← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Behind the CAPTCHA: A Clever Gateway of Malware (URLs) - McAfee post
WHITE Techronik 2024-09-25 Modified: 2024-09-25
27
IOCs
MEDIUM VOLUME
Scanner only picked up hashes, as URLs were sanitized[.] Added the domain/URLs for this pulse. From: https://www.mcafee.com/blogs/other-blogs/mcafee-labs/behind-the-captcha-a-clever-gateway-of-malware/
malicious urlsLumma Stealer
MITRE ATT&CK & Malware Families
MALWARE FAMILIES
Lumma Stealer
Indicators of Compromise (27)
All URL domain
TYPEINDICATORDESCRIPTIONCREATED
URL http://game02-com.ru/?load=Cities-Skylines-2-Crack-Setup 2024-09-25
URL http://github-scanner.com/ 2024-09-25
URL http://github-scanner.shop/ 2024-09-25
domain game02-com.ru 2024-09-25
domain github-scanner.com 2024-09-25
domain github-scanner.shop 2024-09-25
URL http://heroic-genie-2b372e.netlify.app/please-verify-z.html 2024-09-25
URL http://botcheck.b-cdn.net/captcha-verify-v7.html 2024-09-25
URL https://github-scanner.shop/download.txt 2024-09-25
URL https://github-scanner.shop/l6E.exe 2024-09-25
URL https://github-scanner.shop/l6E.exe/C: 2024-09-25
URL https://github-scanner.shop/l6E.exe01 2024-09-25
URL https://github-scanner.shop/l6E.exeB 2024-09-25
URL https://github-scanner.shop/l6E.exeC: 2024-09-25
URL https://github-scanner.shop/l6E.exes 2024-09-25
URL https://github-scanner.shop/ll 2024-09-25
URL https://github-scanner.com/download.txt 2024-09-25
URL https://github-scanner.com/i6e.exe 2024-09-25
URL https://github-scanner.com/l6.exe 2024-09-25
URL https://github-scanner.com/l6E.ex 2024-09-25
URL https://github-scanner.com/l6E.exe 2024-09-25
URL https://github-scanner.com/l6E.exe/C: 2024-09-25
URL https://github-scanner.com/l6E.exe001 2024-09-25
URL https://github-scanner.com/l6E.exeC: 2024-09-25
URL https://github-scanner.com/l6E.exeLMEMH 2024-09-25
URL http://game02-com.ru/?load=Patch-Fix-Setup 2024-09-25
URL http://game02-com.ru/?load=Ring-of-Elysium-Patch-Fix 2024-09-25
References (1)
↗ Captcha_Lumma_URL_IOCs.csv