← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Threat Intel Report - W45-2024
WHITE aa00643640@techmahindra.com 2024-12-02 Modified: 2025-01-01
387
IOCs
HIGH VOLUME
This is a cyber-advisory document, presenting the compiled cyber threat intelligence sourced from various channels and tools. These are weekly base recommendations to all IT Administrators and CISOs to take corrective actions to upgrade their security infrastructure against newly identified threats and attacks in this week. Security is a continuous process, and it has to be reviewed and audited on a continuous manner through manual or automated tools. These details may be used as an additional layer to verify the current security posture of an organization against latest cyber trends.
mozigermanymozi linkbrazilindiaukrainerussiaweeksingaporeswedenstealcasyncratamadeybelarusarmeniamexicoindonesia
Indicators of Compromise (195 / 387 total)
All URL domain FileHash-MD5 FileHash-SHA1 FileHash-SHA256 hostname
TYPEINDICATORDESCRIPTIONCREATED
URL http://185.215.113.16/lumma/random.exe 2024-12-02
URL http://185.215.113.16/mine/random.exe 2024-12-02
URL http://aloowforest.xyz/c2sock 2024-12-02
URL http://1.70.96.93:59131/Mozi.m 2024-12-02
URL http://103.78.148.142:44143/Mozi.m 2024-12-02
URL http://104.245.33.157/99210de056092a58.php 2024-12-02
URL http://105.108.143.63:33749/Mozi.m 2024-12-02
URL http://109.107.181.33/de4846fc29f26952.php 2024-12-02
URL http://110.183.56.81:36796/bin.sh 2024-12-02
URL http://111.61.181.52:58022/i 2024-12-02
URL http://112.113.226.37:52010/Mozi.m 2024-12-02
URL http://112.242.98.55:33971/bin.sh 2024-12-02
URL http://112.252.198.103:46676/bin.sh 2024-12-02
URL http://113.27.13.201:58118/bin.sh 2024-12-02
URL http://114.55.100.165:19999/02.08.2022.exe 2024-12-02
URL http://115.48.138.231:34509/bin.sh 2024-12-02
URL http://115.55.136.174:38334/i 2024-12-02
URL http://115.63.81.242:54351/bin.sh 2024-12-02
URL http://117.196.142.115:37607/bin.sh 2024-12-02
URL http://117.196.160.228:46734/bin.sh 2024-12-02
URL http://117.197.175.95:49730/Mozi.m 2024-12-02
URL http://117.204.68.182:53813/Mozi.m 2024-12-02
URL http://117.206.16.111:46609/i 2024-12-02
URL http://117.206.77.36:41075/bin.sh 2024-12-02
URL http://117.207.16.194:45218/i 2024-12-02
URL http://117.208.19.47:53716/bin.sh 2024-12-02
URL http://117.209.118.253:40433/i 2024-12-02
URL http://117.209.15.34:43017/Mozi.m 2024-12-02
URL http://117.209.20.241:40600/bin.sh 2024-12-02
URL http://117.209.29.247:43670/i 2024-12-02
URL http://117.209.81.235:51615/bin.sh 2024-12-02
URL http://117.213.123.114:57294/Mozi.m 2024-12-02
URL http://117.213.89.114:50041/Mozi.m 2024-12-02
URL http://117.215.187.43:54700/i 2024-12-02
URL http://117.216.153.1:38726/bin.sh 2024-12-02
URL http://117.217.141.100:47319/Mozi.m 2024-12-02
URL http://117.219.114.64:39988/i 2024-12-02
URL http://117.219.123.181:47448/i 2024-12-02
