← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Threat Intel Report - W20-2025
WHITE aa00643640@techmahindra.com 2025-05-26 Modified: 2025-06-25
352
IOCs
HIGH VOLUME
These are weekly base recommendations to all IT Administrators and CISOs to take corrective actions to upgrade their security infrastructure against newly identified threats and attacks in this week. Security is a continuous process, and it has to be reviewed and audited on a continuous manner through manual or automated tools.
moziitalyukrainebrazilurls httpturkeyrussiaurls httpssha valuesfile name
Indicators of Compromise (185 / 352 total)
All hostname FileHash-MD5 FileHash-SHA1 FileHash-SHA256 URL domain
TYPEINDICATORDESCRIPTIONCREATED
URL http://1.70.188.63:18244/i 2025-05-26
URL http://112.239.98.205:56957/bin.sh 2025-05-26
URL http://113.230.52.125:57517/bin.sh 2025-05-26
URL http://113.26.169.143:53340/i 2025-05-26
URL http://113.26.80.149:39446/bin.sh 2025-05-26
URL http://113.26.80.149:39446/i 2025-05-26
URL http://113.94.31.3:41542/i 2025-05-26
URL http://115.46.159.174:56798/i 2025-05-26
URL http://115.48.163.98:37298/bin.sh 2025-05-26
URL http://115.48.163.98:37298/i 2025-05-26
URL http://115.49.3.237:53281/bin.sh 2025-05-26
URL http://115.49.3.237:53281/i 2025-05-26
URL http://115.49.73.193:44536/i 2025-05-26
URL http://115.55.21.84:43321/i 2025-05-26
URL http://115.56.149.53:35234/i 2025-05-26
URL http://115.56.59.235:52415/bin.sh 2025-05-26
URL http://115.57.26.104:55280/i 2025-05-26
URL http://115.58.134.24:38180/i 2025-05-26
URL http://115.61.118.35:34621/i 2025-05-26
URL http://116.138.162.47:50204/bin.sh 2025-05-26
URL http://116.138.162.47:50204/i 2025-05-26
URL http://117.193.175.225:49936/i 2025-05-26
URL http://117.195.104.27:40253/bin.sh 2025-05-26
URL http://117.205.81.215:47115/i 2025-05-26
URL http://117.206.111.46:53118/bin.sh 2025-05-26
URL http://117.206.111.46:53118/i 2025-05-26
URL http://117.206.137.143:2000/sshd 2025-05-26
URL http://117.209.11.20:36136/bin.sh 2025-05-26
URL http://117.209.11.20:36136/i 2025-05-26
URL http://117.209.19.96:58428/bin.sh 2025-05-26
URL http://117.211.211.121:33973/i 2025-05-26
URL http://117.215.61.52:42000/bin.sh 2025-05-26
URL http://117.216.22.249:43831/i 2025-05-26
URL http://117.217.34.197:42713/i 2025-05-26
URL http://118.14.235.213/sshd 2025-05-26
URL http://119.185.242.78:59418/bin.sh 2025-05-26
URL http://120.60.230.191:60956/bin.sh 2025-05-26
URL http://120.61.201.64:37637/i 2025-05-26
URL http://123.11.75.147:41470/bin.sh 2025-05-26
URL http://123.12.230.0:56404/i 2025-05-26
URL http://123.172.67.122:33855/bin.sh 2025-05-26
URL http://123.5.154.142:43099/bin.sh 2025-05-26
URL http://123.9.253.158:35232/bin.sh 2025-05-26
URL http://125.41.208.37:53934/bin.sh 2025-05-26
URL http://125.44.18.211:43254/i 2025-05-26
URL http://125.45.48.241:36611/bin.sh 2025-05-26
URL http://125.45.66.100:48874/bin.sh 2025-05-26
URL http://138.255.176.234:58035/bin.sh 2025-05-26
URL http://14.188.241.55:8082/sshd 2025-05-26
URL http://147.45.47.70/tr8nomy/index.php 2025-05-26
URL http://163.142.86.27:59711/bin.sh 2025-05-26
URL http://170.205.31.90:3333/ 2025-05-26
URL http://175.146.204.151:44712/i 2025-05-26
URL http://176.113.115.6/Ni9kiput/index.php 2025-05-26
URL http://176.121.58.98:6353/i 2025-05-26
