{ "type": "URL", "indicator": "https://giveawaybot.cc/redeem/code.5000robux.93Gn29xSIf", "general": { "sections": [ "general", "url_list", "http_scans", "screenshot" ], "indicator": "https://giveawaybot.cc/redeem/code.5000robux.93Gn29xSIf", "type": "url", "type_title": "URL", "validation": [], "base_indicator": { "id": 4330583453, "indicator": "https://giveawaybot.cc/redeem/code.5000robux.93Gn29xSIf", "type": "URL", "title": "", "description": "", "content": "", "access_type": "public", "access_reason": "" }, "pulse_info": { "count": 3, "pulses": [ { "id": "69f15844d001e7755ae520a1", "name": "URLert Daily Threat Intel \u2014 2026-04-29", "description": "URLert Daily Threat Intel \u2014 2026-04-29\n\nAutomated threat intelligence from URLert (https://urlert.com) \u2014 AI-powered URL and domain analysis.\n\nThreats: 51 | Indicators: 97\nConfirmed: 12 | Likely: 39\nTop threats: Phishing (39), Malvertising (4), Unknown (3), Dropper (3), Exploit Kit (1)\nDomains: 2contact.com, 597971.com, ag4.top, bookitil.com, ca-streets-transportation.cfd, carziqo.net, cisco.com, crdpro.at, ct.ws, dfyneyogasale-eu.top, dpd-ie-f.top, erivonali.cfd, giveawaybot.cc,...\n\n51 unique threats producing 97 actionable indicators. Generated by URLert automated threat intelligence.", "modified": "2026-05-29T01:47:17.327000", "created": "2026-04-29T01:00:52.556000", "tags": [ "adware", "android-malware", "automated-scan", "automatic-download", "azure-storage", "brand-impersonation", "browser-exploit-precursor", "carding-forum", "city-of-vancouver", "compromised-site", "counterfeit-software", "cpanel-impersonation", "credential-harvesting", "credit-card-fraud", "cryptocurrency-scam", "daily-threat-intel", "darknet-markets", "data-privacy-risk", "deceptive-advertising", "deceptive-content", "deceptive-domain", "deceptive-login", "deceptive-practices", "deceptive-site", "deepweb-access", "delivery-exception-scam", "delivery-scam", "dpd-impersonation", "dropper", "evasion", "evasion-tactic", "evasion-technique", "executable-download", "faceit", "fake-financial-service", "fake-giveaway", "fake-income-scheme", "fake-login-portal", "fake-prize", "financial-fraud", "financial-information-theft", "free-hosting", "game-lures", "gaming-lure", "gaming-rewards", "gift-card-scam", "google-drive-impersonation", "government-impersonation", "grayware", "high-risk", "highway-6-impersonation", "hyatt-impersonation", "illegal-goods-directory", "imdb-impersonation", "information-harvesting", "information-stealing", "intrusive-ads", "investment-scam", "localhost-redirection", "logistics-sector", "low-reputation", "malicious-infrastructure", "malicious-redirect", "malicious-redirection", "malvertising", "malware-distribution", "marktplaats", "mastercard-impersonation", "mexico", "microsoft-onedrive-impersonation", "mystery-reward-scam", "new-domain", "newly-registered-domain", "offer-wall", "onion-links", "payment-fraud", "payment-phishing", "paypal", "personal-information-harvesting", "phishing", "phishing-campaign", "phishing-site", "ponzi-scheme", "porn-spam", "recently-registered-domain", "redirect-chain", "redirect-evasion", "redirect-to-google", "replit-hosting", "roblox", "roblox-impersonation", "robux-scam", "sat-impersonation", "scam", "scam-site", "social-engineering", "steam", "stolen-credit-cards", "streaming-scam", "suspicious-domain", "suspicious-domain-extension", "suspicious-login-page", "telegram-bot-exfiltration", "traffic-distribution-system", "traffic-redirection", "typosquatting", "unwanted-software", "url-shortener", "urlert", "vanced-app", "vgen-impersonation", "vulnerability-probing", "young-domain", "youtube-spam" ], "references": [ "https://urlert.com/domain/2contact.com", "https://urlert.com/domain/597971.com", "https://urlert.com/domain/ag4.top", "https://urlert.com/domain/bookitil.com", "https://urlert.com/domain/ca-streets-transportation.cfd", "https://urlert.com/domain/carziqo.net", "https://urlert.com/domain/cisco.com", "https://urlert.com/domain/crdpro.at", "https://urlert.com/domain/ct.ws", "https://urlert.com/domain/dfyneyogasale-eu.top", "https://urlert.com/domain/dpd-ie-f.top", "https://urlert.com/domain/erivonali.cfd", "https://urlert.com/domain/giveawaybot.cc", "https://urlert.com/domain/glamourpicklessteward.com", "https://urlert.com/domain/guiasdevideojuegos.top", "https://urlert.com/domain/id62531.help", "https://urlert.com/domain/lendli.org", "https://urlert.com/domain/mnasst.me", "https://urlert.com/domain/mxiaril.com", "https://urlert.com/domain/mykioskworld.com" ], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [], "industries": [ "Financial Services", "Government", "Hospitality", "Logistics / Supply Chain", "Media / Entertainment", "Retail / E-Commerce" ], "TLP": "white", "cloned_from": null, "export_count": 0, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "api", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "urlert_intel", "id": "386175", "avatar_url": "/otxapi/users/avatar_image/media/avatars/user_386175/resized/80/avatar_3b9c358f36.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "domain": 28, "URL": 28, "hostname": 13 }, "indicator_count": 69, "is_author": false, "is_subscribing": null, "subscriber_count": 31, "modified_text": "3 days ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": false, "threat_hunter_has_agents": 1, "related_indicator_type": "URL", "related_indicator_is_active": 1 }, { "id": "69eeb5306d5f58c6044105cc", "name": "URLert Daily Threat Intel \u2014 2026-04-27", "description": "URLert Daily Threat Intel \u2014 2026-04-27\n\nAutomated threat intelligence from URLert (https://urlert.com) \u2014 AI-powered URL and domain analysis.\n\nThreats: 40 | Indicators: 78\nConfirmed: 9 | Likely: 31\nTop threats: Phishing (33), Malware Hosting (3), Dropper (3), Malvertising (1)\nDomains: 355287.com, bunnyband.com, clc.cx, confirm-details.report, cwgobal.net, dipherex.com, dratrans.com, easycash777.com, forms.gle, giveawaybot.cc, hkjhsuies.com.es, hornygiirl.com, localsexap...\n\n40 unique threats producing 78 actionable indicators. Generated by URLert automated threat intelligence.", "modified": "2026-05-26T20:17:24.825000", "created": "2026-04-27T01:00:32.645000", "tags": [ "account-takeover", "anti-analysis", "app-install-malware", "auto-generated-domain", "automated-scan", "betting", "bonus-scam", "brand-impersonation", "budbee-impersonation", "click-through-scam", "coreweave-impersonation", "counterfeit-software", "credential-harvesting", "daily-threat-intel", "dating-scam", "deceptive-bait", "deceptive-captcha", "deceptive-landing-page", "deceptive-marketing", "deceptive-redirect", "deceptive-scam", "deceptive-software", "dickies", "discord-impersonation", "disposable-domain", "ecommerce", "ecuador", "explicit-popups", "fake-financial-service", "fake-giveaway", "fake-login", "fake-online-store", "fake-products", "fake-social-proof", "fake-testimonials", "financial-fraud", "financial-scam", "financial-service-impersonation", "footwear-retail", "fraudulent-content", "fraudulent-services", "free-games-lure", "gambling", "gambling-scam", "gambling-site", "gaming-impersonation", "google-forms", "high-risk-domain", "high-risk-tld", "identity-service-impersonation", "investment-scam", "loan-scam", "malicious-android-app", "malicious-redirect", "malvertising", "malware-delivery", "malware-distribution", "malware-risk", "new-domain", "newly-registered-domain", "online-scam", "pc-games", "personal-information-harvesting", "phishing", "phishing-infrastructure", "phishing-kit", "phishing-site", "platoboost", "redirect-chain", "redirection", "revanced-project", "roblox-impersonation", "roblox-users", "robux-scam", "scam", "scams", "shopee", "social-engineering", "social-proof-manipulation", "software-piracy", "steam", "suggestive-imagery", "sumup", "task-based-scam", "task-scam", "traffic-redirection", "twitter-impersonation", "typosquatting", "unauthorized-software", "unauthorized-streaming", "unwanted-programs", "unwanted-software", "url-obfuscation", "url-redirection", "urlert", "verify-your-connection-scam", "victus", "warez-site", "wixsite-abuse", "young-domain", "youtube-impersonation" ], "references": [ "https://urlert.com/domain/355287.com", "https://urlert.com/domain/bunnyband.com", "https://urlert.com/domain/clc.cx", "https://urlert.com/domain/confirm-details.report", "https://urlert.com/domain/cwgobal.net", "https://urlert.com/domain/dipherex.com", "https://urlert.com/domain/dratrans.com", "https://urlert.com/domain/easycash777.com", "https://urlert.com/domain/forms.gle", "https://urlert.com/domain/giveawaybot.cc", "https://urlert.com/domain/hkjhsuies.com.es", "https://urlert.com/domain/hornygiirl.com", "https://urlert.com/domain/localsexapp.com", "https://urlert.com/domain/meusitehostgator.com.br", "https://urlert.com/domain/netlify.app", "https://urlert.com/domain/netmirror.cc", "https://urlert.com/domain/nowplaytoc.com", "https://urlert.com/domain/ovagames.com", "https://urlert.com/domain/platorelay.com", "https://urlert.com/domain/premiumcartoons.cc" ], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [], "industries": [ "Financial Services", "Government", "Logistics / Supply Chain", "Media / Entertainment", "Retail / E-Commerce", "Technology" ], "TLP": "white", "cloned_from": null, "export_count": 0, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "api", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "urlert_intel", "id": "386175", "avatar_url": "/otxapi/users/avatar_image/media/avatars/user_386175/resized/80/avatar_3b9c358f36.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "domain": 23, "URL": 26, "hostname": 8 }, "indicator_count": 57, "is_author": false, "is_subscribing": null, "subscriber_count": 31, "modified_text": "5 days ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": false, "threat_hunter_has_agents": 1, "related_indicator_type": "URL", "related_indicator_is_active": 1 }, { "id": "69f69e3087bd9b0ad31be9ce", "name": "URLert Daily Threat Intel \u2014 2026-05-03", "description": "URLert Daily Threat Intel \u2014 2026-05-03\n\nAutomated threat intelligence from URLert (https://urlert.com) \u2014 AI-powered URL and domain analysis.\n\nThreats: 42 | Indicators: 87\nConfirmed: 10 | Likely: 32\nTop threats: Phishing (34), Malvertising (5), Malware Hosting (3)\nDomains: adagio.tw, asarcoamericansmeltingandrefitnxningcompany.vu, brcok.com, bunnyband.com, clicksswitch.com, ctermalls.com, due-paizq.com, fi1gqzft.sbs, fitgirl-repacks.site, github.io, giveaway...\n\n42 unique threats producing 87 actionable indicators. Generated by URLert automated threat intelligence.", "modified": "2026-05-03T01:00:32.132000", "created": "2026-05-03T01:00:32.132000", "tags": [ "access-denied-tactic", "adult-content", "adult-scam", "asarco", "asset-harvesting", "automated-scan", "brand-impersonation", "browser-locking-script", "clickbait-scam", "coca-cola", "commission-scam", "credential-harvesting", "crypto-scam", "cryptocurrency-scam", "daily-threat-intel", "deceptive-content", "deceptive-domain", "deceptive-platform", "deceptive-redirects", "deceptive-scam", "deceptive-websites", "delivery-scam", "discord-phishing", "dpd-impersonation", "ecommerce-impersonation", "ecommerce-scam", "evasion-technique", "fake-ai-persona", "fake-earning-scheme", "fake-giveaway", "fake-rewards", "fake-shop", "fake-survey", "financial-fraud", "financial-scam", "financial-transactions", "fraudulent-registration", "fraudulent-website", "gambling-platform", "gambling-scam", "gaming", "get-rich-quick-scheme", "government-impersonation", "government-targeting", "hidden-malware", "high-risk-tld", "icbc-impersonation", "information-harvesting", "investment-scam", "invite-code", "kuiu", "lidl", "lightshot-impersonation", "liquidity-provider-scam", "logistics-sector", "malicious-ads", "malicious-redirect", "malicious-site", "malicious-traffic-hub", "malvertising", "malware-distribution", "malware-hosting", "new-domain", "newly-registered-domain", "online-gambling