← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
COINBASE CARTEL - RedPacketSecurity[.]com • CVE BANK
WHITE COINBASE CARTEL Q.Vashti 2025-12-07 Modified: 2026-01-06
187
IOCs
HIGH VOLUME
Based on information gathered ; researchers have attempted to warned (Netgear. / Targets) early. Exploits a CVE Bank under DGA domain name : Red Packet Security [.] com. Contact information redacted. Other information shows a Tijuana , Mexico Address . Contact name is a Mexican / Hispanic Forename & Surname . Accuracy unknown. Not including in references. Has explored for sum time using different DGA’s. One reference from an informative , three year old Pulse ( by blokchanz ) included in references.
activecvecriticalphishingtrojanransomwarebuffer overflowfile corruptionmetaformcloudflarecve bankmimick kimsukytargetnetgearapt73motion capturered packetsecuritymexicounited statesdgacontacted by researchersexploitsremotemanipulationtijuana
Indicators of Compromise (103 / 187 total)
All URL FileHash-MD5 FileHash-SHA1 FileHash-SHA256 CVE domain hostname email
TYPEINDICATORDESCRIPTIONCREATED
URL https://redpacketsecurity.com/all 2025-12-07
URL https://www.redpacketsecurity.com/chromeos-multiple-vulnerabilities-11-06-2024/ 2025-12-07
URL https://www.redpacketsecurity.com/cloudflare-warns-of-india-linked-hackers-targeting-south-and-east-asian-entities/ 2025-12-07
URL https://www.redpacketsecurity.com/coinbasecartel-ransomware-victim-cinvestav/ 2025-12-07
URL https://www.redpacketsecurity.com/cve_alert_cve-2025-4549/ 2025-12-07
URL https://www.redpacketsecurity.com/malware-analysis-djvu-3a4f5417b5666b7e633850bf85345b89 2025-12-07
URL https://www.redpacketsecurity.com/malware-analysis-djvu-6bcb11a9c59cb41aa9b01303313fbef2 2025-12-07
URL https://www.redpacketsecurity.com/malware-analysis-smokeloader-9b680fe6c94c5c5efd8d1ee47e6bc9a3 2025-12-07
URL https://www.redpacketsecurity.com/qilin-ransomware-victim-applied-technology-resources/ 2025-12-07
URL http://evilginx.redpacketsecurity.com 2025-12-07
URL http://phish-demo-poc.phish-demo-poc.redpacketsecurity.com 2025-12-07
URL http://phish-demo-poc.redpacketsecurity.com 2025-12-07
URL http://redpacketsecurity.com 2025-12-07
URL http://redpacketsecurity.com/north-korea-s-kimsuky-group-mimics-kr 2025-12-07
URL http://subdomainhere.phish-demo-poc.redpacketsecurity.com 2025-12-07
URL http://www.redpacketsecurity.com/tonto-team-uses-any 2025-12-07
URL https://evilginx.redpacketsecurity.com 2025-12-07
URL https://phish-demo-poc.phish-demo-poc.redpacketsecurity.com 2025-12-07
URL https://phish-demo-poc.redpacketsecurity.com 2025-12-07
URL https://preshweb.com/prize.php 2025-12-07
URL https://redpacketsecurity.com 2025-12-07
URL https://subdomainhere.phish-demo-poc.redpacketsecurity.com 2025-12-07
URL https://www.redpacketsecurity.com/8base-ransomware-victim-pws-the-laundry-company-18/ 2025-12-07
URL https://www.redpacketsecurity.com/all-ring-tech-co-ltd-added-to-bert-ransomware-leak-site/ 2025-12-07
URL https://www.redpacketsecurity.com/alphalocker-ransomware-victim-www-myriversidedentaloffice-com/ 2025-12-07
URL https://www.redpacketsecurity.com/apt73-ransomware-victim-hpecds-com/ 2025-12-07
URL https://www.redpacketsecurity.com/apt73-ransomware-victim-mgfsourcing-com/ 2025-12-07
URL https://www.redpacketsecurity.com/apt73-ransomware-victim-modplan-co-uk/ 2025-12-07
URL https://www.redpacketsecurity.com/apt73-ransomware-victim-sokkakreatif-com/ 2025-12-07
URL https://www.redpacketsecurity.com/apt73-ransomware-victim-www-baldinger-ag-ch/ 2025-12-07
URL https://www.redpacketsecurity.com/apt73-ransomware-victim-www-legilog-fr/ 2025-12-07
