrail/commits/610e0ab88a4dbfebe65c04bbf25f3e84cbcf7e9c
fakeapp
urlhttps://x.com/banthisguy9349/status/2030579924365464046
fakeapp
urlhttps://api.github.com/repos/stamparm/maltrail/commits/f1acafd5c8ecc0f9d9b929bb1512eb73d6c9cb6a
cyberstrikeai
urlhttps://api.github.com/repos/stamparm/maltrail/commits/a05374a6e0367da99437799de01d26694f8d9fcf
apt_kimsuky
urlhttps://www.virustotal.com/gui/ip-address/27.102.137.140/relations
apt_kimsuky

Domain

ValueDescriptionCopy
domainapp.highmatch.pro
apt_lazarus
domainhighmatch.pro
apt_lazarus
domainkuxyo.fan
android_joker
domainmaxtr.biz
android_joker
domainunsk.online
android_joker
domaingobay.info
plugx
domainwpscdn.vip
plugx
domainwindows.gobay.info
plugx
domainwps.wpscdn.vip
plugx
domainmoohshot.top
osx_nova
domainpumpf.top
osx_nova
domaingooggle.click
fakeapp
domain1omnixventures.sbs
domain2025zoneelevate.digital
domain247chainstruct.digital
domain24matrixspace.pics
domain2turbocore.digital
domain2visioninsight.click
domainastrohorizonalliance.click
domainaurumcentralsystems.digital
domainaxion8solutions.click
domainbakehaumresources.click
domainbrightastrosynergy.forum
domainbrightsmartstation.digital
domaincekipihiqiiasystems88.sbs
domaincentrio24pattern.click
domaincinacesuronmanagementinc.sbs
domainciniwajexsolutions99.click
domaincloudaxisstu-dio.pics
domaincorexvertexconsulting.sbs
domaincosonapiasystems.forum
domaincukiguaresourcesltd.click
domaincuqoxejorconsultinginc.digital
domaincuyewubupaanalytics.digital
domaincyberglobalworks.digital
domaindaxorusaheonsystems.digital
domaindigital1token.click
domaindirumuispartnersnet.digital
domaindocafabozaexcapital.digital
domaindynora12services.click
domaindynora2026operations.click
domainedge101matrix.sbs
domainenterprisemegacore360.click
domainfesogucudoaconsulting.click
domainfexazofuspartners.click
domainfikaquoroperations.digital
domainflowmeshterra.pics
domainframefusionpoint.click
domainfundra12analytics.digital
domainfusion-1flow.digital
domainfusion3-65analytics.digital
domaingehiwezaorsolutions.sbs
domaingeyuwiongroupinc.pics
domaingicojuxuxaexadvisorynet.sbs
domaingridplatformpoint.click
domaingridunionnetwork.buzz
domainhitowuxeisoperationsinc.digital
domainhosadisusresources.click
domainhujuruduissolutions.digital
domaininitia26capital.click
domaininitia48solutions.digital
domainjazubayexsolutions.digital
domainjicupaxeliiasystems.digital
domainkupofaniacapitalnet.click
domainladafasoonoperations99.digital
domainlativholdingsltd.digital
domainleyepofioninvestments.click
domainlusutiwoumholdings.click
domainmacroflow-neo.pics
domainmakuqowopuonpartners48.click
domainmatrixgeoengine.digital
domainmavasuzoyeonadvisory.sbs
domainmeridian26capital.click
domainmikikowejiumholdings.digital
domainmimugipoweoncollectiveco.digital
domainmodera88industries.digital
domainmogixayixiscapital2026.digital
domainnano2invest.digital
domainnanoad-visory.click
domainnetwork1flow.digital
domainnextgenflowx.pics
domainnexum8services.digital
domainnexusnetteam.click
domainnivaxukozeumindustriesltd.click
domainnivilogiaindustries.buzz
domainnovanextconsulting.forum
domainnovent48analytics.digital
domainpadovunesusoperations64.click
domainparagonunitedholdings.click
domainpeleyetubuscollective.digital
domainpovadodorsolutions.click
domainpozesozexmanagement.digital
domainprimoraprimeinvestments.digital
domainpujadecebaanalytics.sbs
