IOC Radar
DomainHighVerifiedSignal 61/100

cbmelipilla.cl

Location
IndiaIndia
First Seen
Jul 19, 2024
Last Seen
Jan 20, 2026
Jul 19
First Seen
706d ago
Jan 20
Last Seen
157d ago
6
Reports
source reports
61%
Confidence
high
Found in 6 reports. Confidence: high. · Confidence scores are heuristic. Verify before acting on results.
Domain Name
Malicious domain used for C2, phishing, or malware distribution.
MISP Category
Network Activity
Confidence
61%
Signal Score
61 / 100
IDS Rule
No
Threat Context
Tags
MITRE ATT&CK

MITRE ATT&CK TTPs

40 techniques

Feed Intelligence Summary

6 reports61% confidence
6
Source reports
61%
Confidence score
Category tags
acceptaptasiaattackbodybotnetc2chilecode executioncommand and controlcommand executioncommunication protocolcommunication technologiescredential accesscredential harvestingdata exfiltrationdata theftdirectorydistributed attacksdll importdll injectionechoesfinalhttp scannerhttpshuntindiaindicatorindicators of compromiseingress tool transfermalicious activitymalicious downloadmalicious powershell activitymalicious softwaremalwaremalware distributionmatthewmobile carriersmobile networksnetworkopen directoryoperating systemphishingphishing attackprocess injectionpythonrakshasa malwareremote servicesresearchedscripting attacksscrollshared sshshared ttpssliversliver frameworksocial engineeringsoftware exploitationsouth americastargazer goblinstealerstrongt1003t1021t1021.001t1027t1041t1053t1055t1059t1059.001t1059.003t1068t1069.001t1071t1071.001t1071.004t1078t1083t1086t1105t1127t1134t1140t1189t1190t1203t1204t1204.002t1486t1496t1499.002t1499.003t1539t1547t1555t1565t1566t1566.001t1566.002t1566.003t1573telecom servicestelecommunicationsthreat actorurlsvoid bansheeweb trafficwin32 malwarewindowwindows malware

Activity Timeline

1 total obs
Jan 20Jan 20

Threat Activity Heatmap

· Peak: 2026-01-20
Less
More
Mon
Wed
Fri
Jun
·
Jul
·
·
·
Aug
·
·
·
Sep
·
·
·
·
Oct
·
·
·
Nov
·
·
·
Dec
·
·
·
·
Jan
·
·
·
Feb
·
·
·
Mar
·
·
·
·
Apr
·
·
·
May
·
·
·
Jun
·
·
24h
0
Dormant
7d
0
Dormant
30d
0
Dormant
3mo
0
Dormant
Threat ScoreMedium Risk
61
SIGNAL
Signal Score
61%
Confidence
6
Reports
First seenJul 19, 2024
Last seenJan 20, 2026
Verified IOC

VirusTotal

Not checked

WHOIS

description
In the wake of a recent report by security firm CheckPoint, our team uncovered an open directory that appears to have been used by a sophisticated cyber-attack group, known as Stargazer Goblin.

Export & API

STIX 2.1 Bundle
CSV Export
Permalink

IOC Journey

high
First detected 1 year ago · Last seen 5 months ago
Appeared in 6 threat reports