← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Malvertizing: Exponential Adult Contact Revenge Porn & Vulnerabilities
WHITE [Unnamed group] OctoSeek 2023-09-18 Modified: 2023-10-18
3129
IOCs
HIGH VOLUME
BrownTube.com/Target? Today: Blacklisted & Whitelisted domain. All malware is correct and verified and by now historical. Evader, detects all AI and intrusion. Packed! Farr more vulnerabilities than necessary to list. Research shows this attack on a targeted individuals dates back years. There is evidence of a browser malware that would direct targeted person's directly to site where device is brutally infected. Based on online research target may have been a victim of crime. Even if that weren't the case, this is definitely criminal and intentional. There is underage content advertised. Web and Hidden CAMS accessed. Verdict: Revenge Porn Target country clarifier: Origin of campaign US. It is advertised in Russia via Bing aka Yandex/Microsoft merge. It's is viewable Anywhere.
pierced pussyshemale interracialthai lesbasia analgirl on girlhappy endthai sexamateurthai porngay amateuramateur amateurasian bigteens povbig titstsara brashearsporn thaicisco umbrellamalwarealexa topmillionsitesafe siteheurinternet stormartemisadwarealexacoinmineriframeriskwarepatchercrackblacklistmalware sitemalicious sitedetection listphishingwindows ntfilemisc attacket torknown torrelayrouterexitnode trafficblacklist httpswhois recordresolutionsreferrerSuricatacontent reputationALERT: WEB CAMSchild abuseSouth Carolina Federal Credit Union PhishingPhishing.HTMLjs userevaderredirectbrowser malwarecyber crimeAbuseYandexUnited StatesSuricata AlertFrom America to Russia
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
Artemis EngineBox Malware Malware Generic.Malware Private Internet Access Content Reputation #Exploit:NtQueryIntervalProfile HackTool:Win32/IPCCrack #LowFiHSTR:Program:Win32/CoinMiner_CGMiner_Clean RiskWare.Crack #LowFi:Adware:Win32/Altnet Phishing.BNR Ameriprise Financial phishing #Lowfi:HSTR:Win32/DownloadMR Malware Download #Lowfi:HSTR:Win32/WidgiToolbar Generic.Malware Gen:Variant.MSILPerseus Application.Agent Backdoor.PHP.WebShell MalwareHiderPatched JS.eIframeAcNMe Pua.Snojan Application.CoinMiner W32.HfsAdware Application.Clenonta Trojan.QUAF Hoax.DeceptPCClean Hoax.HTML.Phish Gen:Variant.Razy Malware.Phish Unsafe.AI_Score_100% Trojan.HTML.Generic.4 Phish.82B7 HTML:PhishingMS W32.AIDetectVM HTML.Generic Phishing.S23 ScrInject.B Adware.Agent Gen:Variant.Ursu Trojan.Script.Generic Trojan.Agent Trojan.Reconyc ml.Generic Ole2.Macro.Agent HTML:PhishingMail Gen:Variant.Application.LoadMoney Heur.HTMLUnescape Trojan.Disco Heur.HTMLUnescape PUP.Dstudio.dd Ransom.Win64.Wacatac.oa JS:Trojan.Cryxos Gen:Variant.Application.Bundler.Somoto Phishing.DOC Zpevdo.B Ole2.Macro.Agent Trojan.Reconyc 1 HTML:PhishingMail Hoax.JS.Phish Gen:Variant.Ser.Bulz Phishing.Agent HEUR:Trojan.BAT Gen:NN.ZexaF.34090 Gen:Variant.Graftor Gen:Variant.Razy malicious.moderate.ml malicious.35bb6b Vdehu.A TScope.Malware PUA.NSISmod Trojan.Uztuby JS.Phishing Win64:Malware AGEN.1031860 malicious.high.ml Trojan.Script.Phish HTML:Instagram Gen:Variant.Ursu Application.Clenonta DriverAgent.A potentially unwanted ML.Attribute
Indicators of Compromise (1 / 3129 total)
All CVE FileHash-MD5 domain hostname URL FileHash-SHA256 FileHash-SHA1 URI FilePath
TYPEINDICATORDESCRIPTIONCREATED
FilePath v@1.8.1 2023-09-18