IOC Radar
TLP:WHITE11 IOCs

BlueAlpha Abuses Cloudflare Tunneling Service for GammaDrop Staging Infrastructure

BO
Botvrij.eu OSINT Feed
Published December 8, 2024Original Report

Diamond Model

SOCIAL AXISTECHNOLOGY AXISADVERSARYunknownINFRASTRUCTUREamsterdam-sheet-veter…longitude-powerpoint-…benjamin-unnecessary-…CAPABILITYunknownVICTIMunknown
Adversary
Infrastructure(6)
Capability
Victim

5W+H Threat Analysis

Analysis unavailable

Indicators of Compromise

Indicators of Compromise11

TypeIndicatorConfidenceScoreFirst Seen
SHA2563afc8955057eb0bae819ead1e7f534f6e5784bbd5b6aa3a08af72e187b157c5b
file-hashloadermalware
High
68
Jun 2, 26
Domainamsterdam-sheet-veteran-aka.trycloudflare.com
indicatornetwork
High
68
Jun 2, 26
Domainlongitude-powerpoint-geek-upgrade.trycloudflare.com
malwarenetworkrat
High
68
Jun 2, 26
Domainbenjamin-unnecessary-mothers-configured.trycloudflare.com
malwarenetworkrat
High
68
Jun 2, 26
SHA25693aa6cd0787193b4ba5ba6367122dee846c5d18ad77919b261c15ff583b0ca17
file-hashloadermalware
High
68
Jun 2, 26
Domaininfected-gc-rhythm-yu.trycloudflare.com
loadermalwarenetwork
High
68
Jun 2, 26
Domainattribute-homework-generator-lovers.trycloudflare.com
malwarenetworkrat
High
68
Jun 2, 26
Domainelse-accommodation-allowing-throws.trycloudflare.com
indicatornetwork
High
68
Jun 2, 26
IP178.130.42.94
loadermalwarenetwork
High
68
Jun 2, 26
Domaincod-identification-imported-carl.trycloudflare.com
indicatornetwork
High
68
Jun 2, 26
SHA256b95eea2bee2113b7b5c7af2acf6c6cbde05829fab79ba86694603d4c1f33fdda
file-hashloadermalware
High
68
Jun 2, 26

IOC Relationship Graph

IOC Relationship Graph11 total IOCs
SHA256DomainIP
Domain7SHA2563IP1REPORTBlueAlpha Abuses Cloudflar
scroll to zoom · drag to pan · click IOC to open