← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
ThreatFox Hunt: Unknown malware IOCs - 2025-12-30
WHITE pduggusa 2025-12-30 Modified: 2026-01-29
75
IOCs
HIGH VOLUME
Automated ThreatFox hunt for Unknown malware indicators. 174 IOCs collected via Pattern 49 intelligence streaming. MITRE ATT&CK: T1071.001, T1105. Reference: https://analytics.dugganusa.com
unknown-malwarethreatfoxautomated-huntpattern-49dugganusaunattributed
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
Unknown malware
Indicators of Compromise (72 / 75 total)
All URL hostname domain
TYPEINDICATORDESCRIPTIONCREATED
URL http://91.215.85.42:3003/login Unknown malware botnet_cc - ThreatFox ID: 1687504 2025-12-30
URL https://41.216.188.41/login Unknown malware botnet_cc - ThreatFox ID: 1687506 2025-12-30
URL https://20.92.160.27/ Unknown malware payload_delivery - ThreatFox ID: 1687507 2025-12-30
URL https://54.197.245.249/ Unknown malware payload_delivery - ThreatFox ID: 1687508 2025-12-30
URL https://216.172.170.236/ Unknown malware payload_delivery - ThreatFox ID: 1687509 2025-12-30
URL https://173.254.106.143/ Unknown malware payload_delivery - ThreatFox ID: 1687510 2025-12-30
URL https://172.191.195.85/ Unknown malware payload_delivery - ThreatFox ID: 1687511 2025-12-30
URL http://130.12.180.20:36695/cat.sh Unknown malware payload_delivery - ThreatFox ID: 1687517 2025-12-30
URL http://westpointwelbyplay.info:8080/updater?for=0AA6B9F07A5B27B2069C137C69EC91EB Unknown malware botnet_cc - ThreatFox ID: 1687626 2025-12-30
URL https://203.158.141.64/ Unknown malware payload_delivery - ThreatFox ID: 1687788 2025-12-30
URL https://35.154.43.19/ Unknown malware payload_delivery - ThreatFox ID: 1687789 2025-12-30
URL https://209.250.2.244/ Unknown malware payload_delivery - ThreatFox ID: 1687790 2025-12-30
URL https://66.39.17.31/ Unknown malware payload_delivery - ThreatFox ID: 1687832 2025-12-30
URL https://162.55.94.68/ Unknown malware payload_delivery - ThreatFox ID: 1687833 2025-12-30
URL https://3.71.235.243/ Unknown malware payload_delivery - ThreatFox ID: 1687834 2025-12-30
URL https://203.161.63.39/ Unknown malware payload_delivery - ThreatFox ID: 1687835 2025-12-30
URL https://3ac.conohawing.com/ Unknown malware payload_delivery - ThreatFox ID: 1687840 2025-12-30
URL http://130.12.180.85/file/ssh.sh Unknown malware payload_delivery - ThreatFox ID: 1687883 2025-12-30
URL https://108.179.231.237/ Unknown malware payload_delivery - ThreatFox ID: 1687884 2025-12-30
URL https://easycart.in.net/ Unknown malware payload_delivery - ThreatFox ID: 1687889 2025-12-30
URL https://captcha-online.live/ Unknown malware payload_delivery - ThreatFox ID: 1687891 2025-12-30
URL https://203.161.60.226/ Unknown malware payload_delivery - ThreatFox ID: 1687910 2025-12-30
URL https://125.253.125.72/ Unknown malware payload_delivery - ThreatFox ID: 1687911 2025-12-30
URL https://vpnkit.tech/ Unknown malware payload_delivery - ThreatFox ID: 1687912 2025-12-30
URL https://54.254.254.50/ Unknown malware payload_delivery - ThreatFox ID: 1687913 2025-12-30
URL https://kak.is/get_it.php Unknown malware botnet_cc - ThreatFox ID: 1687925 2025-12-30
URL https://118.139.167.36/ Unknown malware payload_delivery - ThreatFox ID: 1687958 2025-12-30
URL https://165.22.182.5/ Unknown malware payload_delivery - ThreatFox ID: 1687959 2025-12-30
URL https://52.23.9.8/ Unknown malware payload_delivery - ThreatFox ID: 1687960 2025-12-30
URL https://103.241.42.39/ Unknown malware payload_delivery - ThreatFox ID: 1687961 2025-12-30
URL https://51.77.34.184/ Unknown malware payload_delivery - ThreatFox ID: 1687962 2025-12-30
URL https://www.mobileloavestc.org/ Unknown malware payload_delivery - ThreatFox ID: 1688082 2025-12-30
URL https://34.94.210.64/ Unknown malware payload_delivery - ThreatFox ID: 1688119 2025-12-30
URL https://85.235.145.247/ Unknown malware payload_delivery - ThreatFox ID: 1688120 2025-12-30
