← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
BADBOX Botnet Is Back | Bitsight
WHITE CyberHunter_NL 2024-12-18 Modified: 2025-01-17
35
IOCs
MEDIUM VOLUME
Find out more about Bitsight, a leading cyber risk management company, on the web, at www.btsight.com and on our app and Facebook page, and here are the highlights.
badboxandroid tvrussiabadbox malwareyndx smartandroidchinabelarusbitsightamazontriadaaprilguerrillafirstukrainepeachpitc2
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
PEACHPIT Bitsight C2 BADBOX
Indicators of Compromise (35)
All FileHash-MD5 FileHash-SHA1 URL domain hostname
TYPEINDICATORDESCRIPTIONCREATED
FileHash-MD5 bd6cb71c8046af6d0851276af7120e50 2024-12-18
FileHash-SHA1 5b3aa659cb8dece5c9a14d605c68a432b773969c 2024-12-18
URL http://yydsmd.com/ota/api/conf/v1?m=bd6cb71c8046af6d0851276af7120e50&n=WIFI 2024-12-18
URL http://yydsmd.com/ota/api/tasks/v2?m=bd6cb71c8046af6d0851276af7120e50&n=WIFI 2024-12-18
domain bluefish.work 2024-12-18
domain coslogdydy.in 2024-12-18
domain cxlcyy.com 2024-12-18
domain cxzyr.com 2024-12-18
domain echojoy.xyz 2024-12-18
domain giddy.cc 2024-12-18
domain goologer.com 2024-12-18
domain huuww.com 2024-12-18
domain jolted.vip 2024-12-18
domain jutux.work 2024-12-18
domain logcer.com 2024-12-18
domain msohu.shop 2024-12-18
domain mtcpmpm.com 2024-12-18
domain pccyy.com 2024-12-18
domain pcxrl.com 2024-12-18
domain pcxrlback.com 2024-12-18
domain pixelscast.com 2024-12-18
domain pixlo.cc 2024-12-18
domain soyatea.online 2024-12-18
domain swiftcode.work 2024-12-18
domain tvsnapp.com 2024-12-18
domain ycxad.com 2024-12-18
domain ycxrl.com 2024-12-18
domain yxcrl.com 2024-12-18
domain yydsmd.com 2024-12-18
domain yydsmr.com 2024-12-18
domain ztword.com 2024-12-18
hostname cast.jutux.work 2024-12-18
hostname home.1ztop.work 2024-12-18
hostname old.1ztop.work 2024-12-18
hostname www.jolted.vip 2024-12-18
References (1)
↗ https://www.bitsight.com/blog/badbox-botnet-back