← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
OSINT Volley 2026-02-14 - Formbook/ClearFake/Unknown Stealer
WHITE pduggusa 2026-02-14 Modified: 2026-03-16
112
IOCs
HIGH VOLUME
Automated OSINT sweep from ThreatFox. Top malware: Formbook(160), ClearFake(66), Unknown Stealer(60), AsyncRAT(48), XWorm(44). Source: abuse.ch ThreatFox API. SSL enriched: 30 IPs with HTTPS, 10 self-signed (C2 candidates). Pattern 54: sweep→volley automation.
osint-volleythreatfoxautomatedformbookclearfakeunknown-stealerc2-infrastructure
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
Formbook ClearFake Unknown Stealer AsyncRAT XWorm
Indicators of Compromise (7 / 112 total)
All hostname URL domain FileHash-MD5
TYPEINDICATORDESCRIPTIONCREATED
FileHash-MD5 510a87871053e239479f28101f013d0f ThreatFox: Unknown malware - payload 2026-02-14
FileHash-MD5 0ec7d167c7ee8764e21c792d6a65d059 ThreatFox: Unknown malware - payload 2026-02-14
FileHash-MD5 fb42dec2c39cd7884ca4cb6b76308f51 ThreatFox: Unknown malware - payload 2026-02-14
FileHash-MD5 370fbcc6711fb983ae4679f02c5ac461 ThreatFox: Unknown malware - payload 2026-02-14
FileHash-MD5 29144c2f5acd859adf08d42ffcd74f50 ThreatFox: Unknown malware - payload 2026-02-14
FileHash-MD5 0f7d721e4e5e2ce0a5c629f2fd4ac572 ThreatFox: Unknown malware - payload 2026-02-14
FileHash-MD5 e80e683b7d37acd47afa66919145ecf4 ThreatFox: Unknown malware - payload 2026-02-14
References (2)
↗ https://analytics.dugganusa.com/api/v1/stix-feed/v2 ↗ https://threatfox.abuse.ch