IOC Radar
TLP:WHITE2 IOCs

Hackers Abuse SniperDz PhaaS for Brand Impersonation Attacks

CP
Cyber Press
Published June 11, 2026Original Report

Diamond Model

SOCIAL AXISTECHNOLOGY AXISADVERSARYunknownINFRASTRUCTUREwin.feezossl.xyzwin.anababayala.comCAPABILITYunknownVICTIMunknown
Adversary
Infrastructure(2)
Capability
Victim

Attack Flow9 steps · MITRE ATT&CK mapped

Initial AccessTA0001·T1189
1/9
Social Media
ActionPost scam advertisements
Attackers use localized social media advertisements to initiate campaigns, bypassing platform security filters.

5W+H Threat Analysis

Analysis unavailable

Indicators of Compromise

Indicators of Compromise2

TypeIndicatorConfidenceScoreFirst Seen
Domainwin.feezossl.xyz
intel-blogmalwarenetwork
High
58
Jun 11, 26
Domainwin.anababayala.com
intel-blognetworkphishing
High
58
Jun 11, 26

IOC Relationship Graph

IOC Relationship Graph2 total IOCs
Domain
Domain2REPORTHackers Abuse SniperDz Pha
scroll to zoom · drag to pan · click IOC to open