{ "type": "URL", "indicator": "https://griffineduvent.com.my", "general": { "sections": [ "general", "url_list", "http_scans", "screenshot" ], "indicator": "https://griffineduvent.com.my", "type": "url", "type_title": "URL", "validation": [], "base_indicator": { "id": 4392763783, "indicator": "https://griffineduvent.com.my", "type": "URL", "title": "", "description": "", "content": "", "access_type": "public", "access_reason": "" }, "pulse_info": { "count": 4, "pulses": [ { "id": "6a208ee260576b2283de3fba", "name": "ndjssjedjkms CAPE Sandbox", "description": "[The full text of the RDAP registration process has been published by the Department of Public Communications (DPSC) in the Czech Republic, as well as the name of its own site]", "modified": "2026-06-03T21:26:20.837000", "created": "2026-06-03T20:30:26.050000", "tags": [ "ascii text", "handle", "rdap database", "iana registrar", "links", "ip address", "status code", "body length", "kb body", "sha256", "mit alumni", "article og", "conference og", "drupal", "mobileoptimized", "utc google", "tag manager", "gtmtmd98t", "utc aw992472444", "utc na", "utc gx3tne87ypk", "utc new", "relic na", "utc facebook", "custom audience", "externalnet", "homenet", "mtu denial", "5762", "et info", "observed google", "https domain", "tls sni", "clientendpoint", "perimeter", "high", "informational", "suricata http", "download meta", "tags twitter", "time", "wordpress", "lostlife", "bqjw6pjcg", "script tags", "v3 serial", "number", "cus olet", "encrypt cnyr2", "validity", "subject public", "key info", "key algorithm", "key identifier", "subject key" ], "references": [], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [ { "id": "T1102", "name": "Web Service", "display_name": "T1102 - Web Service" }, { "id": "T1036", "name": "Masquerading", "display_name": "T1036 - Masquerading" }, { "id": "T1046", "name": "Network Service Scanning", "display_name": "T1046 - Network Service Scanning" }, { "id": "T1055", "name": "Process Injection", "display_name": "T1055 - Process Injection" }, { "id": "T1057", "name": "Process Discovery", "display_name": "T1057 - Process Discovery" }, { "id": "T1071", "name": "Application Layer Protocol", "display_name": "T1071 - Application Layer Protocol" }, { "id": "T1082", "name": "System Information Discovery", "display_name": "T1082 - System Information Discovery" }, { "id": "T1083", "name": "File and Directory Discovery", "display_name": "T1083 - File and Directory Discovery" }, { "id": "T1095", "name": "Non-Application Layer Protocol", "display_name": "T1095 - Non-Application Layer Protocol" }, { "id": "T1105", "name": "Ingress Tool Transfer", "display_name": "T1105 - Ingress Tool Transfer" }, { "id": "T1566", "name": "Phishing", "display_name": "T1566 - Phishing" }, { "id": "T1573", "name": "Encrypted Channel", "display_name": "T1573 - Encrypted Channel" }, { "id": "T1056", "name": "Input Capture", "display_name": "T1056 - Input Capture" }, { "id": "T1140", "name": "Deobfuscate/Decode Files or Information", "display_name": "T1140 - Deobfuscate/Decode Files or Information" } ], "industries": [], "TLP": "green", "cloned_from": null, "export_count": 0, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "msudosos", "id": "381696", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "FileHash-SHA1": 94, "FileHash-MD5": 171, "FileHash-SHA256": 255, "IPv4": 139, "URL": 706, "domain": 243, "hostname": 269 }, "indicator_count": 1877, "is_author": false, "is_subscribing": null, "subscriber_count": 67, "modified_text": "5 hours ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "URL", "related_indicator_is_active": 1 }, { "id": "6a208ee7c49474f0c698d95e", "name": "ndjssjedjkms CAPE Sandbox", "description": "[The full text of the RDAP registration process has been published by the