Skip to main content
Press slash or control plus K to focus the search. Use the arrow keys to navigate results and press enter to open a threat.
Reconnecting to live updates…

Maltrail IOC for 2026-07-18

0
Medium
Published: 07/17/2026 (07/17/2026, 00:00:00 UTC)
Source: CIRCL OSINT Feed

Description

Maltrail IOC for 2026-07-18

AI-Powered Analysis

Machine-generated threat intelligence

AILast updated: 07/18/2026, 17:28:22 UTC

Technical Analysis

The report details a Maltrail IOC from CIRCL OSINT Feed dated 2026-07-18, categorized as malware and network activity. It serves as an observational indicator without detailed technical or exploitation information. There are no known exploits in the wild, no affected software versions, and no patch or remediation available. The data is derived from external OSINT sources and manual collection, indicating ongoing monitoring rather than a direct vulnerability or exploit.

Potential Impact

The impact is currently limited to detection of suspicious or malicious network activity as identified by Maltrail. There is no evidence of active exploitation or direct compromise of specific software or systems. The medium severity suggests a moderate level of concern for network defenders to investigate but does not indicate an immediate critical threat.

Mitigation Recommendations

No patch or official remediation is available or required. Network defenders should use this IOC to enhance monitoring and detection capabilities within their environments. Since this is an observational OSINT feed entry, no direct remediation actions are specified or necessary beyond standard incident response procedures if the IOC is detected.

Pro Console: star threats, build custom feeds, automate alerts via Slack, email & webhooks.Upgrade to Pro

Technical Details

Uuid
c7d460ba-e4f5-4ed6-9714-9cda114a4c62
Original Timestamp
1784376007

Indicators of Compromise

Url

ValueDescriptionCopy
urlhttps://api.github.com/repos/stamparm/maltrail/commits/43684a696cd2c96496db75ba66df2484e941969e
sectoprat
urlhttps://x.com/smica83/status/2078393421476106614
sectoprat
urlhttps://api.github.com/repos/stamparm/maltrail/commits/0ee034cf8bc9260e97979ef8d03492d949597ca7
apt_sidewinder
urlhttps://api.github.com/repos/stamparm/maltrail/commits/872a3ece7409465bb672efa75abf390d50ab1342
apt_kimsuky
urlhttps://api.github.com/repos/stamparm/maltrail/commits/6234e7c27c1f78e8b096a157b2e545a3bb023b07
apt_lazarus
urlhttps://api.github.com/repos/stamparm/maltrail/commits/89b9fb0199676e1f3b78c2025134cdc5f802b2df
apt_lazarus
urlhttps://www.elastic.co/security-labs/contagious-interview-malware-svg-steganography
apt_lazarus
urlhttps://api.github.com/repos/stamparm/maltrail/commits/2cc36a33ac27cfd87f4ca282d444dfeeb71895d4
cyberstrikeai
urlhttps://api.github.com/repos/stamparm/maltrail/commits/aa233641fa73dc0f068ffd71ab5147baa8c0aa36
apt_transparenttribe

Domain

ValueDescriptionCopy
domainpub-4ffc3db6ed2d4b3ca1d8eeda7e2431e3.r2.dev
sectoprat
domainvisa-nadra-gov-pk.info
apt_sidewinder
domainncodgpcheck.dynu.org
apt_kimsuky
domainncodgppass.dynu.org
apt_kimsuky
domainpoltoast.dynu.net
apt_kimsuky
domainhohoho.rightwidth.dev
apt_lazarus
domainhuhuhu.rightwidth.dev
apt_lazarus
domainrightwidth.dev
apt_lazarus
domaincontroller.rightwidth.dev
apt_lazarus
domainfile.rightwidth.dev
apt_lazarus
domainldb.rightwidth.dev
apt_lazarus
domainupload.rightwidth.dev
apt_lazarus
domainsecurity.ccocc.cyou
cyberstrikeai
domaincrsorgi.gov.in.ev2.shop
apt_transparenttribe
domaindc.crsorgi.gov.in.ev2.shop
apt_transparenttribe
domainev2.shop
apt_transparenttribe
domaingov.in.ev2.shop
apt_transparenttribe
domainin.ev2.shop
apt_transparenttribe

Ip

ValueDescriptionCopy
ip188.40.64.61
apt_lazarus
ip195.26.248.212
apt_lazarus

Threat ID: 6a5bb48144ab8fbf7c95ea77

Added to database: 07/18/2026, 17:14:41 UTC

Last enriched: 07/18/2026, 17:28:22 UTC

Last updated: 07/18/2026, 19:26:34 UTC

Views: 10

Community Reviews

0 reviews

Crowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.

Sort by
Loading community insights…

Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.

Actions

PRO

Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.

Please log in to the Console to use AI analysis features.

External Links

Need more coverage?

Upgrade to Pro Console for AI refresh and higher limits.

For incident response and remediation, OffSeq services can help resolve threats faster.

Latest Threats

Breach by OffSeqOFFSEQFRIENDS — 25% OFF

Check if your credentials are on the dark web

Instant breach scanning across billions of leaked records. Free tier available.

Scan now
OffSeq TrainingCredly Certified

Lead Pen Test Professional

Technical5-day eLearningPECB Accredited
View courses