← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Threat Intel Report - W11-2025
WHITE aa00643640@techmahindra.com 2025-04-04 Modified: 2025-05-04
486
IOCs
HIGH VOLUME
These are weekly base recommendations to all IT Administrators and CISOs to take corrective actions to upgrade their security infrastructure against newly identified threats and attacks in this week. Security is a continuous process, and it has to be reviewed and audited on a continuous manner through manual or automated tools. These details may be used as an additional layer to verify the current security posture of an organization against latest cyber trends.
mozigermanyindiachinagroupedvietnamunited kingdomsingaporeweekgroupindonesiaclearfakeasyncratstealcsmartloadermexicoremcosmalwaredatebelarusukraineamadeylockbitlinuxsuperblackakira
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
Linux SuperBlack Akira LockBit
Indicators of Compromise (91 / 486 total)
All URL FileHash-MD5 FileHash-SHA1 FileHash-SHA256 domain hostname
TYPEINDICATORDESCRIPTIONCREATED
URL https://precisionsec.com/threat-intelligence-feeds/ 2025-04-04
URL https://psbl.org/ 2025-04-04
URL http://103.175.181.57:35199/bin.sh 2025-04-04
URL http://103.175.181.57:49179/i 2025-04-04
URL http://112.31.189.32:39320/i 2025-04-04
URL http://113.205.166.214:47291/i 2025-04-04
URL http://115.50.56.28:42217/i 2025-04-04
URL http://117.199.172.81:54947/bin.sh 2025-04-04
URL http://117.209.18.8:59113/i 2025-04-04
URL http://117.216.155.39:45217/i 2025-04-04
URL http://117.222.233.110:60845/bin.sh 2025-04-04
URL http://117.254.98.165:53588/i 2025-04-04
URL http://120.238.189.72:38566/bin.sh 2025-04-04
URL http://123.12.148.149:37919/i 2025-04-04
URL http://149.210.64.144:1157/sshd 2025-04-04
URL http://161.0.74.120:39000/bin.sh 2025-04-04
URL http://171.227.28.10:8080/sshd 2025-04-04
URL http://182.114.253.6:52624/i 2025-04-04
URL http://185.215.113.26/Dem7kTu/index.php 2025-04-04
URL http://185.215.113.43/Zu7JuNko/index.php 36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068 2025-04-04
URL http://185.99.133.246/c2sock f1945cd6c19e56b3c1c78943ef5ec18116907a4ca1efc40a57d48ab1db7adfc5 2025-04-04
URL http://188.190.181.173:46939/i 2025-04-04
URL http://195.123.226.91/c2sock 2025-04-04
URL http://213.209.129.92/somekidsmom.sh 2025-04-04
URL http://221.14.174.239:40608/bin.sh 2025-04-04
URL http://27.205.70.140:49230/i 2025-04-04
URL http://42.178.61.88:49142/i 2025-04-04
URL http://42.227.200.58:59122/bin.sh 2025-04-04
URL http://42.231.212.195:40672/bin.sh 2025-04-04
URL http://42.231.212.195:40672/i 2025-04-04
URL http://42.235.84.161:51915/bin.sh 2025-04-04
URL http://43.138.15.25:2002/443_2003_raw_x64.raw 2025-04-04
URL http://43.138.15.25:2002/msfstaged.exe 2025-04-04
URL http://5.42.64.41/40d570f44e84a454.php 2025-04-04
URL http://5.42.92.211/ 2025-04-04
URL http://59.93.25.118:60924/bin.sh 2025-04-04
URL http://59.95.14.244:45652/bin.sh 2025-04-04
URL http://59.97.176.66:45024/i 2025-04-04
URL http://61.52.47.68:39822/i 2025-04-04
URL http://87.118.156.179:9558/i 2025-04-04
URL http://91.208.197.151/bin/client.support.exe 2025-04-04
URL http://92.40.118.147:8001/sshd 2025-04-04
URL http://akana.mobiseclab.org 2025-04-04
URL http://gstatic-node.io/c2sock 2025-04-04
URL http://jevereg.amnpardaz.com/ 2025-04-04
URL http://ls-xsg.screensconnectpro.com/bin/support... 2025-04-04
URL http://mghelp.top/bin/support.client.exe?i=&e=S... 2025-04-04
URL http://mohamedsisyxyz.com/bin/support.client.ex... 2025-04-04
URL http://moqadiski.com/bin/support.client.exe?i=&... 2025-04-04
URL http://plphelp.top/bin/support.client.exe?i=&e=... 2025-04-04
URL http://race.net.bd 2025-04-04
URL http://static.bsbtecnologia.com.br 2025-04-04
URL http://static.cloudzy.com 2025-04-04
URL http://syncnet.cc/sync.arm4 2025-04-04
URL http://syncnet.cc/sync.arm5 2025-04-04
URL http://syncnet.cc/sync.arm6 2025-04-04
URL http://syncnet.cc/sync.arm7 2025-04-04
URL http://syncnet.cc/sync.mips 2025-04-04
URL http://syncnet.cc/sync.mipsel 2025-04-04
URL http://syncnet.cc/sync.powerpc 2025-04-04
URL http://syncnet.cc/sync.x86_64 2025-04-04
URL http://www.invaluement.com/ 2025-04-04
URL https://acc.umehelp.top/bin/support.client.exe 2025-04-04
URL https://apkscan.nviso.be/ 2025-04-04
URL https://bw3699.loglink9.site/bin/support.client... 2025-04-04
URL https://check.tozuj.icu/gkcxv.google 2025-04-04
URL https://flowersmayer.click/lux/santare 2025-04-04
URL https://fn3699.fukratoli.cyou/bin/support.clien... 2025-04-04
URL https://fn3699.jadonparod.cyou/bin/support.clie... 2025-04-04
URL https://fn3699.polabarish.cyou/bin/support.clie... 2025-04-04
URL https://fnback9636.site/bin/support.client.exe?... 2025-04-04
URL https://megabrountake.click/lux/santare 2025-04-04
URL https://onlyfans.ngo/fodnvishvkshu/Fedora.bat 2025-04-04
URL https://onyxsupportx.de/bin/support.client.exe?... 2025-04-04
URL https://p.tvwhelp.top/bin/support.client.exe 2025-04-04
URL https://pn3699.timurocar.org/bin/support.client... 2025-04-04
URL https://secureresponse.pro/MarchJuicyOrange.txt 2025-04-04
URL https://syncnet.cc/c.sh 2025-04-04
URL https://syncnet.cc/sync.arm7 2025-04-04
URL https://syncnet.cc/sync.mips 2025-04-04
URL https://syncnet.cc/sync.mipsel 2025-04-04
URL https://syncnet.cc/sync.powerpc 2025-04-04
URL https://syncnet.cc/sync.superh 2025-04-04
URL https://syncnet.cc/w.sh 2025-04-04
URL https://syncnet.cc/wget.sh 2025-04-04
URL https://u1.saunatriceps.shop/xkbrbain5k.mp3 2025-04-04
URL https://u1.upheldundermost.shop/gilqyeu3do.mp3 2025-04-04
URL https://wk3699.loglink9.site/bin/support.client... 2025-04-04
URL https://www.dnsbl.info/ 2025-04-04
URL https://www.secondwrite.com 2025-04-04
URL https://www.silobreaker.com/category/threat-reports/ 2025-04-04
References (2)
↗ https://urlhaus.abuse.ch/ ↗ https://any.run/malware-trends/