IOC Radar
TLP:WHITE3 IOCs

China-Linked OP-512 Targets IIS Servers With Unique Web Shell Framework

CP
Cyber Press
Published June 8, 2026Original Report

Diamond Model

SOCIAL AXISTECHNOLOGY AXISADVERSARYunknownINFRASTRUCTUREhcgos.comashx.lhlsjcb.comc.hcgos.comCAPABILITYunknownVICTIMunknown
Adversary
Infrastructure(3)
Capability
Victim

5W+H Threat Analysis

Analysis unavailable

Indicators of Compromise

Indicators of Compromise3

TypeIndicatorConfidenceScoreFirst Seen
Domainhcgos.com
intel-blogmalwarenetwork
High
63
Jun 7, 26
Domainashx.lhlsjcb.com
aptespionageintel-blog
High
68
Jun 7, 26
Domainc.hcgos.com
c2intel-blogmalware
High
63
Jun 7, 26

IOC Relationship Graph

IOC Relationship Graph3 total IOCs
Domain
Domain3REPORTChina-Linked OP-512 Target
scroll to zoom · drag to pan · click IOC to open