URL http://176.226.172.83:40014/bin.sh 2025-05-26
URL http://176.65.143.173/M0XmDru/index.php 2025-05-26
URL http://181.200.10.9:8080/sshd 2025-05-26
URL http://182.119.0.235:49166/i 2025-05-26
URL http://182.123.253.22:45706/i 2025-05-26
URL http://182.60.239.46:47605/bin.sh 2025-05-26
URL http://182.60.239.46:47605/i 2025-05-26
URL http://185.156.72.2/files/1684993023/9hlV1Xt.exe 2025-05-26
URL http://185.156.72.2/files/1684993023/SesoRF9.exe 2025-05-26
URL http://185.156.72.2/files/5373782173/PfYJ8Lo.exe 2025-05-26
URL http://185.215.113.16/Jo89Ku7d/index.php 2025-05-26
URL http://185.215.113.19/Vi9leo/index.php 2025-05-26
URL http://185.215.113.30/som8unr/index.php 2025-05-26
URL http://185.215.113.30/test/amnew.exe 2025-05-26
URL http://185.215.113.43/Zu7JuNko/index.php 2025-05-26
URL http://185.215.113.59/Dy5h4kus/index.php 2025-05-26
URL http://185.39.17.122/som9unr/index.php 2025-05-26
URL http://185.39.17.122/test/amnew.exe 2025-05-26
URL http://185.39.17.163/Su8kud7i/index.php 2025-05-26
URL http://185.39.17.241/0Bdh3sQpbD/index.php 2025-05-26
URL http://185.81.68.156/jb87ejvjdsS/index.php 2025-05-26
URL http://188.231.3.177/sshd 2025-05-26
URL http://188.244.202.248:21454/i 2025-05-26
URL http://193.201.9.43/ 2025-05-26
URL http://200.5.32.69:56359/i 2025-05-26
URL http://217.24.149.254:36150/i 2025-05-26
URL http://218.91.26.25:57894/i 2025-05-26
URL http://219.155.202.61:49419/bin.sh 2025-05-26
URL http://219.156.100.163:50690/i 2025-05-26
URL http://219.156.172.246:37359/bin.sh 2025-05-26
URL http://219.156.172.246:37359/i 2025-05-26
URL http://219.157.55.110:45483/bin.sh 2025-05-26
URL http://219.70.90.108:41909/bin.sh 2025-05-26
URL http://221.1.227.108:58010/bin.sh 2025-05-26
URL http://221.15.18.171:39614/bin.sh 2025-05-26
URL http://221.3.106.130:60419/bin.sh 2025-05-26
URL http://222.127.73.23:35604/bin.sh 2025-05-26
URL http://222.137.215.75:49008/bin.sh 2025-05-26
URL http://222.140.108.212:52321/i 2025-05-26
URL http://222.140.156.31:39367/i 2025-05-26
URL http://223.15.8.37:32508/.i 2025-05-26
URL http://223.151.75.184:58265/i 2025-05-26
URL http://31.41.244.10/Dem7kTu/index.php 36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068 2025-05-26
URL http://37.10.210.199:9000/sshd 2025-05-26
URL http://38.60.136.235/hiddenbin/boatnet.mips 2025-05-26
URL http://38.60.136.235/hiddenbin/boatnet.ppc 2025-05-26
URL http://42.118.250.84:53189/i 2025-05-26
URL http://42.227.184.64:41470/bin.sh 2025-05-26
URL http://42.233.105.31:56471/bin.sh 2025-05-26
URL http://42.233.142.131:58373/bin.sh 2025-05-26
URL http://42.233.142.131:58373/i 2025-05-26
URL http://42.234.235.91:52559/i 2025-05-26
URL http://42.234.246.141:56032/bin.sh 2025-05-26
URL http://42.234.246.141:56032/i 2025-05-26
URL http://42.236.221.229:52081/i 2025-05-26
URL http://42.237.53.18:35144/bin.sh 2025-05-26
URL http://42.237.53.18:35144/i 2025-05-26
URL http://42.237.57.202:35144/i 2025-05-26
URL http://42.5.71.249:54108/bin.sh 2025-05-26
URL http://42.7.203.221:35294/i 2025-05-26
URL http://45.116.122.96:55261/bin.sh 2025-05-26
URL http://46.158.166.51:42880/bin.sh 2025-05-26
URL http://46.158.54.237:48603/bin.sh 2025-05-26
URL http://58.47.108.89:49319/bin.sh 2025-05-26
URL http://59.182.83.254:36680/i 2025-05-26
URL http://59.182.86.198:34874/bin.sh 2025-05-26
URL http://59.182.86.198:34874/i 2025-05-26
