← Back to Pulse Feed
PULSE DETAIL
This Pulse documents a large set of domains and IP addresses associated with malware delivery activity leveraging Cloudflare‑fronted infrastructure.
Observed indicators include Cloudflare‑proxied domains across multiple TLDs (notably .top, .click, .life, and .ru‑related subdomains) used for hosting or delivering executable payloads, including first‑stage loader binaries. Network telemetry shows successful HTTP(S) responses from these domains, consistent with initial access or malware distribution behavior.
The infrastructure demonstrates common characteristics of commodity eCrime operations, including high domain churn, short‑lived subdomains, and reuse of shared Cloudflare edge IPs to obscure true origin servers.
| TYPE | INDICATOR | DESCRIPTION | CREATED | |
|---|---|---|---|---|
| IPv4 | 94.140.115.18 | CC=LV ASN=AS43513 sia nano it | 2026-03-26 | |
| IPv4 | 94.140.114.192 | CC=LV ASN=AS43513 sia nano it | 2026-03-26 | |
| IPv4 | 94.140.115.129 | CC=LV ASN=AS43513 sia nano it | 2026-03-26 | |
| domain | 789wincom.me | — | 2026-03-26 | |
| domain | a5dxvud8.xyz | — | 2026-03-26 | |
| domain | aliing.xyz | — | 2026-03-26 | |
| domain | amyvanhorn.shop | — | 2026-03-26 | |
| domain | andei.xyz | — | 2026-03-26 | |
| domain | axentragroup.net | — | 2026-03-26 | |
| domain | b1271.com | — | 2026-03-26 | |
| domain | biggboss15new.com | — | 2026-03-26 | |
| domain | bookingc.cc | — | 2026-03-26 | |
| domain | casinosites.one | — | 2026-03-26 | |
| domain | ceutatv.com | — | 2026-03-26 | |
| domain | chaussuresrebokfrance.com | — | 2026-03-26 | |
| domain | cloud-storages-now.today | — | 2026-03-26 | |
| domain | coletrer.xyz | — | 2026-03-26 | |
| domain | damopyu.xyz | — | 2026-03-26 | |
| domain | dervishiale.com | — | 2026-03-26 | |
| domain | disgustwagon.com | — | 2026-03-26 | |
| domain | dllinstaller.com | — | 2026-03-26 | |
| domain | dowo.dev | — | 2026-03-26 | |
| domain | ezbhshop.com | — | 2026-03-26 | |
| domain | fashionzonez.shop | — | 2026-03-26 | |
| domain | fellowshipnwa.org | — | 2026-03-26 | |
| domain | filesdwnload.top | — | 2026-03-26 | |
| domain | gama08981.xyz | — | 2026-03-26 | |
| domain | garena-lienquanvn-moba.com | — | 2026-03-26 | |
| domain | gerbangraja1.com | — | 2026-03-26 | |
| domain | gumtree.pink | — | 2026-03-26 | |
| domain | gunnyshin.com | — | 2026-03-26 | |
| domain | haborei.com | — | 2026-03-26 | |
| domain | helen-endale.com | — | 2026-03-26 | |
| domain | joker888.space | — | 2026-03-26 | |
| domain | ketomyfexafat.xyz | — | 2026-03-26 | |
| domain | ketoutavislim.us | — | 2026-03-26 | |
| domain | kurifly.com | — | 2026-03-26 | |
| domain | labrandaresorthotel.com | — | 2026-03-26 | |
| domain | ldmqx.site | — | 2026-03-26 | |
| domain | luckyjet-slot.dk | — | 2026-03-26 | |
| domain | malittlem.xyz | — | 2026-03-26 | |
| domain | miland4.com | — | 2026-03-26 | |
| domain | mrchomponk.com | — | 2026-03-26 | |
| domain | mtjrtala.com | — | 2026-03-26 | |
| domain | needlethread-sa.com | — | 2026-03-26 | |
| domain | ninjastarsloto.com | — | 2026-03-26 | |