Department of Public Communications (DPSC) in the Czech Republic, as well as the name of its own site]", "modified": "2026-06-03T21:26:20.045000", "created": "2026-06-03T20:30:31.834000", "tags": [ "ascii text", "handle", "rdap database", "iana registrar", "links", "ip address", "status code", "body length", "kb body", "sha256", "mit alumni", "article og", "conference og", "drupal", "mobileoptimized", "utc google", "tag manager", "gtmtmd98t", "utc aw992472444", "utc na", "utc gx3tne87ypk", "utc new", "relic na", "utc facebook", "custom audience", "externalnet", "homenet", "mtu denial", "5762", "et info", "observed google", "https domain", "tls sni", "clientendpoint", "perimeter", "high", "informational", "suricata http", "download meta", "tags twitter", "time", "wordpress", "lostlife", "bqjw6pjcg", "script tags", "v3 serial", "number", "cus olet", "encrypt cnyr2", "validity", "subject public", "key info", "key algorithm", "key identifier", "subject key" ], "references": [], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [ { "id": "T1102", "name": "Web Service", "display_name": "T1102 - Web Service" }, { "id": "T1036", "name": "Masquerading", "display_name": "T1036 - Masquerading" }, { "id": "T1046", "name": "Network Service Scanning", "display_name": "T1046 - Network Service Scanning" }, { "id": "T1055", "name": "Process Injection", "display_name": "T1055 - Process Injection" }, { "id": "T1057", "name": "Process Discovery", "display_name": "T1057 - Process Discovery" }, { "id": "T1071", "name": "Application Layer Protocol", "display_name": "T1071 - Application Layer Protocol" }, { "id": "T1082", "name": "System Information Discovery", "display_name": "T1082 - System Information Discovery" }, { "id": "T1083", "name": "File and Directory Discovery", "display_name": "T1083 - File and Directory Discovery" }, { "id": "T1095", "name": "Non-Application Layer Protocol", "display_name": "T1095 - Non-Application Layer Protocol" }, { "id": "T1105", "name": "Ingress Tool Transfer", "display_name": "T1105 - Ingress Tool Transfer" }, { "id": "T1566", "name": "Phishing", "display_name": "T1566 - Phishing" }, { "id": "T1573", "name": "Encrypted Channel", "display_name": "T1573 - Encrypted Channel" }, { "id": "T1056", "name": "Input Capture", "display_name": "T1056 - Input Capture" }, { "id": "T1140", "name": "Deobfuscate/Decode Files or Information", "display_name": "T1140 - Deobfuscate/Decode Files or Information" } ], "industries": [], "TLP": "green", "cloned_from": null, "export_count": 0, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "msudosos", "id": "381696", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "FileHash-SHA1": 94, "FileHash-MD5": 171, "FileHash-SHA256": 255, "IPv4": 139, "URL": 706, "domain": 243, "hostname": 269 }, "indicator_count": 1877, "is_author": false, "is_subscribing": null, "subscriber_count": 67, "modified_text": "5 hours ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "URL", "related_indicator_is_active": 1 }, { "id": "6a208ef1e2a30ec2c882ff84", "name": "ndjssjedjkms CAPE Sandbox", "description": "[The full text of the RDAP registration process has been published by the Department of Public Communications (DPSC) in the Czech Republic, as well as the name of its own site]", "modified": "2026-06-03T21:26:19.407000", "created": "2026-06-03T20:30:40.975000", "tags": [ "ascii text", "handle", "rdap database", "iana registrar", "links", "ip address", "status code", "body length", "kb body", "sha256", "mit alumni", "article og", "conference og", "drupal", "mobileoptimized", "utc google", "tag manager", "gtmtmd98t", "utc aw992472444", "utc na", "utc gx3tne87ypk", "utc new", "relic na", "utc facebook", "custom audience", "externalnet", "homenet", "mtu denial", "5762", "et info", "observed google", "https domain", "tls