← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Investigating a Recent Facebook Phishing Campaign
WHITE AlienVault 2023-03-24 Modified: 2023-04-23
35
IOCs
MEDIUM VOLUME
SilentPush investigates a recent Facebook phishing campaign targeting social media users on Facebook Messenger, but what do we know about the attack's tactics and what can we do about it?
phishing
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
Indicators of Compromise (35)
All URL domain hostname
TYPEINDICATORDESCRIPTIONCREATED
URL http://video3w.com/16751921325rpQpSopczqLtIaPdZKWG-bB7SeTbtDoIMd0jpjZAUjO5 2023-03-24
domain 3retc.com 2023-03-24
domain adblocker-sentinel.net 2023-03-24
domain adfreewatch.info 2023-03-24
domain buzzonclick.com 2023-03-24
domain globaladblocker.com 2023-03-24
domain newwvideos.com 2023-03-24
domain video3w.com 2023-03-24
domain videolass.com 2023-03-24
domain videolost21.com 2023-03-24
domain videosdidi.com 2023-03-24
domain videospriv8.com 2023-03-24
domain workspacevideo.email 2023-03-24
hostname photo.asf5.sbs 2023-03-24
hostname tiktok.0dtlvs.cloud 2023-03-24
hostname tiktok.2rkb.cloud 2023-03-24
hostname tiktok.4fbg.cloud 2023-03-24
hostname tiktok.4ope9v.cloud 2023-03-24
hostname tiktok.8rghj.cloud 2023-03-24
hostname tiktok.8rghj.sbs 2023-03-24
hostname tiktok.bdwnl.cloud 2023-03-24
hostname tiktok.dahaak.sbs 2023-03-24
hostname tiktok.dfh5.sbs 2023-03-24
hostname tiktok.e09rg.cloud 2023-03-24
hostname tiktok.fre3.sbs 2023-03-24
hostname tiktok.km8j.sbs 2023-03-24
hostname tiktok.sd4rge.cloud 2023-03-24
hostname tiktok.ss4gy.cloud 2023-03-24
hostname tiktok28.ykw3.com 2023-03-24
hostname tiktokl.3retc.com 2023-03-24
hostname tiktoks.0dtlvs.cloud 2023-03-24
hostname tiktoks.ae4eg.cloud 2023-03-24
hostname tiktoks.dfh5.sbs 2023-03-24
hostname tiktoks.rhlm4.cloud 2023-03-24
hostname video.tv1d30.sbs 2023-03-24
References (1)
↗ https://www.silentpush.com/blog/fake-links-and-compromised-messenger-accounts-investigating-a-recent-facebook-phishing-campaign