URL https://159.89.93.96/ Unknown malware payload_delivery - ThreatFox ID: 1688121 2025-12-30
URL http://45.221.97.89:8888/supershell/login/ Unknown malware botnet_cc - ThreatFox ID: 1688131 2025-12-30
URL https://34.60.93.120/ Unknown malware payload_delivery - ThreatFox ID: 1688194 2025-12-30
URL https://67.205.182.255/ Unknown malware payload_delivery - ThreatFox ID: 1688195 2025-12-30
URL https://143.110.235.189/ Unknown malware payload_delivery - ThreatFox ID: 1688196 2025-12-30
URL https://www.pulse-my-account.com/ Unknown malware payload_delivery - ThreatFox ID: 1688197 2025-12-30
URL https://www.account-update-pulse.com/ Unknown malware payload_delivery - ThreatFox ID: 1688198 2025-12-30
URL https://accountpulseupdate.com/sign-in/ Unknown malware payload_delivery - ThreatFox ID: 1688199 2025-12-30
URL https://accountupdatepulse.com/ Unknown malware payload_delivery - ThreatFox ID: 1688200 2025-12-30
URL https://accountmanagercheck.com/ Unknown malware payload_delivery - ThreatFox ID: 1688201 2025-12-30
URL https://account-updationpage.com/ Unknown malware payload_delivery - ThreatFox ID: 1688202 2025-12-30
URL https://108.61.166.232/ Unknown malware payload_delivery - ThreatFox ID: 1688227 2025-12-30
URL https://139.59.31.145/ Unknown malware payload_delivery - ThreatFox ID: 1688228 2025-12-30
URL https://198.91.87.184/ Unknown malware payload_delivery - ThreatFox ID: 1688229 2025-12-30
URL https://13.115.32.233/ Unknown malware payload_delivery - ThreatFox ID: 1688230 2025-12-30
URL https://173.231.199.178/ Unknown malware payload_delivery - ThreatFox ID: 1688232 2025-12-30
URL https://35.75.68.158/ Unknown malware payload_delivery - ThreatFox ID: 1688250 2025-12-30
URL https://217.154.102.41/ Unknown malware payload_delivery - ThreatFox ID: 1688251 2025-12-30
URL https://13.113.8.105/ Unknown malware payload_delivery - ThreatFox ID: 1688252 2025-12-30
URL https://g088.ac/update.php Unknown malware payload_delivery - ThreatFox ID: 1688259 2025-12-30
URL https://lazerepilasyonfiyatlar.com/ Unknown malware payload_delivery - ThreatFox ID: 1688397 2025-12-30
URL https://93.127.143.163/ Unknown malware payload_delivery - ThreatFox ID: 1688423 2025-12-30
URL https://34.23.45.74/ Unknown malware payload_delivery - ThreatFox ID: 1688424 2025-12-30
URL https://66.39.135.163/ Unknown malware payload_delivery - ThreatFox ID: 1688518 2025-12-30
URL https://3.27.82.110/ Unknown malware payload_delivery - ThreatFox ID: 1688519 2025-12-30
URL https://5.35.90.28/ Unknown malware payload_delivery - ThreatFox ID: 1688520 2025-12-30
URL https://13.233.119.235/ Unknown malware payload_delivery - ThreatFox ID: 1688521 2025-12-30
URL https://207.154.204.54/ Unknown malware payload_delivery - ThreatFox ID: 1688522 2025-12-30
URL https://54.76.13.162/ Unknown malware payload_delivery - ThreatFox ID: 1688523 2025-12-30
URL https://13.213.189.252/ Unknown malware payload_delivery - ThreatFox ID: 1688524 2025-12-30
URL https://66.29.142.147/ Unknown malware payload_delivery - ThreatFox ID: 1688525 2025-12-30
URL https://extracareliving.com/ Unknown malware payload_delivery - ThreatFox ID: 1688659 2025-12-30
URL https://admin.falconpayglobal.com/ Unknown malware payload_delivery - ThreatFox ID: 1688672 2025-12-30
URL https://ec2-13-233-119-235.ap-south-1.compute.amazonaws.com/ Unknown malware payload_delivery - ThreatFox ID: 1688673 2025-12-30
URL https://om-engineering.co.in/ Unknown malware payload_delivery - ThreatFox ID: 1688674 2025-12-30
URL https://bornodatabase.ng/ Unknown malware payload_delivery - ThreatFox ID: 1688675 2025-12-30
URL https://d3tool.com/ Unknown malware payload_delivery - ThreatFox ID: 1688676 2025-12-30
URL https://74.45.23.34.bc.googleusercontent.com/ Unknown malware payload_delivery - ThreatFox ID: 1688677 2025-12-30
References (2)
↗ https://analytics.dugganusa.com/api/v1/stix-feed/v2 ↗ https://threatfox.abuse.ch