sni", "clientendpoint", "perimeter", "high", "informational", "suricata http", "download meta", "tags twitter", "time", "wordpress", "lostlife", "bqjw6pjcg", "script tags", "v3 serial", "number", "cus olet", "encrypt cnyr2", "validity", "subject public", "key info", "key algorithm", "key identifier", "subject key" ], "references": [], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [ { "id": "T1102", "name": "Web Service", "display_name": "T1102 - Web Service" }, { "id": "T1036", "name": "Masquerading", "display_name": "T1036 - Masquerading" }, { "id": "T1046", "name": "Network Service Scanning", "display_name": "T1046 - Network Service Scanning" }, { "id": "T1055", "name": "Process Injection", "display_name": "T1055 - Process Injection" }, { "id": "T1057", "name": "Process Discovery", "display_name": "T1057 - Process Discovery" }, { "id": "T1071", "name": "Application Layer Protocol", "display_name": "T1071 - Application Layer Protocol" }, { "id": "T1082", "name": "System Information Discovery", "display_name": "T1082 - System Information Discovery" }, { "id": "T1083", "name": "File and Directory Discovery", "display_name": "T1083 - File and Directory Discovery" }, { "id": "T1095", "name": "Non-Application Layer Protocol", "display_name": "T1095 - Non-Application Layer Protocol" }, { "id": "T1105", "name": "Ingress Tool Transfer", "display_name": "T1105 - Ingress Tool Transfer" }, { "id": "T1566", "name": "Phishing", "display_name": "T1566 - Phishing" }, { "id": "T1573", "name": "Encrypted Channel", "display_name": "T1573 - Encrypted Channel" }, { "id": "T1056", "name": "Input Capture", "display_name": "T1056 - Input Capture" }, { "id": "T1140", "name": "Deobfuscate/Decode Files or Information", "display_name": "T1140 - Deobfuscate/Decode Files or Information" } ], "industries": [], "TLP": "green", "cloned_from": null, "export_count": 0, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "msudosos", "id": "381696", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "FileHash-SHA1": 94, "FileHash-MD5": 171, "FileHash-SHA256": 255, "IPv4": 139, "URL": 707, "domain": 243, "hostname": 269 }, "indicator_count": 1878, "is_author": false, "is_subscribing": null, "subscriber_count": 67, "modified_text": "5 hours ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "URL", "related_indicator_is_active": 1 }, { "id": "6a208ef15eb4e43939249b07", "name": "ndjssjedjkms CAPE Sandbox", "description": "[The full text of the RDAP registration process has been published by the Department of Public Communications (DPSC) in the Czech Republic, as well as the name of its own site]", "modified": "2026-06-03T21:26:18.624000", "created": "2026-06-03T20:30:41.167000", "tags": [ "ascii text", "handle", "rdap database", "iana registrar", "links", "ip address", "status code", "body length", "kb body", "sha256", "mit alumni", "article og", "conference og", "drupal", "mobileoptimized", "utc google", "tag manager", "gtmtmd98t", "utc aw992472444", "utc na", "utc gx3tne87ypk", "utc new", "relic na", "utc facebook", "custom audience", "externalnet", "homenet", "mtu denial", "5762", "et info", "observed google", "https domain", "tls sni", "clientendpoint", "perimeter", "high", "informational", "suricata http", "download meta", "tags twitter", "time", "wordpress", "lostlife", "bqjw6pjcg", "script tags", "v3 serial", "number", "cus olet", "encrypt cnyr2", "validity", "subject public", "key info", "key algorithm", "key identifier", "subject key" ], "references": [], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [ { "id": "T1102", "name": "Web Service", "display_name": "T1102 - Web Service" }, { "id": "T1036", "name": "Masquerading", "display_name": "T1036 - Masquerading" }, { "id": "T1046", "name": "Network Service Scanning", "display_name": "T1046 - Network