{ "type": "URL", "indicator": "https://sivvino.com", "general": { "sections": [ "general", "url_list", "http_scans", "screenshot" ], "indicator": "https://sivvino.com", "type": "url", "type_title": "URL", "validation": [], "base_indicator": { "id": 4126810521, "indicator": "https://sivvino.com", "type": "URL", "title": "", "description": "", "content": "", "access_type": "public", "access_reason": "" }, "pulse_info": { "count": 3, "pulses": [ { "id": "68bc0d92c439f8ebe992a953", "name": "EbeeSep2025 Pt1", "description": "", "modified": "2025-10-11T12:03:16.109000", "created": "2025-09-06T10:31:46.478000", "tags": [], "references": [ "week1.pdf" ], "public": 1, "adversary": "Multiple", "targeted_countries": [], "malware_families": [], "attack_ids": [], "industries": [], "TLP": "white", "cloned_from": null, "export_count": 3, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "IMEBEEIMFINE", "id": "343873", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "hostname": 12, "FileHash-MD5": 157, "FileHash-SHA1": 141, "FileHash-SHA256": 318, "URL": 83, "domain": 78 }, "indicator_count": 789, "is_author": false, "is_subscribing": null, "subscriber_count": 39, "modified_text": "233 days ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "URL", "related_indicator_is_active": 1 }, { "id": "68bab881bc033c2137cdb8c5", "name": "An MDR Analysis of the AMOS Stealer Campaign Targeting macOS via \u2018Cracked\u2019 Apps", "description": "An MDR analysis of the AMOS stealer campaign suggests that the malware is targeting users of Apple's Mac operating system, rather than the Apple Store, as well as those using the \u201cCracked\u201d app.", "modified": "2025-09-05T10:16:33.647000", "created": "2025-09-05T10:16:33.647000", "tags": [ "disease vector", "c server", "sha1", "mdr analysis", "amos stealer", "cracked", "apps", "compromise file", "name sha", "detection", "amos", "trojanspy" ], "references": [ "https://www.trendmicro.com/en_us/research/25/i/an-mdr-analysis-of-the-amos-stealer-campaign.html" ], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [ { "id": "AMOS", "display_name": "AMOS", "target": null }, { "id": "TrojanSpy", "display_name": "TrojanSpy", "target": null } ], "attack_ids": [], "industries": [], "TLP": "white", "cloned_from": null, "export_count": 5, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "CyberHunter_NL", "id": "171283", "avatar_url": "/otxapi/users/avatar_image/media/avatars/user_171283/resized/80/avatar_3b9c358f36.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "FileHash-MD5": 3, "FileHash-SHA1": 5, "FileHash-SHA256": 3, "URL": 4, "domain": 14 }, "indicator_count": 29, "is_author": false, "is_subscribing": null, "subscriber_count": 863, "modified_text": "270 days ago ", "is_modified": false, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "URL", "related_indicator_is_active": 1 }, { "id": "68ba3ba012f976c1862b37f1", "name": "AMOS Malware Exfiltrates Sensitive Data From macOS Users via Stealthy Campaign", "description": "A sophisticated campaign distributing Atomic macOS Stealer (AMOS), a\nmalware family targeting macOS users. Attackers disguise the malware as\n\u201ccracked\u201d versions of legitimate apps, luring users into installation.", "modified": "2025-09-05T01:23:44.678000", "created": "2025-09-05T01:23:44.678000", "tags": [ "https" ], "references": [], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [], "industries": [], "TLP": "white", "cloned_from": null, "export_count": 7, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "cryptocti", "id": "110256", "avatar_url": "/otxapi/users/avatar_image/media/avatars/user_110256/resized/80/avatar_e237a4257c.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "URL": 4, "domain": 14, "FileHash-MD5": 3, "FileHash-SHA1": 5, "FileHash-SHA256": 3 }, "indicator_count": 29, "is_author": false, "is_subscribing": null, "subscriber_count": 501, "modified_text": "270 days ago ", "is_modified": false, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "URL", "related_indicator_is_active": 1 } ], "references": [ "https://www.trendmicro.com/en_us/research/25/i/an-mdr-analysis-of-the-amos-stealer-campaign.html", "week1.pdf" ], "related": { "alienvault": { "adversary": [], "malware_families": [], "industries": [], "unique_indicators": 0 }, "other": { "adversary": [ "Multiple" ], "malware_families": [ "Trojanspy", "Amos" ], "industries": [], "unique_indicators": 901 } } }, "false_positive": [], "alexa": "http://www.alexa.com/siteinfo/sivvino.com", "whois": "http://whois.domaintools.com/sivvino.com", "domain": "sivvino.com", "hostname": "Unavailable" }, "geo": {}, "geo_ipapicom": {}, "pulse_count": 3, "pulses": [ { "id": "68bc0d92c439f8ebe992a953", "name": "EbeeSep2025 Pt1", "description": "", "modified": "2025-10-11T12:03:16.109000", "created": "2025-09-06T10:31:46.478000", "tags": [], "references": [ "week1.pdf" ], "public": 1, "adversary": "Multiple", "targeted_countries": [], "malware_families": [], "attack_ids": [], "industries": [], "TLP": "white", "cloned_from": null, "export_count": 3, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "IMEBEEIMFINE", "id": "343873", "avatar_url": "https://otx.alienvault.com/assets/images/default-avatar.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "hostname": 12, "FileHash-MD5": 157, "FileHash-SHA1": 141, "FileHash-SHA256": 318, "URL": 83, "domain": 78 }, "indicator_count": 789, "is_author": false, "is_subscribing": null, "subscriber_count": 39, "modified_text": "233 days ago ", "is_modified": true, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "URL", "related_indicator_is_active": 1 }, { "id": "68bab881bc033c2137cdb8c5", "name": "An MDR Analysis of the AMOS Stealer Campaign Targeting macOS via \u2018Cracked\u2019 Apps", "description": "An MDR analysis of the AMOS stealer campaign suggests that the malware is targeting users of Apple's Mac operating system, rather than the Apple Store, as well as those using the \u201cCracked\u201d app.", "modified": "2025-09-05T10:16:33.647000", "created": "2025-09-05T10:16:33.647000", "tags": [ "disease vector", "c server", "sha1", "mdr analysis", "amos stealer", "cracked", "apps", "compromise file", "name sha", "detection", "amos", "trojanspy" ], "references": [ "https://www.trendmicro.com/en_us/research/25/i/an-mdr-analysis-of-the-amos-stealer-campaign.html" ], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [ { "id": "AMOS", "display_name": "AMOS", "target": null }, { "id": "TrojanSpy", "display_name": "TrojanSpy", "target": null } ], "attack_ids": [], "industries": [], "TLP": "white", "cloned_from": null, "export_count": 5, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "CyberHunter_NL", "id": "171283", "avatar_url": "/otxapi/users/avatar_image/media/avatars/user_171283/resized/80/avatar_3b9c358f36.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "FileHash-MD5": 3, "FileHash-SHA1": 5, "FileHash-SHA256": 3, "URL": 4, "domain": 14 }, "indicator_count": 29, "is_author": false, "is_subscribing": null, "subscriber_count": 863, "modified_text": "270 days ago ", "is_modified": false, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "URL", "related_indicator_is_active": 1 }, { "id": "68ba3ba012f976c1862b37f1", "name": "AMOS Malware Exfiltrates Sensitive Data From macOS Users via Stealthy Campaign", "description": "A sophisticated campaign distributing Atomic macOS Stealer (AMOS), a\nmalware family targeting macOS users. Attackers disguise the malware as\n\u201ccracked\u201d versions of legitimate apps, luring users into installation.", "modified": "2025-09-05T01:23:44.678000", "created": "2025-09-05T01:23:44.678000", "tags": [ "https" ], "references": [], "public": 1, "adversary": "", "targeted_countries": [], "malware_families": [], "attack_ids": [], "industries": [], "TLP": "white", "cloned_from": null, "export_count": 7, "upvotes_count": 0, "downvotes_count": 0, "votes_count": 0, "locked": false, "pulse_source": "web", "validator_count": 0, "comment_count": 0, "follower_count": 0, "vote": 0, "author": { "username": "cryptocti", "id": "110256", "avatar_url": "/otxapi/users/avatar_image/media/avatars/user_110256/resized/80/avatar_e237a4257c.png", "is_subscribed": false, "is_following": false }, "indicator_type_counts": { "URL": 4, "domain": 14, "FileHash-MD5": 3, "FileHash-SHA1": 5, "FileHash-SHA256": 3 }, "indicator_count": 29, "is_author": false, "is_subscribing": null, "subscriber_count": 501, "modified_text": "270 days ago ", "is_modified": false, "groups": [], "in_group": false, "threat_hunter_scannable": true, "threat_hunter_has_agents": 1, "related_indicator_type": "URL", "related_indicator_is_active": 1 } ], "error": null, "vt": { "error": "VirusTotal rate limit reached. Try again shortly.", "indicator": "https://sivvino.com", "type": "URL" }, "abuseipdb": null, "urlhaus": { "indicator": "https://sivvino.com", "type": "URL", "found": false, "verdict": "clean", "error": null }, "from_cache": true, "_cached_at": 1780396595.302917 }