TLP:WHITE184 IOCs
Maltrail IOC for 2026-06-15
Threat Actors
Malware Families
Diamond Model
Adversary(1)
Infrastructure(6)
Capability(2)
Victim
5W+H Threat Analysis
Analysis unavailable
Indicators of Compromise
Indicators of Compromise184
| Type | Indicator | Confidence | Score | First Seen |
|---|---|---|---|---|
| Domain | crsorgi.gov.websecure.site aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | gov.ec.cc aptespionagemalware | High | 72 | Jun 15, 26 |
| SHA1 | 66a956aed9e3c3f753e2eed6360294394f853771 aptespionagefile-hash | High | 72 | Jun 15, 26 |
| SHA1 | 99d90db6b4baaa29fc10b143d134d07c2a5c113b file-hashindicatormalware | High | 72 | Jun 15, 26 |
| Domain | gov.in.web.index.birthcetficate.co aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | watermelonfilecore.com malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | windwardesign.sbs aptespionagemalware | High | 70 | Jun 15, 26 |
| SHA1 | ded99bf3c4b6043004b0543b14a77634bac9083c file-hashmalware | High | 70 | Jun 15, 26 |
| Domain | dc.crsorgi-gov-in.pro aptespionagemalware | High | 72 | Jun 15, 26 |
| SHA256 | e76741a1747dde6b4e4dbc88ca16fc8eb59385b6b18f6c64d1b397dfe0843647 aptespionagefile-hash | High | 70 | Jun 15, 26 |
| SHA1 | e0c5e9ec99305ee43cfb0ce23bf1c54bde9aa3ba aptespionagefile-hash | High | 72 | Jun 15, 26 |
| Domain | berryfilecloud.com malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | playgoogle-store-love-datting-meetpartner-onetimechoice.pages.dev malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | 777ua.co.ua aptespionagemalware | High | 70 | Jun 15, 26 |
| Domain | pearfilebloom.com malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | gov.vaiw.in aptespionagemalware | High | 72 | Jun 15, 26 |
| SHA1 | 478c500b71af43329a491a6d58cfc85db66331bf aptespionagefile-hash | High | 70 | Jun 15, 26 |
| Domain | estevss.icu malwarenetworkrat | High | 72 | Jun 15, 26 |
| Domain | nts.dynuddns.net aptespionagemalware | High | 70 | Jun 15, 26 |
| Domain | coolshortvideos.club malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | alchsp.xyz malwarenetworkrat | High | 68 | Jun 16, 26 |
| Domain | crs-gov.com aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | openclawsai.online malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | crsorgi-gov.site aptespionagemalware | High | 72 | Jun 15, 26 |
| SHA1 | 44b8cc556fcf573a5aee0922fac1a2d9bae017ac file-hashmalware | High | 70 | Jun 15, 26 |
| SHA1 | 1a49f1db293b33c7b7c1dca3a577f389acd394c1 aptespionagefile-hash | High | 70 | Jun 15, 26 |
| Domain | qh.min-pk.com aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | gov.in-co.pw aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | dc.crsorgi.gov.in.index.web-index.info aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | api.otter-stack.com malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | vaiw.in aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | csd-gov-pk-pakiusifgsusjfvsvfjhsavfuyabfkgdaifgaiufgidafgi.pages.dev malwarenetwork | High | 70 | Jun 15, 26 |
| SHA1 | 23a3f5285241a729f4b1a40f8d6cb7fc1c8cbec5 file-hashmalwarespam | High | 68 | Jun 16, 26 |
| Domain | crsorgi-gov-in.pro aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | kiwifilestack.com malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | janicelynn.digital malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | parsoriumtech.com aptespionagemalware | High | 70 | Jun 15, 26 |
| Domain | cherryfilenova.com malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | dc.crsorgi.gov.in.ineu.eu.cc aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | ineu.eu.cc aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | crsorgi.gov.in.crsverifycertificate.co.in aptespionagemalware | High | 72 | Jun 15, 26 |
| IP | 45.95.186.237 aptespionagemalware | High | 70 | Jun 15, 26 |
| SHA1 | a6a102e65a786c88d9c665af3fc62fbad26f4b18 aptespionagefile-hash | High | 70 | Jun 15, 26 |
| SHA1 | 82d4fd46b1601d47fa210589caeda9fd680e970d aptespionagefile-hash | High | 70 | Jun 15, 26 |
| SHA256 | f5a7890fd09909711cd9aed1614f8f2687639c61f4ea26efb57100431a688f05 aptespionagefile-hash | High | 72 | Jun 15, 26 |
| Domain | goruntulusohbet.app malwarenetwork | High | 70 | Jun 15, 26 |
| SHA1 | 71a226feef7ab11e0f2a7d65f104ae03931fe462 file-hashmalwarerat | High | 72 | Jun 15, 26 |
| Domain | in-co.pw aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | crsorgi.gov.in-co.pw aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | fun-life.xyz malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | nostrendezvous.com botnetloadermalware | High | 86 | Jun 12, 26 |
