← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
EbeeMay2026 Pt2
WHITE JDownloader, DarkCloud, Chaos Ransomware, APT29, Shadow-Earth-053 IMEBEEIMFINE 2026-05-13 Modified: 2026-05-13
1043
IOCs
HIGH VOLUME
Multiple APT/threat actors, Malware and Campaigns
filehashsha256filehashmd5filehashsha1cve20250921 cvecve20260300 cvecve20261281 cvecve20261340 cvecve20261731 cvecve20261357 cvecve20259501 cveyara
Indicators of Compromise (45 / 1043 total)
All IPv4 URL CVE FileHash-MD5 FileHash-SHA1 FileHash-SHA256 domain email hostname
TYPEINDICATORDESCRIPTIONCREATED
URL http://server.cubatiendaalimentos.com.mx/~tiendazoycom/sns/statement5648.exe 2026-05-13
URL https://phamtaitan.vn/ 2026-05-13
URL http://146.19.24.131:2404 2026-05-13
URL http://159.198.41.140/static/builder/lnk_uploads/invo.pdf f5d37493b12955b8c518028bf7dcb4a8a2ad190341fc30a27475fc8cd43e539d 2026-05-13
URL http://159.198.41.140/test/index.php?r=survey/index&sid=936926&newtest=Y&lang=ru%22 2026-05-13
URL http://193.202.84.14:56001 2026-05-13
URL http://84.200.205.233:5555 2026-05-13
URL http://84.54.33.192:8040/Bin/ScreenConnect.ClientSetup.msi 2026-05-13
URL http://91.92.242.30/1v07y9e1m6v7thl6 2026-05-13
URL http://91.92.242.30/6wioz8285kcbax6v 2026-05-13
URL http://dropras.xyz/ 2026-05-13
URL http://kleymarket.ru 2026-05-13
URL http://server.cubatiendaalimentos.com.mx/~tiendazoycom/sns/ 2026-05-13
URL http://serverconect.cc/update/bin/loader.exe 2026-05-13
URL http://sslzeromail.run.place:8041/ 2026-05-13
URL https://anythinghere.woremix.icu/Viewfiles/download.php 2026-05-13
URL https://api.hypercoreengine.com/sender-moss 2026-05-13
URL https://cdn.cloudfront-js.com:8443/u 2026-05-13
URL https://cloudcraftshub.com/api 4285548e097f66195f1e1efc202f76b977db9048f82ba0482da437824b2807b1 2026-05-13
URL https://dichvufbgiare.com/ 2026-05-13
URL https://dns-providersa2.com/check 2026-05-13
URL https://dns-providersa2.com/upload 2026-05-13
URL https://install.app-distribution.net/setup/ 2026-05-13
URL https://lenwillfilenetwork.com/downloads/Network%20Solutions%20Agreement.msi 2026-05-13
URL https://shorten.tv/NvII9 2026-05-13
URL https://shorten.tv/facebook-meta-password_and_security_change-pass 2026-05-13
URL https://trackpipe.dev 2026-05-13
URL https://velvet-parrot.com 2026-05-13
URL https://velvet-parrot.com:443 2026-05-13
URL https://afford-effect-construct-tricks.trycloudflare.com 2026-05-13
URL https://entered-medications-motherboard-advanced.trycloudflare.com 2026-05-13
URL https://fields-pct-easier-vancouver.trycloudflare.com 2026-05-13
URL https://howto-tar-naturals-coordination.trycloudflare.com 2026-05-13
URL https://mode-exit-legendary-trusted.trycloudflare.com 2026-05-13
URL https://rapids-lil-lending-charleston.trycloudflare.com 2026-05-13
URL https://seasonal-estimation-heating-necessarily.trycloudflare.com 2026-05-13
URL https://walt-messaging-affairs-occurring.trycloudflare.com 2026-05-13
URL https://when-architectural-cdna-faster.trycloudflare.com 2026-05-13
URL https://witch-skins-lip-coal.trycloudflare.com 2026-05-13
URL https://workshop-lighting-protective-customs.trycloudflare.com 2026-05-13
URL https://www.genians.com/ 2026-05-13
URL https://beaminkjet.com/umarashab 2026-05-13
URL https://git-tanstack.com/transformers.pyz 2026-05-13
URL https://svc.wompworthy.com 2026-05-13
URL https://timetrakr.cloud/sp.ps1' 2026-05-13
References (1)
↗ IOCs.csv