domainpulseelevateinnovate.digital
domainpuwelenakoumadvisory.click
domainqiguvodumiisventures.digital
domainqoxijokuvumventures.digital
domainquqitoumresources8.digital
domainrapugeyimexpartners.click
domainsadinubowiumadvisory.click
domainsahonayuusinvestments64.click
domainsayalewenuonpartners.click
domainseqagigonuexcollective.digital
domainsofiradongroup.click
domainsolviaunitedindustries.digital
domainsorifeweyiainvestments36.click
domainstackmediaalpha.digital
domainstackneuralbureau.digital
domainstellar247stack.pics
domainstrata12resources.click
domainsukoroneasystems2026.digital
domainsynergy-cyber.click
domaintamevuiamanagementinc.digital
domaintechnoca-pital24.digital
domaintechnoenterpriselabs.digital
domaintuhonoxaliexcapital.click
domainvectoronemedia.digital
domainvenowosoyoexresourcesnet.click
domainverita88industries.click
domainveritastrategicadvisoryltd.digital
domainwaxisakiaholdings.buzz
domainwefirijaconsulting.click
domainwegayafiwousgroup.digital
domainwotudegonsolutionsinc.digital
domainwuvobiexindustries21.digital
domainxodomopozaaresources.digital
domainyupokotinoiaadvisory.digital
domainzemeguzenormanagementltd.sbs
domainzenith247flow.digital
domainzenithanalyticsmetrics.buzz
domainzohizojepexconsulting.digital
domainzowagiumoperations.digital
domainclaucoelast.pages.dev
osx_atomic
domainclaude-code-docs-page.duckdns.org
osx_atomic
domainclbfhsjbnfjbhrduesjkcc.pages.dev
osx_atomic
domainhgewruuwry.pages.dev
osx_atomic
domain24teamstruct.digital
domain365primematrix.digital
domainalphalogic247.click
domainbegadilovexservices.click
domainbejucajormanagement.click
domainbenuzaluworservices.click
domainbikevupumadvisory.digital
domainbipesazusadvisory.click
domainbisapobusindustries.click
domainbovufohaonsolutions2026.click
domainbowihumogoorgroup.digital
domainbusefiexventures.digital
domaincagadicuseoranalyticsco.digital
domaincaxenubuminvestments.digital
domaincetinequdonmanagement.click
domaincihaxoliummanagement.click
domaincixetapumventures.click
domainconsultingalliancecyber.click
domaincumekicukeorcollective26.digital
domaindapupejeramanagement.digital
domaindatafut-urepoint.click
domainderinonejaacapital.click
domaindeyibovorsolutions.click
domaindiyocedoiaservices.click
domaindohukejeiaadvisory.click
domaindotavaussystems.click
domainfapozowiliaanalytics.click
domainfaxakeiaresources.digital
domainfayisocosuoradvisory.digital
domainfifovekuguiacapital2026.click
domainfijowosinaanalytics.click
domainfilekofuiacapital.digital
domainfilixugeiaoperations.click
domainfovoqeorholdingsco.digital
domainfuqeluvumholdingsnet.digital
domainfuqeximuexsystems.click
domainfuxonogaiainvestmentsltd.digital
domaingaciweyonpartners.click
domaingalidemexmanagement.click
domaingavuzoisventuresco.digital
domaingawemahiisholdingsltd.digital
domaingedopilatexadvisory64.click
domaingeozoneflow.click
domaingeriheroranalytics.click
domaingigunoxugonmanagement.click
domaingobuginexumconsulting.click
domaingohajiaadvisory.digital
domaingohecuasystems.pics
domaingoyudakiorindustries.digital
domainguqumedoiainvestments.digital
domainhajocuorinvestments.digital
domainhapedokiguisresources.click
domainhazuwiiainvestmentsltd.digital
domainhehoqizionventures.click
domainhemavoonresources.click
domainhijiwowujusconsulting16.click
domainhiriviriusholdingsnet.click
domainhokogayutonanalytics64.click