", "payment-information-harvesting", "payment-scam", "pennsylvania-department-of-transportation", "personal-information-harvesting", "phishing", "random-domain", "redirect-chain", "redirect-service", "redirection-chain", "referral-scheme", "registration-scam", "retail-e-commerce", "riskware", "roblox", "roblox-impersonation", "roblox-scam", "scam", "scam-attempt", "scam-network", "social-engineering", "software-piracy", "spoofed-domain", "suspicious-domain", "task-based-earning-scam", "task-based-scam", "task-scam", "texas-dmv", "toll-scam", "traffic-obfuscation", "traffic-redirection", "typosquatting", "urlert", "user-manipulation", "vip-scheme" ], "references": [ "https://urlert.com/domain/adagio.tw", "https://urlert.com/domain/asarcoamericansmeltingandrefitnxningcompany.vu", "https://urlert.com/domain/brcok.com", "https://urlert.com/domain/bunnyband.com", "https://urlert.com/domain/clicksswitch.com", "https://urlert.com/domain/ctermalls.com", "https://urlert.com/domain/due-paizq.com", "https://urlert.com/domain/fi1gqzft.sbs", "https://urlert.com/domain/fitgirl-repacks.site", "https://urlert.com/domain/github.io", "https://urlert.com/domain/giveawaybot.cc", "https://urlert.com/domain/gov-urffs.help", "https://urlert.com/domain/gtoweriien.cfd", "https://urlert.com/domain/heizoaw3.com", "https://urlert.com/domain/httpss-www-roblox.co", "https://urlert.com/domain/icbcke.help", "https://urlert.com/domain/kindearnings.com", "https://urlert.com/domain/kksapp.org", "https://urlert.com/domain/kuiu-outletsb.shop", "https://urlert.com/domain/l19.pics" ], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [], "industries": [ "Financial Services", "Government", "Insurance", "Logistics / Supply Chain", "Manufacturing", "Media / Entertainment", "Retail / E-Commerce" ], "TLP": "white", "cloned_from": null, "export_count": 1, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "api", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "urlert_intel", "id": "386175", "avatar_url": "/otxapi/users/avatar_image/media/avatars/user_386175/resized/80/avatar_3b9c358f36.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "domain": 30, "hostname": 18, "URL": 39 }, "indicator_count": 87, "is_author": false, "is_subscribing": null, "subscriber_count": 30, "modified_text": "29 days ago ", "is_modified": false, "groups": [], "in_group": false, "threat_hunter_scannable": false, "threat_hunter_has_agents": 1, "related_indicator_type": "URL", "related_indicator_is_active": 1 } ], "references": [ "https://urlert.com/domain/carziqo.net", "https://urlert.com/domain/adagio.tw", "https://urlert.com/domain/fi1gqzft.sbs", "https://urlert.com/domain/id62531.help", "https://urlert.com/domain/cwgobal.net", "https://urlert.com/domain/meusitehostgator.com.br", "https://urlert.com/domain/premiumcartoons.cc", "https://urlert.com/domain/gov-urffs.help", "https://urlert.com/domain/bookitil.com", "https://urlert.com/domain/dipherex.com", "https://urlert.com/domain/crdpro.at", "https://urlert.com/domain/bunnyband.com", "https://urlert.com/domain/erivonali.cfd", "https://urlert.com/domain/easycash777.com", "https://urlert.com/domain/confirm-details.report", "https://urlert.com/domain/dratrans.com", "https://urlert.com/domain/kksapp.org", "https://urlert.com/domain/dfyneyogasale-eu.top", "https://urlert.com/domain/mxiaril.com", "https://urlert.com/domain/ovagames.com", "https://urlert.com/domain/mykioskworld.com", "https://urlert.com/domain/brcok.com", "https://urlert.com/domain/httpss-www-roblox.co", "https://urlert.com/domain/cisco.com", "https://urlert.com/domain/kindearnings.com", "https://urlert.com/domain/platorelay.com", "https://urlert.com/domain/ctermalls.com", "https://urlert.com/domain/github.io", "https://urlert.com/domain/glamourpicklessteward.com", "https://urlert.com/domain/netmirror.cc", "https://urlert.com/domain/2contact.com", "https://urlert.com/domain/hornygiirl.com", "https://urlert.com/domain/kuiu-outletsb.shop", "https://urlert.com/domain/l19.pics", "https