← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
IOCs - Ursnif/Gozi - @JAMESWT_MHT - 1/23/23
WHITE Techronik 2023-01-23 Modified: 2023-01-23
72
IOCs
HIGH VOLUME
https://twitter.com/JAMESWT_MHT/status/1617474664728592384 URLhaus - https://urlhaus.abuse.ch/browse/tag/agenziaentrate/
goziursnif
MITRE ATT&CK & Malware Families
MALWARE FAMILIES
ursnif Gozi
Indicators of Compromise (72)
All URL domain hostname
TYPEINDICATORDESCRIPTIONCREATED
URL http://agenziaonline.top/index.php 2023-01-23
URL http://akeadparis.com/agenzia/azienda/verificare.zip 2023-01-23
URL http://blogslinks.top/readme.txt 2023-01-23
URL http://dexpertspro.com/headers/azienda/avviso.zip 2023-01-23
URL http://dominikania.com 2023-01-23
URL http://dominikania.com/ 2023-01-23
URL http://easytotorial.com 2023-01-23
URL http://easytotorial.com/ 2023-01-23
URL http://fierstar.com 2023-01-23
URL http://fierstar.com/ 2023-01-23
URL http://fortdelgres.com/headers/online/index.php 2023-01-23
URL http://fortihook.com 2023-01-23
URL http://fortihook.com/ 2023-01-23
URL http://ginoscratch.com/agenzia/azienda/modulo.zip 2023-01-23
URL http://inthbc.com/agenzia/azienda/Agenzia.zip 2023-01-23
URL http://inthbc.com/agenzia/azienda/AgenziaEntrate.zip 2023-01-23
URL http://inthbc.com/agenzia/azienda/Agenzia_Entrate.zip 2023-01-23
URL http://inthbc.com/agenzia/azienda/agenzia_delle_entrate.z... 2023-01-23
URL http://inthbc.com/agenzia/azienda/avviso.zip 2023-01-23
URL http://inthbc.com/agenzia/azienda/contabilita.zip 2023-01-23
URL http://inthbc.com/agenzia/azienda/contratto.zip 2023-01-23
URL http://inthbc.com/agenzia/azienda/documento.zip 2023-01-23
URL http://inthbc.com/agenzia/azienda/modulo.zip 2023-01-23
URL http://inthbc.com/agenzia/azienda/verificare.zip 2023-01-23
URL http://kiengiang24h.com/agenzia/azienda/contabilita.zip 2023-01-23
URL http://kitdigital.tecoinfor.com/agenzia/azienda/modulo.zi... 2023-01-23
URL http://lanrungnamtau.com/agenzia/azienda/Agenzia_Entrate.... 2023-01-23
URL http://premiumlist.top/image.txt 2023-01-23
URL http://recuperandotuamor.com/imprendit.php 2023-01-23
URL http://wynecare.com/static/azienda/contabilita.zip 2023-01-23
URL http://zopxor.com 2023-01-23
URL http://zopxor.com/ 2023-01-23
URL https://blogslink.top/readme.txt 2023-01-23
URL https://blogslinks.top/readme.txt 2023-01-23
URL https://dominikania.com 2023-01-23
URL https://dominikania.com/ 2023-01-23
URL https://easytotorial.com 2023-01-23
URL https://easytotorial.com/ 2023-01-23
URL https://enmillenium.com/agenzia/azienda/contratto.zip 2023-01-23
URL https://fierstar.com 2023-01-23
URL https://fierstar.com/ 2023-01-23
URL https://fortihook.com 2023-01-23
URL https://fortihook.com/ 2023-01-23
URL https://onlinerlink.top/index.php 2023-01-23
URL https://premiumlist.top/image.txt 2023-01-23
URL https://securezzalines.top/image.txt 2023-01-23
URL https://www.lasikofmichigan.com/wp-content/themes/azienda... 2023-01-23
URL https://zopxor.com 2023-01-23
URL https://zopxor.com/ 2023-01-23
domain agenziaonline.top 2023-01-23
domain akeadparis.com 2023-01-23
domain blogslink.top 2023-01-23
domain blogslinks.top 2023-01-23
domain dexpertspro.com 2023-01-23
domain dominikania.com 2023-01-23
domain easytotorial.com 2023-01-23
domain enmillenium.com 2023-01-23
domain fierstar.com 2023-01-23
domain fortdelgres.com 2023-01-23
domain fortihook.com 2023-01-23
domain ginoscratch.com 2023-01-23
domain inthbc.com 2023-01-23
domain kiengiang24h.com 2023-01-23
domain lanrungnamtau.com 2023-01-23
domain onlinerlink.top 2023-01-23
domain premiumlist.top 2023-01-23
domain recuperandotuamor.com 2023-01-23
domain securezzalines.top 2023-01-23
domain wynecare.com 2023-01-23
domain zopxor.com 2023-01-23
hostname kitdigital.tecoinfor.com 2023-01-23
hostname www.lasikofmichigan.com 2023-01-23
References (2)
↗ https://urlhaus.abuse.ch/browse/tag/agenziaentrate/ ↗ Gozi_1-23-23.csv