domainhototekaonanalyticsinc.digital
domainhoyinomuxoiasystems.digital
domaininitia2026resources.digital
domainjamocehabionadvisory8.click
domainjavejususcapital.click
domainjaxivocaliaadvisoryco.digital
domainjebicisorindustries.digital
domainjebiwuqamuuscollective.click
domainjecopususservices.click
domainjelevoyanaindustriesinc.digital
domainjewadaiasystemsltd.click
domainjifaqasaxisventuresltd.digital
domainjiwukadadeiacollective21.digital
domainjixodeyorpartners.digital
domainjodimapifeoncapital.digital
domainjoketezorinvestments.digital
domainjoxigokorsolutions.click
domainjuqugedoumventures.click
domainjusazocejoexcollective.digital
domainkagacuvenooroperations.digital
domainkamakoonholdings.click
domainkidejaiaindustriesnet.click
domainkilayehexresourcesltd.click
domainkobosibuispartners.click
domainkoniniispartners.digital
domainkoxivatamuexgroup.digital
domainkoyigeiaanalyticsnet.digital
domainkudacousmanagement.digital
domainkumuyireiaventures.click
domainlakohidionservices.forum
domainlanafurainvestments.click
domainlegomadosisservices.digital
domainleyuvagotiamanagementltd.digital
domainlicubuvexgroup.digital
domainliviwovuxaiaholdings36.click
domainlowofiorcollective.digital
domainloyorabujaussolutions.digital
domainlufogubumholdings.digital
domainlumenorbitedge.forum
domainlumenvault1.pics
domainluvabapofuumresources.digital
domainmacokezixaresourcesltd.digital
domainmadivokucumconsulting.digital
domainmawuxugaorcollectiveltd.digital
domainmejulafuiaresources.digital
domainmelalotaporsolutions.digital
domainmihelipoguoroperations.digital
domainmomituliriagroup.click
domainnasibamoissystems.click
domainnexuspluspartners.click
domainniqodipaindustries.digital
domainnocijahuscollectiveinc.click
domainnojagosawoexsolutions.forum
domainnova101core.digital
domainnoyudiriboisoperations.digital
domainnudasadevonventures.digital
domainnuvavejiexinvestments.digital
domainomnix247fund.pics
domainoptera64investments.digital
domainpafelijorsystems.digital
domainpehehigiusoperations.digital
domainpiluriaadvisory26.digital
domainpitiwepoaresourcesltd.click
domainpivulafeonadvisory.digital
domainplatformmatrixsmart.digital
domainpoximinohiaoperations.digital
domainpukoqacawexresources99.digital
domainpuyedesiworadvisoryinc.digital
domainqasifekaxiisinvestmentsinc.buzz
domainqasukikousconsulting.digital
domainqehuxiqajusmanagement.click
domainqitobizeexservices.digital
domainqiwiwujujumventures.click
domainqiwozoleloumsolutions.click
domainqiyetaumanalytics.click
domainqodasalotiaservices.click
domainqojilotuumcollective.digital
domainqoyeharusmanagement88.click
domainquwawevurioncapital.click
domainreboyixuheongroup.click
domainregixivoussystems.click
domainrejoqionoperationsltd.digital
domainreqomurispartners.digital
domainrewewironcapitalinc.digital
domainreyikeorventuresinc.click
domainrigusoyaexsolutions21.digital
domainrizacaagroupltd.click
domainrogadelivoorcapital36.click
domainruhodafuorservices.digital
domainrupehuhexiaoperations.click
domainruxaqasaciusanalyticsinc.digital
domainsabafevorpartners.click
domainsabumareseuscollectiveco.digital
domainsahujoiapartners.click
domainsaqifuexcapital26.digital
domainsaxaqajazorgroup48.digital
domainsecizoxecusservicesco.click
domainsecoseonanalytics48.digital
domainsexekeonventures.digital
domainsihafafausholdings.digital
domainsowavokumcapital.digital