Service Scanning" }, { "id": "T1055", "name": "Process Injection", "display_name": "T1055 - Process Injection" }, { "id": "T1057", "name": "Process Discovery", "display_name": "T1057 - Process Discovery" }, { "id": "T1071", "name": "Application Layer Protocol", "display_name": "T1071 - Application Layer Protocol" }, { "id": "T1082", "name": "System Information Discovery", "display_name": "T1082 - System Information Discovery" }, { "id": "T1083", "name": "File and Directory Discovery", "display_name": "T1083 - File and Directory Discovery" }, { "id": "T1095", "name": "Non-Application Layer Protocol", "display_name": "T1095 - Non-Application Layer Protocol" }, { "id": "T1105", "name": "Ingress Tool Transfer", "display_name": "T1105 - Ingress Tool Transfer" }, { "id": "T1566", "name": "Phishing", "display_name": "T1566 - Phishing" }, { "id": "T1573", "name": "Encrypted Channel", "display_name": "T1573 - Encrypted Channel" }, { "id": "T1056", "name": "Input Capture", "display_name": "T1056 - Input Capture" }, { "id": "T1140", "name": "Deobfuscate/Decode Files or Information", "display_name": "T1140 - Deobfuscate/Decode Files or Information" } ], "industries": [], "TLP": "green", "cloned_from": null, "export_count": 0, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "msudosos", "id": "381696", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "FileHash-SHA1": 94, "FileHash-MD5": 171, "FileHash-SHA256": 255, "IPv4": 140, "URL": 707, "domain": 243, "hostname": 275 }, "indicator_count": 1885, "is_author": false, "is_subscribing": null, "subscriber_count": 67, "modified_text": "5 hours ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "URL", "related_indicator_is_active": 1 } ], "references": [], "related": { "alienvault": { "adversary": [], "malware_families": [], "industries": [], "unique_indicators": 0 }, "other": { "adversary": [], "malware_families": [], "industries": [], "unique_indicators": 1886 } } }, "false_positive": [], "alexa": "http://www.alexa.com/siteinfo/griffineduvent.com.my", "whois": "http://whois.domaintools.com/griffineduvent.com.my", "domain": "griffineduvent.com.my", "hostname": "Unavailable" }, "geo": {}, "geo_ipapicom": {}, "pulse_count": 4, "pulses": [ { "id": "6a208ee260576b2283de3fba", "name": "ndjssjedjkms CAPE Sandbox", "description": "[The full text of the RDAP registration process has been published by the Department of Public Communications (DPSC) in the Czech Republic, as well as the name of its own site]", "modified": "2026-06-03T21:26:20.837000", "created": "2026-06-03T20:30:26.050000", "tags": [ "ascii text", "handle", "rdap database", "iana registrar", "links", "ip address", "status code", "body length", "kb body", "sha256", "mit alumni", "article og", "conference og", "drupal", "mobileoptimized", "utc google", "tag manager", "gtmtmd98t", "utc aw992472444", "utc na", "utc gx3tne87ypk", "utc new", "relic na", "utc facebook", "custom audience", "externalnet", "homenet", "mtu denial", "5762", "et info", "observed google", "https domain", "tls sni", "clientendpoint", "perimeter", "high", "informational", "suricata http", "download meta", "tags twitter", "time", "wordpress", "lostlife", "bqjw6pjcg", "script tags", "v3 serial", "number", "cus olet", "encrypt cnyr2", "validity", "subject public", "key info", "key algorithm", "key identifier", "subject key" ], "references": [], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [ { "id": "T1102", "name": "Web Service", "display_name": "T1102 - Web Service" }, { "id": "T1036", "name": "Masquerading", "display_name": "T1036 - Masquerading" }, { "id": "T1046", "name": "Network Service Scanning", "display_name": "T1046 - Network Service Scanning" }, { "id": "T1055", "name": "Process Injection", "display_name": "T1055 - Process Injection" }, { "id": "T1057", "name": "Process