Pulse Detail — Threat Intelligence

PULSE NAME

Oz Batch: 50 IOCs (avg BDE: 85)

WHITE pduggusa 2026-02-11 Modified: 2026-03-13

IOCs

MEDIUM VOLUME

**OTX Pulse Description:** This pulse identifies 50 IOCs, including both domains and IPs associated with various C2 frameworks such as ClearFake, KongTuke, FAKEUPDATES, Unknown RAT, DeerStealer, EtherRAT, Aisuru, Lumma Stealer, and WarLock. The average BDE Score is 85, indicating a high level of threat potential. Security teams should monitor activity related to these frameworks, especially within environments vulnerable to MITRE ATT&CK techniques such as T1071.001 (Application Layer Protocol) and T1203 (Exploitation for Client Execution). BDE (Big Data analytics Energy) Score: 85, Detection Timestamp: [Insert Timestamp].

DugganUSA auto-generated

Indicators of Compromise (38)

All hostname domain

TYPE	INDICATOR	DESCRIPTION	CREATED
hostname	umbrella.semifinal-matching.coupons	BDE: 85	2026-02-11
hostname	hatjrybr.elastic-refurbish.digital	BDE: 85	2026-02-11
hostname	oxidize.semifinal-matching.coupons	BDE: 85	2026-02-11
hostname	7i84od4b.elastic-refurbish.digital	BDE: 85	2026-02-11
hostname	mortician.semifinal-matching.coupons	BDE: 85	2026-02-11
hostname	sparkle.smartshopping.coupons	BDE: 85	2026-02-11
domain	benecian.com	BDE: 85	2026-02-11
domain	ctpsih.com	BDE: 85	2026-02-11
hostname	events.youranokacounty.com	BDE: 85	2026-02-11
hostname	assistant.praiselimollc.com	BDE: 85	2026-02-11
hostname	booking.fijivacations.com	BDE: 85	2026-02-11
hostname	infra.permianbuildersllc.com	BDE: 85	2026-02-11
domain	zkyhgfvluyvjh.im	BDE: 85	2026-02-11
domain	mulpdate.icu	BDE: 85	2026-02-11
domain	xuanwcai.com	BDE: 85	2026-02-11
domain	johnstoneferrozavod.com	BDE: 85	2026-02-11
domain	paradigmsereinthrenody.com	BDE: 85	2026-02-11
domain	laundrysyndicserai.com	BDE: 85	2026-02-11
domain	gateway001kir.com	BDE: 85	2026-02-11
domain	mymexico.social	BDE: 85	2026-02-11
domain	api-gateway-prod.com	BDE: 85	2026-02-11
domain	mbml-writer-info.info	BDE: 85	2026-02-11
domain	mmdis-worls.com	BDE: 85	2026-02-11
domain	sslgateway001.com	BDE: 85	2026-02-11
domain	microsoft-tools.com	BDE: 85	2026-02-11
domain	sistemablackatz.com	BDE: 85	2026-02-11
domain	jariosos.com	BDE: 85	2026-02-11
domain	darkisq.cyou	BDE: 85	2026-02-11
domain	retiriu.cyou	BDE: 85	2026-02-11
domain	psychob.cyou	BDE: 85	2026-02-11
domain	chuckyr.cyou	BDE: 85	2026-02-11
domain	elqfbcx5nofwtqfookqml7ltx2g6q6tmddys6e25vgu3al2meim6cbqd.onion	BDE: 85	2026-02-11
domain	zfytizegsze6uiswodhbaalyy5rawaytv2nzyzdkt3susbewviqqh7yd.onion	BDE: 85	2026-02-11
domain	ocwjy4ynmpbbzhumh2ama2vl3bc77lf5auqf7nf4k45lbmzoep2rbyid.onion	BDE: 85	2026-02-11
domain	warlock4fagqhnfuxtcmncfepe3jc33e33dmj2jsk64svxaerm5zhaqd.onion	BDE: 85	2026-02-11
domain	warlock6d4etw5gwwaakh6auh6cwkinhk2bx7bbldu4m5axlcwmbuuyd.onion	BDE: 85	2026-02-11
domain	warlockhga5iw3t54ps5iytlilf7hlvxy7kwrkidspn4qoh64s4vsuyd.onion	BDE: 85	2026-02-11
domain	warlockmdu64clit5pdwbp5hsd576vcjjigfwbtz5gtthmuy2fiqblad.onion	BDE: 85	2026-02-11