← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
URLHaus data - 17-02-2026 (Part 4)
WHITE CyberHunterAutoFeed 2026-02-18 Modified: 2026-03-20
42
IOCs
MEDIUM VOLUME
32-bitelfmipsMoziClearFakec2-monitor-autodropped-by-amadeyfbf543armmiraihajimemsiua-wgetexeshbotnetdomaincensysgafgytopendirCobaltStrikelnkxml-opendirbackdoorsshdkitencryptedGuLoaderratRemcosRATasciiEncodedPhantomStealerpowershellps1AgentTeslaAsyncRATLokiMassLoggermartemeterpreterRozenastealerLazagneLigoloe3db0bRedLineStealerFormbookzipxwormrev-base64-loaderDarkCloudarchivecompressedPassword: lunexpw-lunexVidarEternalRocksPassword: cyrexpw-cyrexgeofencedUSASantaStealer
Indicators of Compromise (42)
All hostname URL
TYPEINDICATORDESCRIPTIONCREATED
hostname fastsky.swiftmotion.coupons 2026-02-18
URL http://117.209.5.191:50743/bin.sh 2026-02-18
URL https://darkriver.swiftmotion.coupons/chromesetup_x64 2026-02-18
hostname darkriver.swiftmotion.coupons 2026-02-18
URL http://115.62.214.185:35673/i 2026-02-18
URL http://221.15.5.132:58209/i 2026-02-18
URL http://42.224.81.96:34057/bin.sh 2026-02-18
URL http://117.219.148.18:53709/i 2026-02-18
URL http://112.249.70.74:45988/bin.sh 2026-02-18
URL https://freshbreeze.sandbox-proxy-diagnostic.coupons/handler 2026-02-18
hostname freshbreeze.sandbox-proxy-diagnostic.coupons 2026-02-18
URL http://27.212.137.244:59659/i 2026-02-18
URL https://redstone.sandbox-proxy-diagnostic.coupons/handler 2026-02-18
hostname redstone.sandbox-proxy-diagnostic.coupons 2026-02-18
URL https://smartcloud.sandbox-proxy-diagnostic.coupons/handler 2026-02-18
hostname smartcloud.sandbox-proxy-diagnostic.coupons 2026-02-18
URL https://wildriver.runtime-error-handler.coupons/handler 2026-02-18
hostname wildriver.runtime-error-handler.coupons 2026-02-18
URL http://27.212.137.244:59659/bin.sh 2026-02-18
URL http://117.219.148.18:53709/bin.sh 2026-02-18
URL http://61.54.11.227:52989/bin.sh 2026-02-18
URL http://112.239.121.105:40898/i 2026-02-18
URL https://goldenapple.runtime-error-handler.coupons/handler 2026-02-18
hostname goldenapple.runtime-error-handler.coupons 2026-02-18
URL http://172.86.114.147/sh 2026-02-18
URL http://172.86.114.147/sshd 2026-02-18
URL http://172.86.114.147/openssh 2026-02-18
URL http://172.86.114.147/cron 2026-02-18
URL http://172.86.114.147/ntpd 2026-02-18
URL http://172.86.114.147/pftp 2026-02-18
URL http://103.116.52.126/x86 2026-02-18
URL http://103.116.52.126/sh4 2026-02-18
URL http://103.116.52.126/arm6 2026-02-18
URL http://103.116.52.126/mips 2026-02-18
URL http://103.116.52.126/m68k 2026-02-18
URL http://103.116.52.126/arm7 2026-02-18
URL http://103.116.52.126/arm5 2026-02-18
URL http://103.116.52.126/mpsl 2026-02-18
URL http://103.116.52.126/ppc 2026-02-18
URL http://103.116.52.126/arm 2026-02-18
URL http://103.116.52.126/x86_64 2026-02-18
URL http://46.200.25.151:38812/i 2026-02-18
References (1)
↗ https://urlhaus.abuse.ch/browse/