← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Silent Push maps over 150 new Lumma C2 infostealer IOCs — Silent Push Threat Intelligence
As revealed by Silent Push's recent investigation, Lumma, an information stealer, has an extensive command and control infrastructure with over 150 previously unidentified servers. The research also unveiled an interesting, unique connection to the historical Russian poet Sergei Yesenin, which aided the identification of several servers. Threat actors typically deliver Lumma through spear-phishing and malvertisement campaigns. This report delves deep into Lumma's tactics and potential risks and offers actionable recommendations for organizations.
| TYPE | INDICATOR | DESCRIPTION | CREATED | |
|---|---|---|---|---|
| URL | http://chocomeat.fun/login | — | 2023-10-10 | |
| domain | 2flowers-my.xyz | — | 2023-10-10 | |
| domain | adavefrees.xyz | — | 2023-10-10 | |
| domain | blockall-my.xyz | — | 2023-10-10 | |
| domain | blockspam-my.xyz | — | 2023-10-10 | |
| domain | bondappeal.xyz | — | 2023-10-10 | |
| domain | boxclod.xyz | — | 2023-10-10 | |
| domain | buyerbrand.xyz | — | 2023-10-10 | |
| domain | catfoodbio.xyz | — | 2023-10-10 | |
| domain | chocomeat.fun | — | 2023-10-10 | |
| domain | cleanvr.xyz | — | 2023-10-10 | |
| domain | cloudsnike-my.xyz | — | 2023-10-10 | |
| domain | coinflore-my.xyz | — | 2023-10-10 | |
| domain | coolworks.xyz | — | 2023-10-10 | |
| domain | coolworkss.xyz | — | 2023-10-10 | |
| domain | cosmosvr3d.xyz | — | 2023-10-10 | |
| domain | culturalevenings.xyz | — | 2023-10-10 | |
| domain | curtainjors.fun | — | 2023-10-10 | |
| domain | cvadrobox.xyz | — | 2023-10-10 | |
| domain | damageagio.xyz | — | 2023-10-10 | |
| domain | deeppoetry.xyz | — | 2023-10-10 | |
| domain | demanddeal.xyz | — | 2023-10-10 | |
| domain | diavellipromo-my.xyz | — | 2023-10-10 | |
| domain | dogshanter.xyz | — | 2023-10-10 | |
| domain | downloaddedattre.fun | — | 2023-10-10 | |
| domain | downloadfiles-my.xyz | — | 2023-10-10 | |
| domain | dromautocar.xyz | — | 2023-10-10 | |
| domain | dropfiles-my.xyz | — | 2023-10-10 | |
| domain | ducklingibises.fun | — | 2023-10-10 | |
| domain | ellifotolive.xyz | — | 2023-10-10 | |
| domain | erorblackday.xyz | — | 2023-10-10 | |
| domain | firmpanacewap.fun | — | 2023-10-10 | |
| domain | fortreepledeeple.fun | — | 2023-10-10 | |
| domain | glaziercarde.fun | — | 2023-10-10 | |
| domain | gstatic-service.io | — | 2023-10-10 | |
| domain | housegrommy.fun | — | 2023-10-10 | |
| domain | izoc.us | — | 2023-10-10 | |
| domain | jumperstad.fun | — | 2023-10-10 | |
| domain | lackbasinmu.fun | — | 2023-10-10 | |
| domain | lazagrc2cnk.xyz | — | 2023-10-10 | |
| domain | lazagrc3cnk.xyz | — | 2023-10-10 | |
| domain | ocmtancmi2c4t.life | — | 2023-10-10 | |
| domain | ocmtancmi2c4t.live | — | 2023-10-10 | |
| domain | ocmtancmi2c4t.site | — | 2023-10-10 | |
| domain | ocmtancmi2c4t.website | — | 2023-10-10 | |
| domain | ocmtancmi2c4t.xyz | — | 2023-10-10 | |
| domain | ocmtancmi2c5t.life | — | 2023-10-10 | |
| domain | ocmtancmi2c5t.site | — | 2023-10-10 | |
| domain | ocmtancmi2c5t.website | — | 2023-10-10 | |
| domain | ocmtancmi2c5t.xyz | — | 2023-10-10 | |
| domain | orkograkula.fun | — | 2023-10-10 | |
| domain | pearlbarleyhit.fun | — | 2023-10-10 | |
| domain | politicuseles.fun | — | 2023-10-10 | |
| domain | portlandcor.fun | — | 2023-10-10 | |
| domain | potatomeatball.fun | — | 2023-10-10 | |
| domain | pregnantflowers.fun | — | 2023-10-10 | |
| domain | privategame.xyz | — | 2023-10-10 | |
| domain | rarefood.fun | — | 2023-10-10 | |
| domain | rosaryconbo.fun | — | 2023-10-10 | |
| domain | rovengold.fun | — | 2023-10-10 | |
| domain | royalpantss.fun | — | 2023-10-10 | |
| domain | satanakop.fun | — | 2023-10-10 | |
| domain | sausagerollraisin.fun | — | 2023-10-10 | |
| domain | scandimyth.xyz | — | 2023-10-10 | |
| domain | scruffymapleflat.fun | — | 2023-10-10 | |
| domain | sendcyniaforeign.fun | — | 2023-10-10 | |
| domain | shoppervik.fun | — | 2023-10-10 | |
| domain | sisadmin-my.xyz | — | 2023-10-10 | |
| domain | slimtvsocico.fun | — | 2023-10-10 | |
| domain | socialmadness.fun | — | 2023-10-10 | |
| domain | sodafountainpr.fun | — | 2023-10-10 | |
| domain | starblack.fun | — | 2023-10-10 | |
| domain | startablekor.fun | — | 2023-10-10 | |
| domain | stoptme.xyz | — | 2023-10-10 | |
| domain | superyupp.fun | — | 2023-10-10 | |
| domain | talkinwhitepod.fun | — | 2023-10-10 | |
| domain | traftech.pro | — | 2023-10-10 | |
| domain | treepledeeple.fun | — | 2023-10-10 | |
| domain | tuberoseprod.fun | — | 2023-10-10 | |
| domain | valleydod.fun | — | 2023-10-10 | |
| domain | veinsmoter.fun | — | 2023-10-10 | |
| domain | waterparkedone.fun | — | 2023-10-10 | |
| domain | withdrawlecterns.fun | — | 2023-10-10 | |
| domain | wolffunny.fun | — | 2023-10-10 | |
| domain | yachtracingopt.fun | — | 2023-10-10 | |
| hostname | stable4download.ocmtancmi2c5t.website | — | 2023-10-10 |
References (1)