domainstellarcloudcore.digital
domainsuvumobamonventures88.digital
domaintahukupiiaholdingsnet.click
domaintaseqeferoexoperations.digital
domaintefalamaboorindustries.click
domainteleciwimexresources.click
domaintemorewuamanagement36.click
domainteriniisgroupco.click
domainterraultraconsulting.digital
domaintijumoumsystems8.click
domaintiqefuciexpartners.digital
domaintojuqiuscapital.digital
domaintoxejuqeusoperations.click
domaintuvoxooncapitalltd.digital
domainvatiluagroup.digital
domainvenatisifiscollective36.click
domainveritaunitedanalyticsnet.digital
domainvipelomoteexcollective.click
domainviqevojedumcollective.click
domainvisionglobalmatrix.click
domainvixumuwuforindustriesltd.digital
domainvogixotuheumindustries.digital
domainvortexonefusion.digital
domainvurobizexgroup.click
domainwakucopivisindustries.click
domainwanodufijooncapital21.digital
domainwatihewaoperations.click
domainwazoliputumventuresinc.digital
domainwegemaiasolutions.click
domainwigaqofexmanagementltd.digital
domainwineweexindustriesco.click
domainwitesokusresourcesinc.click
domainwitibausinvestments.click
domainwobixifexanalytics.digital
domainwodipazuruumsystems.click
domainwomijubiiscollective.digital
domainwotoxicadouspartners.digital
domainwoyiwuusanalytics.click
domainwuxahikormanagement.click
domainwuzalowausservicesinc.click
domainxapevaxeziscollectiveinc.digital
domainxavohudalorindustries.digital
domainxawocigainvestmentsltd.click
domainxayazixacapitalco.digital
domainxenepetiiaadvisoryco.digital
domainxewovasajuspartners.digital
domainxinikalumissystems.click
domainxititiloboiscollectiveltd.click
domainxocalevoumsystems.click
domainxocebuhisacapital99.click
domainxonegufikiaadvisory.click
domainxoserukongroup99.digital
domainxotoraguiaadvisory.digital
domainxoxejiponadvisory.click
domainxupiloresexholdings.digital
domainxuqiciiasystems16.digital
domainxusinozeumcapital.digital
domainyacifegoorconsulting.click
domainyalasoaoperations.click
domainyalayiroconholdingsnet.click
domainyefigaxexholdingsinc.digital
domainyeweferiumindustries.digital
domainyipaziisindustries88.click
domainyivivutetoncapital.click
domainyokujoyisinvestments.click
domainyuhosehiumpartners.click
domainyukabaaanalytics.digital
domainyukoloiacollective.digital
domainyupacefeuspartners.click
domainzapuwuyociacollective.click
domainzayumanofuorholdings.click
domainzigiwuxoaoperations99.digital
domainzinawofizeapartnersltd.digital
domainzufokahumservicesco.click
domainzuhoyihoparesources.digital
domainzujesemuhaexholdings.click
domainzuxulinaanalytics.digital
domainmaxhealthinsurance360.com
osx_atomic
domainmaybanca99.com
osx_atomic
domainprimitivoclothing.com
osx_atomic
domainrydetheatre.com
osx_atomic
domainsajidmunir.com
osx_atomic
domainthebeachpokhara.com
osx_atomic
domainwilltecollc.com
osx_atomic
domainworldstreet.com
osx_atomic
domaincljcdjsdojfknksff.pages.dev
osx_atomic
domainfdicclaimadministration.org
ek_clearfake
domainfinish-cptv-bk.com
ek_clearfake
domainkyber-unions.com
ek_clearfake
domainhunt.sabalillc.com
hak5cloud_c2
domainchrroome-google.hl.cn
fakeapp
domaincn.chroomee-google.hl.cn
fakeapp
domaindgf-google.com.cn
fakeapp
domaingoogle-app.hl.cn
fakeapp
domaingoogle-google-google.com.cn
fakeapp
domainwep-google.com.cn
fakeapp
domainbuypowermastery.com
fakeapp
domainmb66.baby
fakeapp
domaincapgr.club
android_joker
domainhyfour.pw
android_joker