URL http://117.221.156.96:42375/bin.sh 2024-12-02
URL http://117.221.156.96:42375/i 2024-12-02
URL http://117.221.50.8:44616/bin.sh 2024-12-02
URL http://117.222.252.81:55961/i 2024-12-02
URL http://117.223.4.243:43600/i 2024-12-02
URL http://117.223.5.187:35705/Mozi.m 2024-12-02
URL http://117.235.47.219:33794/Mozi.m 2024-12-02
URL http://117.242.255.123:46783/Mozi.m 2024-12-02
URL http://117.253.169.238:37169/i 2024-12-02
URL http://117.253.218.7:44377/Mozi.m 2024-12-02
URL http://117.254.179.219:55374/bin.sh 2024-12-02
URL http://117.255.186.184:58962/bin.sh 2024-12-02
URL http://119.118.160.100:32988/Mozi.m 2024-12-02
URL http://120.57.175.183:39022/bin.sh 2024-12-02
URL http://120.78.83.129:10086/02.08.2022.exe 2024-12-02
URL http://123.11.8.88:43323/bin.sh 2024-12-02
URL http://123.172.50.170:60403/Mozi.a 2024-12-02
URL http://123.4.129.242:56329/i 2024-12-02
URL http://123.4.77.100:39851/i 2024-12-02
URL http://123.5.153.46:45694/i 2024-12-02
URL http://123.9.253.145:52660/i 2024-12-02
URL http://124.92.88.135:39327/bin.sh 2024-12-02
URL http://125.41.223.88:41214/i 2024-12-02
URL http://125.43.36.131:46023/bin.sh 2024-12-02
URL http://125.44.241.135:46636/bin.sh 2024-12-02
URL http://149.255.35.132/e50ac16f7b113954.php 2024-12-02
URL http://154.9.254.227:30000/02.08.2022.exe 2024-12-02
URL http://159.75.148.143:18080/02.08.2022.exe 2024-12-02
URL http://162.219.216.183:40370/Mozi.m 2024-12-02
URL http://175.149.66.101:52399/i 2024-12-02
URL http://175.166.189.148:60882/Mozi.m 2024-12-02
URL http://175.30.110.82:54508/Mozi.a 2024-12-02
URL http://176.124.198.17/1da263bff25c8346.php 2024-12-02
URL http://178.141.20.255:43161/i 2024-12-02
URL http://178.141.214.151:50161/Mozi.m 2024-12-02
URL http://179.144.186.255 2024-12-02
URL http://182.116.51.165:41837/bin.sh 2024-12-02
URL http://182.120.42.48:33021/i 2024-12-02
URL http://182.121.152.214:40280/bin.sh 2024-12-02
URL http://182.123.211.100:58043/i 2024-12-02
URL http://182.127.181.89:56214/bin.sh 2024-12-02
URL http://183.179.27.59:44931/Mozi.m 2024-12-02
URL http://185.17.40.133/ba91ff2f6a996325.php 2024-12-02
URL http://185.172.128.24/40d570f44e84a44.php 2024-12-02
URL http://185.172.128.24/40d570f44e84a454.php 2024-12-02
URL http://185.172.128.79/3886d22766914c4.php 2024-12-02
URL http://185.172.128.79/3886d2276f6914c4.php 2024-12-02
URL http://185.208.159.121/8djjd3Shf2/index.php 2024-12-02
URL http://185.215.113.16/Jo89Ku7d/index.php 2024-12-02
URL http://185.215.113.16/dobre/random.exe 8521a1f4d523a2a9e7f8ddf01147e65e7f3ff54b268e9b40f91e07dc01fa148f 2024-12-02
URL http://185.215.113.16/inc/GOLD1234.exe d3948ae31c42fcba5d9199e758d145ff74dad978c80179afb3148604c254be6d 2024-12-02
URL http://185.215.113.16/inc/RDX123456.exe 11227ead147b4154c7bd21b75d7f130b498c9ad9b520ca1814c5d6a688c89b1b 2024-12-02