Discovery", "display_name": "T1057 - Process Discovery" }, { "id": "T1071", "name": "Application Layer Protocol", "display_name": "T1071 - Application Layer Protocol" }, { "id": "T1082", "name": "System Information Discovery", "display_name": "T1082 - System Information Discovery" }, { "id": "T1083", "name": "File and Directory Discovery", "display_name": "T1083 - File and Directory Discovery" }, { "id": "T1095", "name": "Non-Application Layer Protocol", "display_name": "T1095 - Non-Application Layer Protocol" }, { "id": "T1105", "name": "Ingress Tool Transfer", "display_name": "T1105 - Ingress Tool Transfer" }, { "id": "T1566", "name": "Phishing", "display_name": "T1566 - Phishing" }, { "id": "T1573", "name": "Encrypted Channel", "display_name": "T1573 - Encrypted Channel" }, { "id": "T1056", "name": "Input Capture", "display_name": "T1056 - Input Capture" }, { "id": "T1140", "name": "Deobfuscate/Decode Files or Information", "display_name": "T1140 - Deobfuscate/Decode Files or Information" } ], "industries": [], "TLP": "green", "cloned_from": null, "export_count": 0, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "msudosos", "id": "381696", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "FileHash-SHA1": 94, "FileHash-MD5": 171, "FileHash-SHA256": 255, "IPv4": 139, "URL": 706, "domain": 243, "hostname": 269 }, "indicator_count": 1877, "is_author": false, "is_subscribing": null, "subscriber_count": 67, "modified_text": "5 hours ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "URL", "related_indicator_is_active": 1 }, { "id": "6a208ee7c49474f0c698d95e", "name": "ndjssjedjkms CAPE Sandbox", "description": "[The full text of the RDAP registration process has been published by the Department of Public Communications (DPSC) in the Czech Republic, as well as the name of its own site]", "modified": "2026-06-03T21:26:20.045000", "created": "2026-06-03T20:30:31.834000", "tags": [ "ascii text", "handle", "rdap database", "iana registrar", "links", "ip address", "status code", "body length", "kb body", "sha256", "mit alumni", "article og", "conference og", "drupal", "mobileoptimized", "utc google", "tag manager", "gtmtmd98t", "utc aw992472444", "utc na", "utc gx3tne87ypk", "utc new", "relic na", "utc facebook", "custom audience", "externalnet", "homenet", "mtu denial", "5762", "et info", "observed google", "https domain", "tls sni", "clientendpoint", "perimeter", "high", "informational", "suricata http", "download meta", "tags twitter", "time", "wordpress", "lostlife", "bqjw6pjcg", "script tags", "v3 serial", "number", "cus olet", "encrypt cnyr2", "validity", "subject public", "key info", "key algorithm", "key identifier", "subject key" ], "references": [], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [ { "id": "T1102", "name": "Web Service", "display_name": "T1102 - Web Service" }, { "id": "T1036", "name": "Masquerading", "display_name": "T1036 - Masquerading" }, { "id": "T1046", "name": "Network Service Scanning", "display_name": "T1046 - Network Service Scanning" }, { "id": "T1055", "name": "Process Injection", "display_name": "T1055 - Process Injection" }, { "id": "T1057", "name": "Process Discovery", "display_name": "T1057 - Process Discovery" }, { "id": "T1071", "name": "Application Layer Protocol", "display_name": "T1071 - Application Layer Protocol" }, { "id": "T1082", "name": "System Information Discovery", "display_name": "T1082 - System Information Discovery" }, { "id": "T1083", "name": "File and Directory Discovery", "display_name": "T1083 - File and Directory Discovery" }, { "id": "T1095", "name": "Non-Application Layer Protocol", "display_name": "T1095 - Non-Application Layer Protocol" }, { "id": "T1105", "name": "Ingress Tool Transfer", "display_name": "T1105 - Ingress Tool