← Back to Pulse Feed
PULSE DETAIL
ESET researchers have discovered a new watering hole campaign targeting several websites in Southeast Asia, and that is believed to have been active since September 2018. This campaign stands out because of its large scale, as we were able to identify 21 compromised websites, some of which are particularly notable. Among the compromised websites were the Ministry of Defense of Cambodia, the Ministry of Foreign Affairs and International Cooperation of Cambodia and several Vietnamese newspaper or blog websites.
Indicators of Compromise (50)
| TYPE | INDICATOR | DESCRIPTION | CREATED | |
|---|---|---|---|---|
| hostname | cyhire.cechire.com | — | 2018-11-20 | |
| domain | ad-appier.com | — | 2018-11-20 | |
| domain | benchtag2.com | — | 2018-11-20 | |
| domain | bootstraplink.com | — | 2018-11-20 | |
| domain | cdn-ampproject.com | — | 2018-11-20 | |
| domain | cdn-tynt.com | — | 2018-11-20 | |
| domain | cdnazure.com | — | 2018-11-20 | |
| domain | effecto-azureedge.net | — | 2018-11-20 | |
| domain | imgincapsula.com | — | 2018-11-20 | |
| domain | labs-apnic.net | — | 2018-11-20 | |
| domain | lb-web-stat.com | — | 2018-11-20 | |
| domain | metacachecdn.com | — | 2018-11-20 | |
| domain | optnmstri.com | — | 2018-11-20 | |
| domain | p-typekit.com | — | 2018-11-20 | |
| domain | pagefairjs.com | — | 2018-11-20 | |
| domain | player-cnevids.com | — | 2018-11-20 | |
| domain | s-adroll.com | — | 2018-11-20 | |
| domain | s0-2mdn.net | — | 2018-11-20 | |
| domain | scdn-cxense.com | — | 2018-11-20 | |
| domain | secure-imrworldwide.com | — | 2018-11-20 | |
| domain | sskimresources.com | — | 2018-11-20 | |
| domain | static-addtoany.com | — | 2018-11-20 | |
| domain | tiqqcdn.com | — | 2018-11-20 | |
| domain | tiwimg.com | — | 2018-11-20 | |
| domain | utagscript.com | — | 2018-11-20 | |
| domain | widgets-wp.com | — | 2018-11-20 | |
| hostname | 10cm.mypets.ws | — | 2018-11-20 | |
| hostname | arabica.podzone.net | — | 2018-11-20 | |
| hostname | assets-cdn.blogdns.net | — | 2018-11-20 | |
| hostname | cart.gotdns.com | — | 2018-11-20 | |
| hostname | cdn1.shacknet.us | — | 2018-11-20 | |
| hostname | cdnscr.thruhere.net | — | 2018-11-20 | |
| hostname | ds-aksb-a.likescandy.com | — | 2018-11-20 | |
| hostname | figbc.knowsitall.info | — | 2018-11-20 | |
| hostname | gui.dnsdojo.net | — | 2018-11-20 | |
| hostname | html5.endofinternet.net | — | 2018-11-20 | |
| hostname | ichefbcci.is-a-chef.com | — | 2018-11-20 | |
| hostname | io.blogsite.org | — | 2018-11-20 | |
| hostname | lcontacts.servebbs.net | — | 2018-11-20 | |
| hostname | nav.neat-url.com | — | 2018-11-20 | |
| hostname | pixel1.dnsalias.net | — | 2018-11-20 | |
| hostname | static.tagscdn.com | — | 2018-11-20 | |
| hostname | straits-times.is-an-actor.com | — | 2018-11-20 | |
| hostname | tcog.thruhere.net | — | 2018-11-20 | |
| hostname | tips-renew.webhop.info | — | 2018-11-20 | |
| hostname | trc.webhop.net | — | 2018-11-20 | |
| hostname | weblink.selfip.info | — | 2018-11-20 | |
| hostname | wfpscripts.homeunix.com | — | 2018-11-20 | |
| hostname | your-ip.getmyip.com | — | 2018-11-20 | |
| FileHash-SHA256 | 666418c2199194fcf5957e9563c8f4425431b794089f535bf9e8e7e70115da42 | — | 2018-11-21 |