← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Fake Windows Update Screens Used by ClickFix to Deliver Steganographic Malware
New wave of clickFix attacks is identified to abuse highly realistic fake Windows
Update screens and PNG image steganography to secretly deploy info stealing
malware.
| TYPE | INDICATOR | DESCRIPTION | CREATED | |
|---|---|---|---|---|
| URL | http://securitysettings.live | — | 2025-11-25 | |
| URL | http://xoiiasdpsdoasdpojas.com | — | 2025-11-25 | |
| URL | http://141.98.80.175/ercx.dat | — | 2025-11-25 | |
| URL | http://141.98.80.175/gpsc.dat | — | 2025-11-25 | |
| URL | http://141.98.80.175/rtdx.dat | — | 2025-11-25 | |
| URL | http://141.98.80.175/tick.odd | — | 2025-11-25 | |
| URL | http://141.98.80.175/very.dat | — | 2025-11-25 | |
| URL | http://81.90.29.64/ebc/rps.gz | — | 2025-11-25 | |
| URL | http://94.74.164.136/fifx.odd | — | 2025-11-25 | |
| URL | http://bendavo.su/asdsa | — | 2025-11-25 | |
| URL | http://conxmsw.su/vcsf | — | 2025-11-25 | |
| URL | http://corezea.com/ebc | — | 2025-11-25 | |
| URL | http://exposqw.su/casc | — | 2025-11-25 | |
| URL | http://narroxp.su/rewd | — | 2025-11-25 | |
| URL | http://ozonelf.su/asd | — | 2025-11-25 | |
| URL | http://squatje.su/asdasd | — | 2025-11-25 | |
| URL | http://squeaue.su/qwe | — | 2025-11-25 | |
| URL | http://vicareu.su/bcdf | — | 2025-11-25 | |
| URL | https://cybersecuritynews.co | — | 2025-11-25 |