Transfer" }, { "id": "T1566", "name": "Phishing", "display_name": "T1566 - Phishing" }, { "id": "T1573", "name": "Encrypted Channel", "display_name": "T1573 - Encrypted Channel" }, { "id": "T1056", "name": "Input Capture", "display_name": "T1056 - Input Capture" }, { "id": "T1140", "name": "Deobfuscate/Decode Files or Information", "display_name": "T1140 - Deobfuscate/Decode Files or Information" } ], "industries": [], "TLP": "green", "cloned_from": null, "export_count": 0, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "msudosos", "id": "381696", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "FileHash-SHA1": 94, "FileHash-MD5": 171, "FileHash-SHA256": 255, "IPv4": 139, "URL": 706, "domain": 243, "hostname": 269 }, "indicator_count": 1877, "is_author": false, "is_subscribing": null, "subscriber_count": 67, "modified_text": "5 hours ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "URL", "related_indicator_is_active": 1 }, { "id": "6a208ef1e2a30ec2c882ff84", "name": "ndjssjedjkms CAPE Sandbox", "description": "[The full text of the RDAP registration process has been published by the Department of Public Communications (DPSC) in the Czech Republic, as well as the name of its own site]", "modified": "2026-06-03T21:26:19.407000", "created": "2026-06-03T20:30:40.975000", "tags": [ "ascii text", "handle", "rdap database", "iana registrar", "links", "ip address", "status code", "body length", "kb body", "sha256", "mit alumni", "article og", "conference og", "drupal", "mobileoptimized", "utc google", "tag manager", "gtmtmd98t", "utc aw992472444", "utc na", "utc gx3tne87ypk", "utc new", "relic na", "utc facebook", "custom audience", "externalnet", "homenet", "mtu denial", "5762", "et info", "observed google", "https domain", "tls sni", "clientendpoint", "perimeter", "high", "informational", "suricata http", "download meta", "tags twitter", "time", "wordpress", "lostlife", "bqjw6pjcg", "script tags", "v3 serial", "number", "cus olet", "encrypt cnyr2", "validity", "subject public", "key info", "key algorithm", "key identifier", "subject key" ], "references": [], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [ { "id": "T1102", "name": "Web Service", "display_name": "T1102 - Web Service" }, { "id": "T1036", "name": "Masquerading", "display_name": "T1036 - Masquerading" }, { "id": "T1046", "name": "Network Service Scanning", "display_name": "T1046 - Network Service Scanning" }, { "id": "T1055", "name": "Process Injection", "display_name": "T1055 - Process Injection" }, { "id": "T1057", "name": "Process Discovery", "display_name": "T1057 - Process Discovery" }, { "id": "T1071", "name": "Application Layer Protocol", "display_name": "T1071 - Application Layer Protocol" }, { "id": "T1082", "name": "System Information Discovery", "display_name": "T1082 - System Information Discovery" }, { "id": "T1083", "name": "File and Directory Discovery", "display_name": "T1083 - File and Directory Discovery" }, { "id": "T1095", "name": "Non-Application Layer Protocol", "display_name": "T1095 - Non-Application Layer Protocol" }, { "id": "T1105", "name": "Ingress Tool Transfer", "display_name": "T1105 - Ingress Tool Transfer" }, { "id": "T1566", "name": "Phishing", "display_name": "T1566 - Phishing" }, { "id": "T1573", "name": "Encrypted Channel", "display_name": "T1573 - Encrypted Channel" }, { "id": "T1056", "name": "Input Capture", "display_name": "T1056 - Input Capture" }, { "id": "T1140", "name": "Deobfuscate/Decode Files or Information", "display_name": "T1140 - Deobfuscate/Decode Files or Information" } ], "industries": [], "TLP": "green", "cloned_from": null, "export_count": 0, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "msudosos", "id": "381696", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "FileHash-SHA1": 94, "FileHash-MD5": 