domainpledg.pw
android_joker
domainzast.cloud
android_joker
domainauthterms.mydns.bz
apt_kimsuky
domaindocnodeaccess.mydns.bz
apt_kimsuky
domaindt.ndocbpass.dns.army
apt_kimsuky
domainedoc.authterms.mydns.bz
apt_kimsuky
domaininfo.docnodeaccess.mydns.bz
apt_kimsuky
domaininvoice.npdocrequires.mydns.bz
apt_kimsuky
domainnavoripes.dns.army
apt_kimsuky
domainnid-login.navoripes.dns.army
apt_kimsuky
domainnid-naverstk.onthewifi.com
apt_kimsuky
domainnid-naveryuw.ddnsking.com
apt_kimsuky
domainnid.bn.nnvesips.dns.army
apt_kimsuky
domainnidloes.bn.nnvesips.dns.army
apt_kimsuky
domainnidlogins.cn.nnvesips.dns.army
apt_kimsuky
domainnnvesips.dns.army
apt_kimsuky
domainnpdocrequires.mydns.bz
apt_kimsuky
domainelecviews66.dynv6.net
apt_kimsuky
domainelecviews85.dynv6.net
apt_kimsuky
domainmhjjh.dynv6.net
apt_kimsuky
domainaaa-amc.top
simplehelp
domainaghead.myftp.org
simplehelp
domain21.ddns.net
fakeapp
domaintonycampos.no-ip.biz
fakeapp
domainyouriptester.camdvr.org
asyncrat
domainchs.no-ip.biz
fakeapp
domainsfxml.top
fakeapp
domainopenai-sora2.com
osx_atomic
domainadobe-viewer.0lsons.com
fakeapp
domainapp.enekora.com
fakeapp
domainbulledesophros.top
fakeapp
domainenekora.com
fakeapp
domainfuckcartel.icu
fakeapp
domainsfacildevs.online
fakeapp
domaincyberstrike.teledocmedical.ai
cyberstrikeai
domain13udm.v6.navy
apt_kimsuky
domain2ebq4.dns.army
apt_kimsuky
domain3tg8i.dns.army
apt_kimsuky
domain4ckuc.dns.army
apt_kimsuky
domain6exkk.v6.navy
apt_kimsuky
domain747yz.v6.navy
apt_kimsuky
domain7ieub.dns.army
apt_kimsuky
domain9jgeb.v6.navy
apt_kimsuky
domaina7f3q.v6.navy
apt_kimsuky
domainbng0e.dns.army
apt_kimsuky
domaincd1h3.dns.army
apt_kimsuky
domaindbi0b.v6.navy
apt_kimsuky
domainfsmhn.v6.navy
apt_kimsuky
domaingk5c4.v6.navy
apt_kimsuky
domainifrdr.dns.army
apt_kimsuky
domainjupbc.dns.army
apt_kimsuky
domainl6hlm.v6.navy
apt_kimsuky
domainred9c.dns.army
apt_kimsuky
domainrpf9z.v6.navy
apt_kimsuky
domains7ycn.dns.army
apt_kimsuky
domainumc5a.dns.army
apt_kimsuky
domainyv3ie.dns.army
apt_kimsuky
domain43t34t.yv3ie.dns.army
apt_kimsuky
domaing24.bng0e.dns.army
apt_kimsuky
domainlinker.l6hlm.v6.navy
apt_kimsuky
domaint34r.7ieub.dns.army
apt_kimsuky
domainxvzdn.2ebq4.dns.army
apt_kimsuky

Ip

ValueDescriptionCopy
ip93.127.133.106
apt_transparenttribe
ip45.138.16.236
asyncrat
ip185.244.104.209
cyberstrikeai
ip37.233.83.185
cyberstrikeai

Threat ID: 69ad89812904315ca3b2115c

Added to database: 3/8/2026, 2:36:49 PM

Last enriched: 3/8/2026, 2:51:59 PM

Last updated: 3/14/2026, 2:24:15 AM

Views: 159

Community Reviews

0 reviews

Crowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.

Sort by
Loading community insights…

Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.

Actions

PRO

Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.

Please log in to the Console to use AI analysis features.

External Links

Search on Google

Need more coverage?

Upgrade to Pro Console in Console -> Billing for AI refresh and higher limits.

For incident response and remediation, OffSeq services can help resolve threats faster.

Latest Threats

Breach by OffSeqOFFSEQFRIENDS — 25% OFF

Check if your credentials are on the dark web

Instant breach scanning across billions of leaked records. Free tier available.

Scan now
OffSeq TrainingCredly Certified

Lead Pen Test Professional

Technical5-day eLearningPECB Accredited
View courses