://urlert.com/domain/due-paizq.com", "https://urlert.com/domain/forms.gle", "https://urlert.com/domain/localsexapp.com", "https://urlert.com/domain/ct.ws", "https://urlert.com/domain/netlify.app", "https://urlert.com/domain/icbcke.help", "https://urlert.com/domain/597971.com", "https://urlert.com/domain/giveawaybot.cc", "https://urlert.com/domain/ag4.top", "https://urlert.com/domain/lendli.org", "https://urlert.com/domain/mnasst.me", "https://urlert.com/domain/asarcoamericansmeltingandrefitnxningcompany.vu", "https://urlert.com/domain/clicksswitch.com", "https://urlert.com/domain/355287.com", "https://urlert.com/domain/gtoweriien.cfd", "https://urlert.com/domain/clc.cx", "https://urlert.com/domain/hkjhsuies.com.es", "https://urlert.com/domain/heizoaw3.com", "https://urlert.com/domain/guiasdevideojuegos.top", "https://urlert.com/domain/nowplaytoc.com", "https://urlert.com/domain/dpd-ie-f.top", "https://urlert.com/domain/fitgirl-repacks.site", "https://urlert.com/domain/ca-streets-transportation.cfd" ], "related": { "alienvault": { "adversary": [], "malware_families": [], "industries": [], "unique_indicators": 0 }, "other": { "adversary": [], "malware_families": [], "industries": [ "Retail / e-commerce", "Manufacturing", "Financial services", "Logistics / supply chain", "Insurance", "Hospitality", "Media / entertainment", "Government", "Technology" ], "unique_indicators": 242 } } }, "false_positive": [], "alexa": "http://www.alexa.com/siteinfo/giveawaybot.cc", "whois": "http://whois.domaintools.com/giveawaybot.cc", "domain": "giveawaybot.cc", "hostname": "Unavailable" }, "geo": {}, "geo_ipapicom": {}, "pulse_count": 3, "pulses": [ { "id": "69f15844d001e7755ae520a1", "name": "URLert Daily Threat Intel \u2014 2026-04-29", "description": "URLert Daily Threat Intel \u2014 2026-04-29\n\nAutomated threat intelligence from URLert (https://urlert.com) \u2014 AI-powered URL and domain analysis.\n\nThreats: 51 | Indicators: 97\nConfirmed: 12 | Likely: 39\nTop threats: Phishing (39), Malvertising (4), Unknown (3), Dropper (3), Exploit Kit (1)\nDomains: 2contact.com, 597971.com, ag4.top, bookitil.com, ca-streets-transportation.cfd, carziqo.net, cisco.com, crdpro.at, ct.ws, dfyneyogasale-eu.top, dpd-ie-f.top, erivonali.cfd, giveawaybot.cc,...\n\n51 unique threats producing 97 actionable indicators. Generated by URLert automated threat intelligence.", "modified": "2026-05-29T01:47:17.327000", "created": "2026-04-29T01:00:52.556000", "tags": [ "adware", "android-malware", "automated-scan", "automatic-download", "azure-storage", "brand-impersonation", "browser-exploit-precursor", "carding-forum", "city-of-vancouver", "compromised-site", "counterfeit-software", "cpanel-impersonation", "credential-harvesting", "credit-card-fraud", "cryptocurrency-scam", "daily-threat-intel", "darknet-markets", "data-privacy-risk", "deceptive-advertising", "deceptive-content", "deceptive-domain", "deceptive-login", "deceptive-practices", "deceptive-site", "deepweb-access", "delivery-exception-scam", "delivery-scam", "dpd-impersonation", "dropper", "evasion", "evasion-tactic", "evasion-technique", "executable-download", "faceit", "fake-financial-service", "fake-giveaway", "fake-income-scheme", "fake-login-portal", "fake-prize", "financial-fraud", "financial-information-theft", "free-hosting", "game-lures", "gaming-lure", "gaming-rewards", "gift-card-scam", "google-drive-impersonation", "government-impersonation", "grayware", "high-risk", "highway-6-impersonation", "hyatt-impersonation", "illegal-goods-directory", "imdb-impersonation", "information-harvesting", "information-stealing", "intrusive-ads", "investment-scam", "localhost-redirection", "logistics-sector", "low-reputation", "malicious-infrastructure", "malicious-redirect", "malicious-redirection", "malvertising", "malware-distribution", "marktplaats", "mastercard-impersonation", "mexico", "microsoft-onedrive-impersonation", "mystery-reward-scam", "new-domain", "newly-registered-domain", "offer-wall", "onion