| Domain | live-chat-new.pages.dev malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | kiwifilespark.com malwarenetwork | High | 70 | Jun 15, 26 |
| IP | 107.173.87.138 aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | dc.crsorgi.gov.websecure.site aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | crsorgi.gov-ln.site aptespionagemalware | High | 72 | Jun 15, 26 |
| SHA1 | aa64bf15cdb2bb1ab4969fc4da2b7c0d6be7857f aptespionagefile-hash | High | 72 | Jun 15, 26 |
| Domain | otter-stack.com malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | min-pk.com aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | gov.in.ineu.eu.cc aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | rank-now.de malwarenetwork | High | 70 | Jun 15, 26 |
| SHA1 | c3dc448549823d4a8cf4ff36543fbc56a84e699b aptespionagefile-hash | High | 72 | Jun 15, 26 |
| IP | 212.43.156.47 malwarenetworkrat | High | 72 | Jun 15, 26 |
| SHA256 | cc5c72e90d7eda42e66a54c0197abbba1951561d3d864963b6aca7fe43a0ab06 file-hashmalware | High | 70 | Jun 15, 26 |
| Domain | crsorgi.gov.in.verfy.store aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | tarimur000.github.io malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | dc.crosagi-gov-in.info aptespionagemalware | High | 72 | Jun 15, 26 |
| SHA256 | 1a3146e3df64507fd9ab933f7ca395fe9355843e108dde346e806808b2c79001 aptespionagefile-hash | High | 70 | Jun 15, 26 |
| Domain | store-live-chat-ggsafsajfhjkafhsjkafhjkaffhjhbfhdfj.pages.dev malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | web-index.info aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | iadra.help malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | gov.in.verfy.store aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | soliste.it.com aptespionagemalware | High | 70 | Jun 15, 26 |
| IP | 46.21.250.94 malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | texashardwoodfloor.com aptespionagemalware | High | 70 | Jun 15, 26 |
| Domain | crsorgi.gov.in.ineu.eu.cc aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | play-google-pk-gov-csddiscount-hirepurchas-online-apply.pages.dev malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | ucretsizsohbet.online malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | grxapi.com indicatormalwarenetwork | High | 72 | Jun 15, 26 |
| Domain | nstcmlg.dynu.org aptespionagemalware | High | 70 | Jun 15, 26 |
| Domain | crsorgi.gov.in.web.index.birthcetficate.co aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | dc.crsorgi.gov.in.crsverifycertificate.co.in aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | cherryfilepoint.com malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | mottla.shop malwarenetworkrat | High | 68 | Jun 16, 26 |
| Domain | iciclewriting.xyz malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | qa.min-pk.com aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | peachfilebase.com malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | crsorgi.gov.in.verifycertificatecrs.co.in aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | cherryfilecloud.com malwarenetwork | High | 70 | Jun 15, 26 |
| IP | 13.60.86.226 malwarenetworkspam | High | 68 | Jun 16, 26 |
| Domain | playgoogle-store-love-datting-meetpartner-chooseforchoice.pages.dev malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | fun-show.xyz malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | playgoogle-store-love-datting-meet-newpeople.pages.dev malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | gov.in.verifycertificatecrs.co.in aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | dc.crsorgi.gov.in.codezfree.online aptespionagemalware | High | 72 | Jun 15, 26 |
| IP | 31.76.118.178 malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | crsorgi.crs-gov.com aptespionagemalware | High | 72 | Jun 15, 26 |
| SHA1 | 2b8d2d3a902174c482c06392cb6d56ef5e331abd file-hashmalware | High | 70 | Jun 15, 26 |
| Domain | dc.crsorgi.gov.in.verifycertificatecrs.co.in aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | dc.crsorgi.gov.in.web.indexe.buzz aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | fluxiverianlabs.com aptespionagemalware | High | 70 | Jun 15, 26 |
| Domain | gov.in.codezfree.online aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | gov.in.crsverifycertificate.co.in aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | crsorgi.gov.in.codezfree.online aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | crsverifycertificate.co.in aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | tiktok-explore-reels.pages.dev malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | dc.crsorgi.gov.in.web.index.birthcetficate.co aptespionagemalware | High | 72 | Jun 15, 26 |