URL https://www.redpacketsecurity.com/apt73-ransomware-victim-www-scopeset-de/ 2025-12-07
URL https://www.redpacketsecurity.com/apt73-ransomware-victim-www-trinitesolutions-com/ 2025-12-07
URL https://www.redpacketsecurity.com/black-basta-ransomware-victim-team-jobs/ 2025-12-07
URL https://www.redpacketsecurity.com/cisa-cisco-releases-security-updates-addressing-arcanedoor-vulnerabilities-in-cisco-firewall-platforms-24-04-2024/ 2025-12-07
URL https://www.redpacketsecurity.com/cisa-snowflake-recommends-customers-take-steps-to-prevent-unauthorized-access-03-06-2024/ 2025-12-07
URL https://www.redpacketsecurity.com/cisa-vulnerability-summary-for-the-week-of-february-17-2025/ 2025-12-07
URL https://www.redpacketsecurity.com/cisa-vulnerability-summary-for-the-week-of-january-6-2025/ 2025-12-07
URL https://www.redpacketsecurity.com/cisa-vulnerability-summary-for-the-week-of-march-24-2025/ 2025-12-07
URL https://www.redpacketsecurity.com/cobalt-stike-beacon-detected-45-144-136-86-port-81/ 2025-12-07
URL https://www.redpacketsecurity.com/coinbasecartel-ransomware-victim-championx/ 2025-12-07
URL https://www.redpacketsecurity.com/coinbasecartel-ransomware-victim-limocar-by-transdev-ca/ 2025-12-07
URL https://www.redpacketsecurity.com/coinbasecartel-ransomware-victim-paccar/ 2025-12-07
URL https://www.redpacketsecurity.com/cve-alert-cve-2025-59230-microsoft-windows-10-version-1809/ 2025-12-07
URL https://www.redpacketsecurity.com/cve_alert_cve-2020-11917/ 2025-12-07
URL https://www.redpacketsecurity.com/cve_alert_cve-2024-12847/ 2025-12-07
URL https://www.redpacketsecurity.com/cve_alert_cve-2024-51683/ 2025-12-07
URL https://www.redpacketsecurity.com/cve_alert_cve-2025-4135/ 2025-12-07
URL https://www.redpacketsecurity.com/cve_alert_cve-2025-4140/ 2025-12-07
URL https://www.redpacketsecurity.com/cve_alert_cve-2025-4142/ 2025-12-07
URL https://www.redpacketsecurity.com/cve_alert_cve-2025-45492/ 2025-12-07
URL https://www.redpacketsecurity.com/eldorado-ransomware-victim-www-keizers-ca/ 2025-12-07
URL https://www.redpacketsecurity.com/evasive-qbot-malware-leverages-short-lived-residential-ips-for-dynamic-attacks-3/ 2025-12-07
URL https://www.redpacketsecurity.com/everest-ransomware-victim-peoplecheck/ 2025-12-07
URL https://www.redpacketsecurity.com/finastra-notifies-customers-of-data-breach/ 2025-12-07
URL https://www.redpacketsecurity.com/firefox-0day-cve-2015-4495/ 2025-12-07
URL https://www.redpacketsecurity.com/fog-ransomware-victim-gitlabs-bolin-centre-for-climate-research-x-lab-group-madia/ 2025-12-07
URL https://www.redpacketsecurity.com/fog-ransomware-victim-village-community-school-vcsnyc-org/ 2025-12-07
URL https://www.redpacketsecurity.com/google-android-information-disclosure-cve-2024-27234/ 2025-12-07
URL https://www.redpacketsecurity.com/guacamaya 2025-12-07
URL https://www.redpacketsecurity.com/how-to-detect-new-threats-via-suspicious-activities/ 2025-12-07
URL https://www.redpacketsecurity.com/interlock-ransomware-victim-city-of-peabody-ma/ 2025-12-07
URL https://www.redpacketsecurity.com/interlock-ransomware-victim-your-building-centers/ 2025-12-07
URL https://www.redpacketsecurity.com/kazu-ransomware-victim-national-civil-service-commission-of-colombia/ 2025-12-07
URL https://www.redpacketsecurity.com/lynx-ransomware-victim-hanson-chambers/ 2025-12-07
URL https://www.redpacketsecurity.com/lynx-ransomware-victim-tri-sen-systems/ 2025-12-07
URL https://www.redpacketsecurity.com/malware-analysis-dcrat-3c10dc9df5b42968e8bbe67387bc30a2 2025-12-07
URL https://www.redpacketsecurity.com/malware-analysis-dcrat-3c10dc9df5b42968e8bbe67387bc30a2/ 2025-12-07