-links", "payment-fraud", "payment-phishing", "paypal", "personal-information-harvesting", "phishing", "phishing-campaign", "phishing-site", "ponzi-scheme", "porn-spam", "recently-registered-domain", "redirect-chain", "redirect-evasion", "redirect-to-google", "replit-hosting", "roblox", "roblox-impersonation", "robux-scam", "sat-impersonation", "scam", "scam-site", "social-engineering", "steam", "stolen-credit-cards", "streaming-scam", "suspicious-domain", "suspicious-domain-extension", "suspicious-login-page", "telegram-bot-exfiltration", "traffic-distribution-system", "traffic-redirection", "typosquatting", "unwanted-software", "url-shortener", "urlert", "vanced-app", "vgen-impersonation", "vulnerability-probing", "young-domain", "youtube-spam" ], "references": [ "https://urlert.com/domain/2contact.com", "https://urlert.com/domain/597971.com", "https://urlert.com/domain/ag4.top", "https://urlert.com/domain/bookitil.com", "https://urlert.com/domain/ca-streets-transportation.cfd", "https://urlert.com/domain/carziqo.net", "https://urlert.com/domain/cisco.com", "https://urlert.com/domain/crdpro.at", "https://urlert.com/domain/ct.ws", "https://urlert.com/domain/dfyneyogasale-eu.top", "https://urlert.com/domain/dpd-ie-f.top", "https://urlert.com/domain/erivonali.cfd", "https://urlert.com/domain/giveawaybot.cc", "https://urlert.com/domain/glamourpicklessteward.com", "https://urlert.com/domain/guiasdevideojuegos.top", "https://urlert.com/domain/id62531.help", "https://urlert.com/domain/lendli.org", "https://urlert.com/domain/mnasst.me", "https://urlert.com/domain/mxiaril.com", "https://urlert.com/domain/mykioskworld.com" ], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [], "industries": [ "Financial Services", "Government", "Hospitality", "Logistics / Supply Chain", "Media / Entertainment", "Retail / E-Commerce" ], "TLP": "white", "cloned_from": null, "export_count": 0, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "api", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "urlert_intel", "id": "386175", "avatar_url": "/otxapi/users/avatar_image/media/avatars/user_386175/resized/80/avatar_3b9c358f36.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "domain": 28, "URL": 28, "hostname": 13 }, "indicator_count": 69, "is_author": false, "is_subscribing": null, "subscriber_count": 31, "modified_text": "3 days ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": false, "threat_hunter_has_agents": 1, "related_indicator_type": "URL", "related_indicator_is_active": 1 }, { "id": "69eeb5306d5f58c6044105cc", "name": "URLert Daily Threat Intel \u2014 2026-04-27", "description": "URLert Daily Threat Intel \u2014 2026-04-27\n\nAutomated threat intelligence from URLert (https://urlert.com) \u2014 AI-powered URL and domain analysis.\n\nThreats: 40 | Indicators: 78\nConfirmed: 9 | Likely: 31\nTop threats: Phishing (33), Malware Hosting (3), Dropper (3), Malvertising (1)\nDomains: 355287.com, bunnyband.com, clc.cx, confirm-details.report, cwgobal.net, dipherex.com, dratrans.com, easycash777.com, forms.gle, giveawaybot.cc, hkjhsuies.com.es, hornygiirl.com, localsexap...\n\n40 unique threats producing 78 actionable indicators. Generated by URLert automated threat intelligence.", "modified": "2026-05-26T20:17:24.825000", "created": "2026-04-27T01:00:32.645000", "tags": [ "account-takeover", "anti-analysis", "app-install-malware", "auto-generated-domain", "automated-scan", "betting", "bonus-scam", "brand-impersonation", "budbee-impersonation", "click-through-scam", "coreweave-impersonation", "counterfeit-software", "credential-harvesting", "daily-threat-intel", "dating-scam", "deceptive-bait", "deceptive-captcha", "deceptive-landing-page", "deceptive-marketing", "deceptive-redirect", "deceptive-scam", "deceptive-software", "dickies", "discord-impersonation", "disposable-domain", "ecommerce", "ecuador", "explicit-popups", "fake-financial-service", "fake-giveaway", "fake-login", "fake-online-store", "fake-products", "fake-social-proof", "fake