Skip to main content
Press slash or control plus K to focus the search. Use the arrow keys to navigate results and press enter to open a threat.
Reconnecting to live updates…

Maltrail IOC for 2026-06-30

0
Medium
Published: 06/29/2026 (06/29/2026, 00:00:00 UTC)
Source: CIRCL OSINT Feed

Description

Maltrail IOC for 2026-06-30

AI-Powered Analysis

Machine-generated threat intelligence

AILast updated: 06/30/2026, 08:51:23 UTC

Technical Analysis

The report details a Maltrail IOC for malware detected on 2026-06-30, sourced from the CIRCL OSINT feed. It is an external analysis of network activity classified as medium risk. The data lacks specific technical indicators, affected software versions, or exploit details. No patch or fix is available, and no active exploitation is known.

Potential Impact

The impact is assessed as medium risk based on the source classification. Without specific exploit details or affected software, the direct impact cannot be further detailed. The IOC indicates potential malware-related network activity that may warrant monitoring.

Mitigation Recommendations

No patch or official remediation is available for this IOC. Organizations should consider integrating the IOC into their detection systems if applicable. Since this is an OSINT observation without active exploitation, no urgent action is mandated by the vendor or source.

Pro Console: star threats, build custom feeds, automate alerts via Slack, email & webhooks.Upgrade to Pro

Technical Details

Uuid
413d6ff6-63bb-4251-940c-7e1fa522edee
Original Timestamp
1782806406

Indicators of Compromise

Url

ValueDescriptionCopy
urlhttps://api.github.com/repos/stamparm/maltrail/commits/970a302804927c665bf38afa4eb790c17c02055e
android_fvncbot
urlhttps://api.github.com/repos/stamparm/maltrail/commits/ab2be290147ef327f094bb9350d99f7bb1a118ad
cyberstrikeai
urlhttps://api.github.com/repos/stamparm/maltrail/commits/10ed0e9444e7ebefc0d9d5edaaa16fc9629dff07
offloader
urlhttps://api.github.com/repos/stamparm/maltrail/commits/6dbb09d4cced69def3ba0cc2ebc7e919f15d9f1c
socgholish
urlhttps://x.com/Malware_Brandon/status/2071663022938976369
socgholish
urlhttps://api.github.com/repos/stamparm/maltrail/commits/c264a6d6581282e9edf93d989d9973f0152ea0b0
apt_kimsuky
urlhttps://api.github.com/repos/stamparm/maltrail/commits/5798671ff3d0281051590630c695c32a0755750f

Domain

ValueDescriptionCopy
domainflosea.buzz
android_fvncbot
domainmoja-paczka.flosea.buzz
android_fvncbot
domainstickcloth.xyz
offloader
domainletsgoautomotive.com
socgholish
domainjs-pre.letsgoautomotive.com
socgholish
domainphp-panel.letsgoautomotive.com
socgholish
domainanxtlog.dynuddns.net
apt_kimsuky
domainedomoies.dynuddns.net
apt_kimsuky
domainipsnar.dynuddns.net
apt_kimsuky
domainmexnhis.dynu.org
apt_kimsuky
domainmtnsidc.dynu.org
apt_kimsuky
domainmtsndic.dynu.org
apt_kimsuky
domainncodgbcheck.dynu.org
apt_kimsuky
domainncodgbpass.dynu.org
apt_kimsuky
domainncodgbverify.dynu.org
apt_kimsuky
domainncodgcpass.dynu.org
apt_kimsuky
domainncodgcverify.dynu.org
apt_kimsuky
domainncodgdcheck.dynu.org
apt_kimsuky
domainncodgdpass.dynu.org
apt_kimsuky
domainncodgeverify.dynu.org
apt_kimsuky
domainnsmidtc.dynu.org
apt_kimsuky
domainntrightblog.dynu.net
apt_kimsuky
domainntrightblogs.dynu.net
apt_kimsuky
domainonlinepoldep.dynu.net
apt_kimsuky
domainonlinepoldeps.dynu.net
apt_kimsuky
domaintaxonload.dynu.net
apt_kimsuky
domaintaxonloads.dynu.net
apt_kimsuky
domainutsnidm.dynu.org
apt_kimsuky
domainallodialspace.click
domainareanmatrix.click
domainatwainkernel.digital
domaincervicalnexus.click
domaincetyliczen.click
domaincolonilogic.digital
domainepimerumledger.digital
domainflewitlock.digital
domainfluavilezen.click
domainfumeusetrust.click
domaingramperlogic.digital
domainguenonvector.click
domainintrinehub.digital
domainnexum16management.digital
domainpapingoflux.digital
domainpeasonvaulton.click
domainposthumestack.digital
domainresweptlock.click
domainrotelabs.digital
domainskreighdata.click
domaintopiahub.click
domaintweakylabs.click
domainunroughbrain.digital

Ip

ValueDescriptionCopy
ip202.160.76.181
cyberstrikeai
ip202.160.76.236
cyberstrikeai

Threat ID: 6a437ffb27e9c7971967a4c6

Added to database: 06/30/2026, 08:36:11 UTC

Last enriched: 06/30/2026, 08:51:23 UTC

Last updated: 07/01/2026, 03:12:49 UTC

Views: 35

Community Reviews

0 reviews

Crowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.

Sort by
Loading community insights…

Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.

Actions

PRO

Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.

Please log in to the Console to use AI analysis features.

External Links

Need more coverage?

Upgrade to Pro Console for AI refresh and higher limits.

For incident response and remediation, OffSeq services can help resolve threats faster.

Latest Threats

Breach by OffSeqOFFSEQFRIENDS — 25% OFF

Check if your credentials are on the dark web

Instant breach scanning across billions of leaked records. Free tier available.

Scan now
OffSeq TrainingCredly Certified

Lead Pen Test Professional

Technical5-day eLearningPECB Accredited
View courses