URL http://59.182.95.81:59527/bin.sh 2025-05-26
URL http://59.184.244.140:47867/i 2025-05-26
URL http://59.88.13.105:54183/bin.sh 2025-05-26
URL http://59.88.8.17:37724/i 2025-05-26
URL http://59.93.26.251:57475/bin.sh 2025-05-26
URL http://59.95.158.71:56674/i 2025-05-26
URL http://59.97.248.118:47418/bin.sh 2025-05-26
URL http://59.97.250.189:32793/bin.sh 2025-05-26
URL http://59.98.195.60:45381/i 2025-05-26
URL http://60.43.126.12/sshd 2025-05-26
URL http://61.1.193.212:47431/bin.sh 2025-05-26
URL http://61.1.193.212:47431/i 2025-05-26
URL http://61.112.239.29/sshd 2025-05-26
URL http://61.3.109.73:50030/i 2025-05-26
URL http://61.52.148.194:47307/bin.sh 2025-05-26
URL http://61.53.255.15:40941/i 2025-05-26
URL http://76.72.238.153:59506/bin.sh 2025-05-26
URL http://77.12.94.189:8080/sshd 2025-05-26
URL http://77.247.88.77:47763/bin.sh 2025-05-26
URL http://77.91.124.20/store/games/Plugins/cred64.dll 3c8cc37a98346bd0123b35e5ccd87bd07d69914dae04f8b49f61c150d96e9d1f 2025-05-26
URL http://77.91.68.18/nice/index.php 2025-05-26
URL http://77.91.68.52/mac/index.php 2025-05-26
URL http://77.91.77.81/Kiru9gu/index.php 2025-05-26
URL http://81.151.51.236:65002/sshd 2025-05-26
URL http://83.224.135.221/sshd 2025-05-26
URL http://83.224.140.232/sshd 2025-05-26
URL http://89.20.96.39:33671/i 2025-05-26
URL http://91.80.134.237/sshd 2025-05-26
URL http://91.80.184.106:51403/bin.sh 2025-05-26
URL http://94.156.69.174:7459/ 2025-05-26
URL http://Javv-48141.portmap.host:48141/ 2025-05-26
URL http://Sanael-63678.portmap.io:63678/ 2025-05-26
URL http://SskMiyano-34675.portmap.host:34675/ 2025-05-26
URL http://bearjk.live/benj 2025-05-26
URL http://biosphxere.digital/tqoa 2025-05-26
URL http://buzzarddf.live/ktnt 2025-05-26
URL http://cartograhphy.top/ixau 2025-05-26
URL http://clarmodq.top/qoxo 2025-05-26
URL http://climatologfy.top/kbud 2025-05-26
URL http://crocodilefg.top/qeji 2025-05-26
URL http://csgoprofind.net/gWmR5f2W/index.php 2025-05-26
URL http://equatorf.run/reiq 2025-05-26
URL http://fishgh.digital/tequ 2025-05-26
URL http://geographys.run/eirq 2025-05-26
URL http://gg123213123sadas-38622.portmap.host/ 2025-05-26
URL http://hemispherexz.top/xapp 2025-05-26
URL http://latitudert.live/teui 2025-05-26
URL http://mediaflowq.run/aeui 2025-05-26
URL http://mobitront.run/dsiu 2025-05-26
URL http://nasdnasnd-55496.portmap.host/ 2025-05-26
URL http://nasdnasnd-55496.portmap.host:55496/ 2025-05-26
URL http://p4-preview.runhosting.com/breakingsec02.co.nf/Remcos/OnlineCheck-v4.php 2025-05-26
URL http://p4-preview.runhosting.com/breakingsec02.co.nf/Remcos/logaccess.php 2025-05-26
URL http://p4-preview.runhosting.com/breakingsec02.co.nf/Remcos/login.php 2025-05-26
URL http://p4-preview.runhosting.com/breakingsec02.co.nf/Remcos/upd_free.txt 2025-05-26
URL http://parakehjet.run/kewk 2025-05-26
URL http://techwaveg.run/oipz 2025-05-26
URL http://topographky.top/xlak 2025-05-26
URL http://tropiscbs.live/iuwxx 2025-05-26
URL http://update-checker-status.cc/OCB-Async.txt 2025-05-26
URL http://vigorbridgoe.top/banb 2025-05-26
URL http://woodpeckersd.run/glsk 2025-05-26
URL https://bytebin.lucko.me/ftdQZn5kKJ: e3ebaa16dd9d9b9fc107c42183fb6cf9d22927e1af03dbbdfa0ccc38e4e4ac31 2025-05-26
References (2)
↗ https://any.run/malware-trends/ ↗ https://urlhaus.abuse.ch/