URL https://www.redpacketsecurity.com/malware-analysis-dcrat-545edb09eef6849f6c2b3f87b3dfc5d3 2025-12-07
URL https://www.redpacketsecurity.com/malware-analysis-dcrat-5eb828dff6222ddbe9a3ee89ccf031c5 2025-12-07
URL https://www.redpacketsecurity.com/malware-analysis-dcrat-60ff077bb695fbf5542a70c57825a5c4 2025-12-07
URL https://www.redpacketsecurity.com/malware-analysis-dcrat-fbdde4446467cf7b6e2edc26f470ed98 2025-12-07
URL https://www.redpacketsecurity.com/malware-analysis-djvu-02f83fe24845fc6e11673865f3e638a6 2025-12-07
URL https://www.redpacketsecurity.com/malware-analysis-djvu-0bffab8de978679c204fe21331058575 2025-12-07
URL https://www.redpacketsecurity.com/malware-analysis-djvu-117665adcf6258541591a576ef8f1bb0 2025-12-07
URL https://www.redpacketsecurity.com/malware-analysis-djvu-17c6bac6b04b88cdced96c37db03f6cb 2025-12-07
URL https://www.redpacketsecurity.com/malware-analysis-djvu-3580aa18f94b7334e5af86a9df3179f7 2025-12-07
URL https://www.redpacketsecurity.com/malware-analysis-djvu-3e132606c5205c1200f61a3dd211c794 2025-12-07
URL https://www.redpacketsecurity.com/malware-analysis-djvu-88e9a7a0194592061b2aa9b2c6b45e88/ 2025-12-07
URL https://www.redpacketsecurity.com/malware-analysis-djvu-959911ee1e7389ad2370e5ae284354c4 2025-12-07
URL https://www.redpacketsecurity.com/malware-analysis-djvu-a398399a3cf53c16d8d9eb535174c4ae 2025-12-07
URL https://www.redpacketsecurity.com/malware-analysis-djvu-becd0d98fcc5851e2096d2e17a9a1983 2025-12-07
URL https://www.redpacketsecurity.com/malware-analysis-djvu-d5c3b6fa21913ae9786e07beecc35f51 2025-12-07
URL https://www.redpacketsecurity.com/malware-analysis-smokeloader-62d2eee763f97a3ee7eedd9c44d4ae06 2025-12-07
URL https://www.redpacketsecurity.com/nightspire-ransomware-victim-vascara-vietnam/ 2025-12-07
URL https://www.redpacketsecurity.com/north-korea-s-kimsuky-group-mimics-ke 2025-12-07
URL https://www.redpacketsecurity.com/north-korea-s-kimsuky-group-mimics-key-figures-in-targeted-cyber-attacks-3/ 2025-12-07
URL https://www.redpacketsecurity.com/pikabot-distributed-via-malicious-ads-6/ 2025-12-07
URL https://www.redpacketsecurity.com/play-ransomware-victim-eia-global/ 2025-12-07
URL https://www.redpacketsecurity.com/play-ransomware-victim-eia-global/&ved=2ahUKEwiv2o29pbqOAxXDXfEDHYuNETEQFnoECBkQAQ&usg=AOvVaw0MWKWIZ-56X4TPRRCAjifA 2025-12-07
URL https://www.redpacketsecurity.com/python-powered-malware-snags-hundreds-of-credit-cards-200k-passwords-and-4mcookies/ 2025-12-07
URL https://www.redpacketsecurity.com/siemens-solid-edge-code-execution-cve-2023-24552/ 2025-12-07
URL https://www.redpacketsecurity.com/summary-of-ai-leaders-spill-their-secrets-webinar/ 2025-12-07
URL https://www.redpacketsecurity.com/thousands-of-organizations-targeted-via-operation-chimaera/ 2025-12-07
URL https://www.redpacketsecurity.com/tonto-... 2025-12-07
URL https://www.redpacketsecurity.com/tonto-team-... 2025-12-07
URL https://www.redpacketsecurity.com/tonto-team-uses-an- 2025-12-07
URL https://www.redpacketsecurity.com/tonto-team-uses-anti-malware-file-to-launch-attacks-on-south-korean-institutions/ 2025-12-07
URL https://www.redpacketsecurity.com/tonto-team-uses-anti-malware-file-to-launch-attacks-on-south-korean-institutions/\ 2025-12-07
URL https://www.redpacketsecurity.com/troy-hunt-s-mailchimp-list-16-627-breached-accounts/ 2025-12-07
URL https://www.redpacketsecurity.com/worldleaks-ransomware-victim-tech-mahindra/ 2025-12-07
URL http://uri.cloudflare.com/cdn 2025-12-07
URL https://www.cloudflare.com/5xx 2025-12-07
References (1)
↗ Relationship by blokchanz -> https://otx.alienvault.com/pulse/63819ac31fc0ad0b85e90f9f