← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
OSINT Volley 2026-02-11 - Quasar RAT/IClickFix/ClearFake
Automated OSINT sweep from ThreatFox. Top malware: Quasar RAT(1354), IClickFix(236), ClearFake(37), AsyncRAT(35), Havoc(32). Source: abuse.ch ThreatFox API. SSL enriched: 55 IPs with HTTPS, 45 self-signed (C2 candidates). Pattern 54: sweep→volley automation.
MITRE ATT&CK & Malware Families
| TYPE | INDICATOR | DESCRIPTION | CREATED | |
|---|---|---|---|---|
| hostname | willow.art67quarrel.coupons | ThreatFox: ClearFake - payload_delivery | 2026-02-11 | |
| URL | https://151.247.22.202/ | ThreatFox: Vidar - botnet_cc | 2026-02-11 | |
| hostname | glacier.art67quarrel.coupons | ThreatFox: ClearFake - payload_delivery | 2026-02-11 | |
| hostname | monarch.dle759zone.coupons | ThreatFox: ClearFake - payload_delivery | 2026-02-11 | |
| hostname | relogio.hopto.org | ThreatFox: XWorm - botnet_cc | 2026-02-11 | |
| hostname | digozap.hopto.org | ThreatFox: XWorm - botnet_cc | 2026-02-11 | |
| hostname | angxo.kozow.com | ThreatFox: AsyncRAT - botnet_cc | 2026-02-11 | |
| URL | https://psicogenealogia.com.br/ | ThreatFox: Unknown malware - payload_delivery | 2026-02-11 | |
| hostname | api.genesisproj.org | ThreatFox: Unknown Stealer - botnet_cc | 2026-02-11 | |
| hostname | nectar.dle759zone.coupons | ThreatFox: ClearFake - payload_delivery | 2026-02-11 | |
| domain | myghibligenerator.com | ThreatFox: Unknown Stealer - botnet_cc | 2026-02-11 | |
| hostname | orbit.flash97all.coupons | ThreatFox: ClearFake - payload_delivery | 2026-02-11 | |
| hostname | victorlopes.agencialegalads.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | vayna.in.digitaljaydeep.in | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | usbirdrep.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | upbirdrep.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | trybirdrep.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | turkey-company.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | trybirdrank.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | thietbidiencongnghiep.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | thecatflix.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | hotgirltiktok.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | inspirec.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | poloidesign.com.75156372-90-20180116090518.webstarterz.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | youthvxolenceproject.com.springvillehomestead.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | winbee.jp | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | simz2.jp | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | shop.jlct.jp | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | abac-kompresszor.hu.technorollshop.hu | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | wagnertech.lu | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | businessthrust.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | account-captcha-id4234.cfd | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | satwikskincare.com.digitaljaydeep.in | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | yoursny.org | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | yarapon.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | xbox.sumillionaires.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | wp.zyratalk.co | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | winwinexpert.ru | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | vipbirdrep.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | volokno.net | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | webdisk.tamiltotamil.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | webmail.kasatnews.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | webdisk.giracoin.io | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | vietorigin.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | vidaedinheiro.com.agenciadelivearte.com.br | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | urzone.in | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | truongminhduc.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | tradesunjapan.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | taskageniusalamin.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | sp0t.biz | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | tehahfandbtrading.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | souzaeferro.agencialegalads.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | skyxin.ch | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | abeno-snake.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | taias.lt | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | sl-baker.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | soulcirclewellness.rocketrobs.co.za | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | smtp.he-connect.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | smtp.fixmystrings.co.uk | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | sitebh.com.br | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | seminariodiocesedejanauba.com.br | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | sbludwig.de | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | mail.jot.adw.mybluehost.me | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | taqrisenterprise.com.nexus-my.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | ulwaza.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | saturnfoundation.in | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | wewheel.net | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | webmail.umeedshiksharath.org | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | womenworkingtogether.com.au | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | web12.alliancepaytest.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | wishlist.miarcus.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | website.studiocaravan.net | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | webmail.uranium-news.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | webdisk.super77a.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | twessy.tasawk.net | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | topone-fc.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | website-e4b7844b.joyfulsouthernmama.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | webdisk.dinsosjombang.id | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | tsuchiya-miso.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | valorcomunica.agenciadelivearte.com.br | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | triplobby.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | travelpass.zambosur.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | toiler.wesix.com.br | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | terecon.ch | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | tenmaru7hikiyose.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | taxi-saranda-shehaj.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | signature.seaskyservices.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | socialsecurityprimer.southernsummits.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | southbaybythegulfdestin.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | soda89.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | seribijutsu.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | schluesselringe.de | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | freekids.amosca.com.br | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | zbhnozatrading.com.nexus-my.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | yzempire.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | skjsb.my.nexus-my.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | shophomevn.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | 189632.web25.swisscenter.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | soulcirclewellness.co.za | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | ipacarai.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | sto.ttc-auto.ru | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | ystar.jp | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | whm.chinabandy.org | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | yumewokanaeru365.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | yuk89slot.net | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | wp-proplus.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | web-ocean.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | webmail.mega77b.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | stavby.sk | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | staging.trytebox.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | stazio54.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | supvitalfree.verslo.io | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | tanakazu1977.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | syuchan.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | teresina.oligoflora.com.br | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | sebastiancafe.kbral.com.br | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | singlevendor.ninetysix.in | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | quabala-quabala.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | psicologowil.com.br | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | qka.poy.temporary.site | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | portaldesigngrafico.com.br.agenciadelivearte.com.br | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | rummagewi.drcs-solutions.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | rummagewi.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | sageproductions.tv | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | test.my-video-live.cloud | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | wooddecor.com.br.kbral.com.br | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | tlcmaui.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | quamecheng.co.zm | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | ysetechnologies.com.appniacs.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | whm.umeedshiksharath.org | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | whm.tamiltotamil.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | yellowbird.siulyn.fr | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | vitaricca-1.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | wordt-ontwikkeldbe.site.tb-hosting.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | webdisk.kasatnews.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | vegasvalleycommercial.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | study.bisabarengoby.id | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | tes-totaleng.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | teenpattijawaan.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | urbiagua.pt | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | webmail.giracoin.io | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | frassatoadvogados.agencialegalads.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | ftp.schoolofhealthcare.co.uk | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | myticket.kwirs.xyz | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | cap.opetap.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | ftp.knowzalearning.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | belezamolecular.com.br | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | lead-mc.jp | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | seydap.gr | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | fastsolution.asia | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | lupstyle.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | shinsenkaku-osaka.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | odeon-gongen.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | gaines-kg.jp | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | smtp.xn--80adx0bza.xn--80aphgvco4b.xn--p1ai | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | ace-batiment.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | travellerschoice.ae | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | kanekoyozo.jp | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | google-drive.co | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | mukidashiactive.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | insectopia.ch | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | bakvau-store.evascientific.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | dimelox.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | favashop.com.ar | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | utama78.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | mail.avomawealth.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | sendhub.app | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | shizuka-home.co.jp | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | thespitiko.com.au | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | deibignite.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | suiiki-e-r.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | laflacatea.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | frassatoadvogados.com.br.agencialegalads.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | sushibymatsu.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | feedmylambs.site | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | int-secure.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | steam-cloud.pro | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | alpharedi.live | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| hostname | ekoplod.pentasoftcomputers.eu | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | extracareliving.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 | |
| domain | accountpulseupdate.com | ThreatFox: IClickFix - botnet_cc | 2026-02-11 |