171, "FileHash-SHA256": 255, "IPv4": 139, "URL": 707, "domain": 243, "hostname": 269 }, "indicator_count": 1878, "is_author": false, "is_subscribing": null, "subscriber_count": 67, "modified_text": "5 hours ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "URL", "related_indicator_is_active": 1 }, { "id": "6a208ef15eb4e43939249b07", "name": "ndjssjedjkms CAPE Sandbox", "description": "[The full text of the RDAP registration process has been published by the Department of Public Communications (DPSC) in the Czech Republic, as well as the name of its own site]", "modified": "2026-06-03T21:26:18.624000", "created": "2026-06-03T20:30:41.167000", "tags": [ "ascii text", "handle", "rdap database", "iana registrar", "links", "ip address", "status code", "body length", "kb body", "sha256", "mit alumni", "article og", "conference og", "drupal", "mobileoptimized", "utc google", "tag manager", "gtmtmd98t", "utc aw992472444", "utc na", "utc gx3tne87ypk", "utc new", "relic na", "utc facebook", "custom audience", "externalnet", "homenet", "mtu denial", "5762", "et info", "observed google", "https domain", "tls sni", "clientendpoint", "perimeter", "high", "informational", "suricata http", "download meta", "tags twitter", "time", "wordpress", "lostlife", "bqjw6pjcg", "script tags", "v3 serial", "number", "cus olet", "encrypt cnyr2", "validity", "subject public", "key info", "key algorithm", "key identifier", "subject key" ], "references": [], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [ { "id": "T1102", "name": "Web Service", "display_name": "T1102 - Web Service" }, { "id": "T1036", "name": "Masquerading", "display_name": "T1036 - Masquerading" }, { "id": "T1046", "name": "Network Service Scanning", "display_name": "T1046 - Network Service Scanning" }, { "id": "T1055", "name": "Process Injection", "display_name": "T1055 - Process Injection" }, { "id": "T1057", "name": "Process Discovery", "display_name": "T1057 - Process Discovery" }, { "id": "T1071", "name": "Application Layer Protocol", "display_name": "T1071 - Application Layer Protocol" }, { "id": "T1082", "name": "System Information Discovery", "display_name": "T1082 - System Information Discovery" }, { "id": "T1083", "name": "File and Directory Discovery", "display_name": "T1083 - File and Directory Discovery" }, { "id": "T1095", "name": "Non-Application Layer Protocol", "display_name": "T1095 - Non-Application Layer Protocol" }, { "id": "T1105", "name": "Ingress Tool Transfer", "display_name": "T1105 - Ingress Tool Transfer" }, { "id": "T1566", "name": "Phishing", "display_name": "T1566 - Phishing" }, { "id": "T1573", "name": "Encrypted Channel", "display_name": "T1573 - Encrypted Channel" }, { "id": "T1056", "name": "Input Capture", "display_name": "T1056 - Input Capture" }, { "id": "T1140", "name": "Deobfuscate/Decode Files or Information", "display_name": "T1140 - Deobfuscate/Decode Files or Information" } ], "industries": [], "TLP": "green", "cloned_from": null, "export_count": 0, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "msudosos", "id": "381696", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "FileHash-SHA1": 94, "FileHash-MD5": 171, "FileHash-SHA256": 255, "IPv4": 140, "URL": 707, "domain": 243, "hostname": 275 }, "indicator_count": 1885, "is_author": false, "is_subscribing": null, "subscriber_count": 67, "modified_text": "5 hours ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "URL", "related_indicator_is_active": 1 } ], "error": null, "vt": { "error": "VirusTotal rate limit reached. Try again shortly.", "indicator": "https://griffineduvent.com.my", "type": "URL" }, "abuseipdb": null, "urlhaus": { "indicator": "https://griffineduvent.com.my", "type": "URL", "found": false, "verdict": "clean", "error": null }, "from_cache": true, "_cached_at": 1780540191.615356 }