| domain | nns-bnb.com | — | 2026-03-26 | |
| domain | ouebxy.xyz | — | 2026-03-26 | |
| domain | paradiceswap.finance | — | 2026-03-26 | |
| domain | performingmarketmixes.info | — | 2026-03-26 | |
| domain | pilorsoracoiro.com | — | 2026-03-26 | |
| domain | pokerdom-cq6.top | — | 2026-03-26 | |
| domain | pressurizations.com | — | 2026-03-26 | |
| domain | pwsfv.website | — | 2026-03-26 | |
| domain | qakahizu.pro | — | 2026-03-26 | |
| domain | register-discordacademy.com | — | 2026-03-26 | |
| domain | repeatdirt.site | — | 2026-03-26 | |
| domain | roadgrowth360.click | — | 2026-03-26 | |
| domain | s3sun.com | — | 2026-03-26 | |
| domain | salkis.xyz | — | 2026-03-26 | |
| domain | sanalpazardan.com.tr | — | 2026-03-26 | |
| domain | schelele.wtf | — | 2026-03-26 | |
| domain | sdkk22.com | — | 2026-03-26 | |
| domain | spammershop.com | — | 2026-03-26 | |
| domain | srdto.com | — | 2026-03-26 | |
| domain | star-sport.net | — | 2026-03-26 | |
| domain | stupriporno.com | — | 2026-03-26 | |
| domain | svetlanashpagina.com | — | 2026-03-26 | |
| domain | temptinglittlecharms.co.uk | — | 2026-03-26 | |
| domain | time-for-crazy-change.fun | — | 2026-03-26 | |
| domain | tourncast.digital | — | 2026-03-26 | |
| domain | usakelimisin.life | — | 2026-03-26 | |
| domain | uspeh-latv.com | — | 2026-03-26 | |
| domain | viaggio-usa.com | — | 2026-03-26 | |
| domain | vip4dpgoal-08.digital | — | 2026-03-26 | |
| domain | webtechsolution.xyz | — | 2026-03-26 | |
| domain | westernnomads.com | — | 2026-03-26 | |
| domain | woodsmokekitchen.com | — | 2026-03-26 | |
| domain | wyudoc.club | — | 2026-03-26 | |
| domain | ywqi.xyz | — | 2026-03-26 | |
| domain | zxzjwz.com | — | 2026-03-26 | |
| hostname | algeria.huleatrioteasoo.biz.id | — | 2026-03-26 | |
| hostname | bgcf.ggwbsyyy.click | — | 2026-03-26 | |
| hostname | email.mg.fellowshipnwa.org | — | 2026-03-26 | |
| hostname | fa2.filesdwnload.top | — | 2026-03-26 | |
| hostname | fclve.ggwbsyyy.click | — | 2026-03-26 | |
| hostname | fdxtzhro.ggwbsyyy.click | — | 2026-03-26 | |
| hostname | game.bongdachauau.net | — | 2026-03-26 | |
| hostname | great.justlike.pics | — | 2026-03-26 | |
| hostname | iznkjtq.ggwbsyyy.click | — | 2026-03-26 | |
| hostname | ja.yzaudio.net | — | 2026-03-26 | |
| hostname | jguv.ggwbsyyy.click | — | 2026-03-26 | |
| hostname | kfbi.ggwbsyyy.click | — | 2026-03-26 | |
| hostname | lsfb.ggwbsyyy.click | — | 2026-03-26 | |
| hostname | ognamf.ggwbsyyy.click | — | 2026-03-26 | |
| hostname | otdmyk.ggwbsyyy.click | — | 2026-03-26 | |
| hostname | pbyzshq.ggwbsyyy.click | — | 2026-03-26 | |
| hostname | ship.huleatrioteasoo.biz.id | — | 2026-03-26 | |
| hostname | tgbjpwz.ggwbsyyy.click | — | 2026-03-26 | |
| hostname | truck.huleatrioteasoo.biz.id | — | 2026-03-26 | |
| hostname | vthi.ggwbsyyy.click | — | 2026-03-26 | |
| hostname | wusv.ggwbsyyy.click | — | 2026-03-26 | |
| hostname | www.famouspsychicastrologer.com | — | 2026-03-26 | |
| hostname | www.huleatrioteasoo.biz.id | — | 2026-03-26 | |
| hostname | ztsbj.ggwbsyyy.click | — | 2026-03-26 |