URL http://185.215.113.16/inc/new_v8.exe fbc8c32bf799a005c57540a2e85dd3662ed5795a55f11495f0ba569bbb09df59 2024-12-02
URL http://185.215.113.16/inc/yxrd0ob7.exe 963a20f6631013a1c9b0f17a3d15ed9546dae5b5f347789dbde36d02a51ee3de 2024-12-02
URL http://185.215.113.16/luma/random.exe 2024-12-02
URL http://185.215.113.16/off/def.exe 0423970d7820efa63375494046b8513d90367c063481675b5062af7e4f462ab2 2024-12-02
URL http://185.215.113.16/off/random.exe 2024-12-02
URL http://185.215.113.16/steam/random.exe d9798bda5b0cd389f0b0f184ded085cded77a8652d96be4054789452b2a04ca5 2024-12-02
URL http://185.215.113.16/well/random.exe 48ab56d9a07f126422a6df9bb660a7fb55579a89449faa2f5fb1b5c7ec6a5de6 2024-12-02
URL http://185.215.113.217/CoreOPT/index.php 2024-12-02
URL http://185.215.113.36/Dem7kTu/index.php 2024-12-02
URL http://185.215.113.36/JavvUm.exe 465a1cefe61446110cc521d376651a5074fb87295da5fd64bd74fd25cbab669b 2024-12-02
URL http://185.215.113.43/Zu7JuNko/index.php 2024-12-02
URL http://185.215.113.68/theme/Plugins/cred64.dll 3c8cc37a98346bd0123b35e5ccd87bd07d69914dae04f8b49f61c150d96e9d1f 2024-12-02
URL http://185.215.113.68/theme/index.php 36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068 2024-12-02
URL http://185.99.133.246/c2sock 2024-12-02
URL http://195.123.226.91/c2sock 2024-12-02
URL http://195.123.227.138/c2sock 2024-12-02
URL http://196.189.9.233:58302/bin.sh 2024-12-02
URL http://196.189.9.233:58302/i 2024-12-02
URL http://197.204.241.110:55665/i 2024-12-02
URL http://219.154.173.128:57752/Mozi.m 2024-12-02
URL http://219.154.173.128:57752/bin.sh 2024-12-02
URL http://219.155.124.74:38027/bin.sh 2024-12-02
URL http://219.156.99.199:49685/i 2024-12-02
URL http://219.157.244.177:42880/bin.sh 2024-12-02
URL http://222.104.208.241:2120/Mozi.m 2024-12-02
URL http://222.135.218.206:45564/i 2024-12-02
URL http://222.136.140.202:56343/Mozi.m 2024-12-02
URL http://222.137.154.17:54867/bin.sh 2024-12-02
URL http://222.141.80.51:34544/i 2024-12-02
URL http://222.142.253.155:55812/i 2024-12-02
URL http://223.10.67.69:42625/bin.sh 2024-12-02
URL http://223.14.78.26:36201/i 2024-12-02
URL http://27.202.102.57:33886/i 2024-12-02
URL http://27.219.176.50:57957/bin.sh 2024-12-02
URL http://27.37.105.106:51087/bin.sh 2024-12-02
URL http://27.37.77.77:59557/bin.sh 2024-12-02
URL http://2flowers-my.xyz/c2sock 2024-12-02
URL http://37.13.35.238:43572/bin.sh 2024-12-02
URL http://39.184.135.85:38652/Mozi.m 2024-12-02
URL http://39.52.4.164:49574/bin.sh 2024-12-02
URL http://39.79.132.137:57168/Mozi.m 2024-12-02
URL http://42.224.105.114:58271/i 2024-12-02
URL http://42.230.211.65:53233/bin.sh 2024-12-02
URL http://42.232.224.216:57332/bin.sh 2024-12-02
URL http://42.234.203.131:46258/i 2024-12-02
URL http://42.4.118.30:42588/i 2024-12-02
URL http://42.5.65.81:53709/bin.sh 2024-12-02
URL http://42.53.245.154:55690/Mozi.m 2024-12-02
URL http://42.59.91.8:46964/bin.sh 2024-12-02