-testimonials", "financial-fraud", "financial-scam", "financial-service-impersonation", "footwear-retail", "fraudulent-content", "fraudulent-services", "free-games-lure", "gambling", "gambling-scam", "gambling-site", "gaming-impersonation", "google-forms", "high-risk-domain", "high-risk-tld", "identity-service-impersonation", "investment-scam", "loan-scam", "malicious-android-app", "malicious-redirect", "malvertising", "malware-delivery", "malware-distribution", "malware-risk", "new-domain", "newly-registered-domain", "online-scam", "pc-games", "personal-information-harvesting", "phishing", "phishing-infrastructure", "phishing-kit", "phishing-site", "platoboost", "redirect-chain", "redirection", "revanced-project", "roblox-impersonation", "roblox-users", "robux-scam", "scam", "scams", "shopee", "social-engineering", "social-proof-manipulation", "software-piracy", "steam", "suggestive-imagery", "sumup", "task-based-scam", "task-scam", "traffic-redirection", "twitter-impersonation", "typosquatting", "unauthorized-software", "unauthorized-streaming", "unwanted-programs", "unwanted-software", "url-obfuscation", "url-redirection", "urlert", "verify-your-connection-scam", "victus", "warez-site", "wixsite-abuse", "young-domain", "youtube-impersonation" ], "references": [ "https://urlert.com/domain/355287.com", "https://urlert.com/domain/bunnyband.com", "https://urlert.com/domain/clc.cx", "https://urlert.com/domain/confirm-details.report", "https://urlert.com/domain/cwgobal.net", "https://urlert.com/domain/dipherex.com", "https://urlert.com/domain/dratrans.com", "https://urlert.com/domain/easycash777.com", "https://urlert.com/domain/forms.gle", "https://urlert.com/domain/giveawaybot.cc", "https://urlert.com/domain/hkjhsuies.com.es", "https://urlert.com/domain/hornygiirl.com", "https://urlert.com/domain/localsexapp.com", "https://urlert.com/domain/meusitehostgator.com.br", "https://urlert.com/domain/netlify.app", "https://urlert.com/domain/netmirror.cc", "https://urlert.com/domain/nowplaytoc.com", "https://urlert.com/domain/ovagames.com", "https://urlert.com/domain/platorelay.com", "https://urlert.com/domain/premiumcartoons.cc" ], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [], "industries": [ "Financial Services", "Government", "Logistics / Supply Chain", "Media / Entertainment", "Retail / E-Commerce", "Technology" ], "TLP": "white", "cloned_from": null, "export_count": 0, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "api", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "urlert_intel", "id": "386175", "avatar_url": "/otxapi/users/avatar_image/media/avatars/user_386175/resized/80/avatar_3b9c358f36.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "domain": 23, "URL": 26, "hostname": 8 }, "indicator_count": 57, "is_author": false, "is_subscribing": null, "subscriber_count": 31, "modified_text": "5 days ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": false, "threat_hunter_has_agents": 1, "related_indicator_type": "URL", "related_indicator_is_active": 1 }, { "id": "69f69e3087bd9b0ad31be9ce", "name": "URLert Daily Threat Intel \u2014 2026-05-03", "description": "URLert Daily Threat Intel \u2014 2026-05-03\n\nAutomated threat intelligence from URLert (https://urlert.com) \u2014 AI-powered URL and domain analysis.\n\nThreats: 42 | Indicators: 87\nConfirmed: 10 | Likely: 32\nTop threats: Phishing (34), Malvertising (5), Malware Hosting (3)\nDomains: adagio.tw, asarcoamericansmeltingandrefitnxningcompany.vu, brcok.com, bunnyband.com, clicksswitch.com, ctermalls.com, due-paizq.com, fi1gqzft.sbs, fitgirl-repacks.site, github.io, giveaway...