URL http://42.7.121.55:40391/i 2024-12-02
URL http://45.15.157.217/cbb264a91564bd6c.php 2024-12-02
URL http://45.87.153.135/5d4f090c730016b1.php 2024-12-02
URL http://47.109.178.63:81/02.08.2022.exe 2024-12-02
URL http://47.113.150.236:8888/02.08.2022.exe 2024-12-02
URL http://5.42.64.41/ 2024-12-02
URL http://5.42.64.41/40d570f44e84a454.php 2024-12-02
URL http://5.42.65.54/4ea69013b92ecb73.php 2024-12-02
URL http://5.42.66.36/1fa9cf51b66b1f7e.php 2024-12-02
URL http://5.42.66.57/3886d2276f6914c4.php 2024-12-02
URL http://5.42.66.58/3886d2276f6914c4.php 2024-12-02
URL http://5.42.92.211/ 2024-12-02
URL http://58.47.26.155:60089/i 2024-12-02
URL http://58.47.28.142:58894/Mozi.m 2024-12-02
URL http://59.184.254.56:58421/bin.sh 2024-12-02
URL http://59.89.14.83:58651/bin.sh 2024-12-02
URL http://59.92.89.133:43035/bin.sh 2024-12-02
URL http://59.93.144.105:60873/Mozi.m 2024-12-02
URL http://59.93.234.58:59417/bin.sh 2024-12-02
URL http://59.94.149.195:59698/i 2024-12-02
URL http://59.95.128.219:48485/Mozi.m 2024-12-02
URL http://59.95.90.13:48790/bin.sh 2024-12-02
URL http://59.97.114.132:35874/bin.sh 2024-12-02
URL http://59.97.117.36:36738/i 2024-12-02
URL http://59.97.126.113:54419/bin.sh 2024-12-02
URL http://59.99.211.30:39480/i 2024-12-02
URL http://59.99.222.28:45424/i 2024-12-02
URL http://61.1.227.207:47235/i 2024-12-02
URL http://61.3.106.60:43217/Mozi.m 2024-12-02
URL http://61.3.87.62:46797/Mozi.m 2024-12-02
URL http://61.52.106.8:54013/bin.sh 2024-12-02
URL http://61.52.57.250:56908/i 2024-12-02
URL http://61.53.119.67:57560/i 2024-12-02
URL http://61.53.123.4:45216/bin.sh 2024-12-02
URL http://61.53.86.152:47232/i 2024-12-02
URL http://62.234.81.85:9999/02.08.2022.exe 2024-12-02
URL http://77.91.76.36/3886d2276f6914c4.php 2024-12-02
URL http://82.117.255.80/c2sock f1945cd6c19e56b3c1c78943ef5ec18116907a4ca1efc40a57d48ab1db7adfc5 2024-12-02
URL http://95.216.72.17/cdc8cb4ba5f9dfaa.php 2024-12-02
URL http://agustfreeday-my.xyz/c2sock 2024-12-02
URL http://clonecloud-my.xyz/c2sock 2024-12-02
URL http://crazypictures.xyz/c2sock 2024-12-02
URL http://flowers-my.xyz/c2sock 2024-12-02
URL http://gg123213123sadas-38622.portmap.host/ 2024-12-02
URL http://gservice-node.io/c2sock 2024-12-02
URL http://gstatic-node.io/c2sock 2024-12-02
URL http://many-verses.xyz/c2sock 2024-12-02
URL http://skicloud-my.xyz/c2sock 2024-12-02
URL http://solopodvip-my.xyz/c2sock 2024-12-02
URL http://speedtestip.xyz/c2sock 2024-12-02
URL http://stoppublick.xyz/c2sock 2024-12-02
URL http://update-checker-status.cc/OCB-Async.txt 2024-12-02
URL http://vipcloud-my.xyz/c2sock 2024-12-02
URL http://worldofpoetry.xyz/c2sock 2024-12-02
URL https://epsemaq.com.pe/AntiMalware.zip 2024-12-02
URL https://ser0xen.com/pl.txt: 2024-12-02
References (2)
↗ https://myip.ms/browse/blacklist/Blacklist_IP_Blacklist_IP_Addresses_Live_Database_Real-time ↗ https://any.run/malware-trends/