\n\n42 unique threats producing 87 actionable indicators. Generated by URLert automated threat intelligence.", "modified": "2026-05-03T01:00:32.132000", "created": "2026-05-03T01:00:32.132000", "tags": [ "access-denied-tactic", "adult-content", "adult-scam", "asarco", "asset-harvesting", "automated-scan", "brand-impersonation", "browser-locking-script", "clickbait-scam", "coca-cola", "commission-scam", "credential-harvesting", "crypto-scam", "cryptocurrency-scam", "daily-threat-intel", "deceptive-content", "deceptive-domain", "deceptive-platform", "deceptive-redirects", "deceptive-scam", "deceptive-websites", "delivery-scam", "discord-phishing", "dpd-impersonation", "ecommerce-impersonation", "ecommerce-scam", "evasion-technique", "fake-ai-persona", "fake-earning-scheme", "fake-giveaway", "fake-rewards", "fake-shop", "fake-survey", "financial-fraud", "financial-scam", "financial-transactions", "fraudulent-registration", "fraudulent-website", "gambling-platform", "gambling-scam", "gaming", "get-rich-quick-scheme", "government-impersonation", "government-targeting", "hidden-malware", "high-risk-tld", "icbc-impersonation", "information-harvesting", "investment-scam", "invite-code", "kuiu", "lidl", "lightshot-impersonation", "liquidity-provider-scam", "logistics-sector", "malicious-ads", "malicious-redirect", "malicious-site", "malicious-traffic-hub", "malvertising", "malware-distribution", "malware-hosting", "new-domain", "newly-registered-domain", "online-gambling", "payment-information-harvesting", "payment-scam", "pennsylvania-department-of-transportation", "personal-information-harvesting", "phishing", "random-domain", "redirect-chain", "redirect-service", "redirection-chain", "referral-scheme", "registration-scam", "retail-e-commerce", "riskware", "roblox", "roblox-impersonation", "roblox-scam", "scam", "scam-attempt", "scam-network", "social-engineering", "software-piracy", "spoofed-domain", "suspicious-domain", "task-based-earning-scam", "task-based-scam", "task-scam", "texas-dmv", "toll-scam", "traffic-obfuscation", "traffic-redirection", "typosquatting", "urlert", "user-manipulation", "vip-scheme" ], "references": [ "https://urlert.com/domain/adagio.tw", "https://urlert.com/domain/asarcoamericansmeltingandrefitnxningcompany.vu", "https://urlert.com/domain/brcok.com", "https://urlert.com/domain/bunnyband.com", "https://urlert.com/domain/clicksswitch.com", "https://urlert.com/domain/ctermalls.com", "https://urlert.com/domain/due-paizq.com", "https://urlert.com/domain/fi1gqzft.sbs", "https://urlert.com/domain/fitgirl-repacks.site", "https://urlert.com/domain/github.io", "https://urlert.com/domain/giveawaybot.cc", "https://urlert.com/domain/gov-urffs.help", "https://urlert.com/domain/gtoweriien.cfd", "https://urlert.com/domain/heizoaw3.com", "https://urlert.com/domain/httpss-www-roblox.co", "https://urlert.com/domain/icbcke.help", "https://urlert.com/domain/kindearnings.com", "https://urlert.com/domain/kksapp.org", "https://urlert.com/domain/kuiu-outletsb.shop", "https://urlert.com/domain/l19.pics" ], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [], "industries": [ "Financial Services", "Government", "Insurance", "Logistics / Supply Chain", "Manufacturing", "Media / Entertainment", "Retail / E-Commerce" ], "TLP": "white", "cloned_from": null, "export_count": 1, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "api", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "urlert_intel", "id": "386175", "avatar_url": "/otxapi/users/avatar_image/media/avatars/user_386175/resized/80/avatar_3b9c358f36.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "domain": 30, "hostname": 18, "URL": 39 }, "indicator_count": 87, "is_author": false, "is_subscribing": null, "subscriber_count": 30, "modified_text": "29 days ago ", "is_modified": false, "groups": [], "in_group": false, "threat_hunter_scannable": false, "threat_hunter_has_agents": 1, "related_indicator_type": "URL", "related_indicator_is_active": 1 } ], "error": null, "vt": { "error": "VirusTotal rate limit reached. Try again shortly.", "indicator": "https://giveawaybot.cc/redeem/code.5000robux.93Gn29xSIf", "type": "URL" }, "abuseipdb": null, "urlhaus": { "indicator": "https://giveawaybot.cc/redeem/code.5000robux.93Gn29xSIf", "type": "URL", "found": false, "verdict": "clean", "error": null }, "from_cache": true, "_cached_at": 1780284220.7224348 }