| SHA1 | 3081c92fdacc8e2438c1c3341efeb5486009b960 file-hashmalware | High | 70 | Jun 15, 26 |
| Domain | linkradeen.com malwarenetwork | High | 70 | Jun 15, 26 |
| IP | 45.144.222.126 aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | applefilevault.com malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | ncertnidm.dynu.org aptespionagemalware | High | 70 | Jun 15, 26 |
| Domain | dc.crsorgi.gov-ln.site aptespionagemalware | High | 72 | Jun 15, 26 |
| IP | 2.24.131.246 malwarenetworkrat | High | 72 | Jun 15, 26 |
| Domain | play-store-livechat-iifiufdasksai07235wief41344332i2j381ge.pages.dev malwarenetwork | High | 70 | Jun 15, 26 |
| SHA1 | 160590381389f1ea471974f91fa7922634868a34 file-hashmalwarerat | High | 72 | Jun 15, 26 |
| Domain | crosagi-gov-in.info aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | swiftnovar.com indicatormalwarenetwork | High | 72 | Jun 15, 26 |
| Domain | peppersyncfile.com malwarenetwork | High | 70 | Jun 15, 26 |
| SHA256 | d8f8c416ebde7d90088d6029a5b9b88a2a021bf3b99896f205d78732d376ef5e file-hashmalware | High | 70 | Jun 15, 26 |
| Domain | track.myeasetrack.com malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | playgoogle-store-love-datting-meet-partner.pages.dev malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | crsorgi.gov.in.index.web-index.info aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | wv.ptnrmat.xyz malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | tg.rank-now.de malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | crsorgi.gov.in.web.indexe.buzz aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | driverhubpro.net aptespionagemalware | High | 70 | Jun 15, 26 |
| Domain | cqdprod.com cryptominerloadermalware | High | 86 | Jun 14, 26 |
| SHA256 | 95fdd6fe3c222a51a8038d8340e43338b7655d477da6f7eaede7925cf22f0106 aptespionagefile-hash | High | 70 | Jun 15, 26 |
| Domain | bamcolombiaa.com malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | dc.crsorgi-gov.site aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | ipsdoc.dynuddns.net aptespionagemalware | High | 70 | Jun 15, 26 |
| Domain | gov.in.index.web-index.info aptespionagemalware | High | 72 | Jun 15, 26 |
| SHA1 | 4713cedf20fabb61883a763a7cc145acc1948ba7 file-hashmalware | High | 70 | Jun 15, 26 |
| Domain | indexe.buzz aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | apricotfileflow.com malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | ncodeoverify.dynu.org aptespionagemalware | High | 70 | Jun 15, 26 |
| SHA1 | 964153abb139633b65cc041a7f254731e8076cd8 aptespionagefile-hash | High | 68 | Jun 16, 26 |
| Domain | nottinghamcarpetsandblinds.com botnetloadermalware | High | 86 | Jun 14, 26 |
| Domain | verfy.store aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | com-nts.dynu.org aptespionagemalware | High | 70 | Jun 15, 26 |
| SHA1 | e2843684d4c08911647dab2a476845ea17e7651f aptespionagefile-hash | High | 70 | Jun 15, 26 |
| Domain | dc.crsorgi.gov.ec.cc aptespionagemalware | High | 72 | Jun 15, 26 |
| IP | 146.103.116.11 malwarenetworkrat | High | 72 | Jun 15, 26 |
| Domain | cabaretcorporation.com botnetmalwarenetwork | High | 86 | Jun 3, 26 |
| Domain | feebacks-pumps.fun malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | dc.crsorgi.gov.in-co.pw aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | bayareafencecompany.com aptespionagemalware | High | 70 | Jun 15, 26 |
| Domain | toknportl.website malwarenetwork | High | 70 | Jun 15, 26 |
| IP | 206.119.172.161 indicatormalwarenetwork | High | 72 | Jun 15, 26 |
| Domain | oliveiaa.icu aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | websecure.site aptespionagemalware | High | 72 | Jun 15, 26 |
| IP | 156.248.73.63 indicatormalwarenetwork | High | 72 | Jun 15, 26 |
| Domain | carrotsecurefile.com malwarenetwork | High | 70 | Jun 15, 26 |
| SHA1 | 8b54d019afd5a305a19a4dbcd0be94b370e32506 file-hashmalware | High | 70 | Jun 15, 26 |
| Domain | codezfree.online aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | verifycertificatecrs.co.in aptespionagemalware | High | 72 | Jun 15, 26 |
| IP | 194.11.226.41 malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | mofa-gov-np.min-pk.com aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | live-chat-uzx.pages.dev malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | ntxaldos.dynuddns.net aptespionagemalware | High | 70 | Jun 15, 26 |
| Domain | csd-gov-pk-siohsiofhsoifhsiofhsahfsansanfoisahfpsafoafobaf.pages.dev malwarenetwork | High | 70 | Jun 15, 26 |
| IP | 46.151.26.137 malwarenetworkrat | High | 72 | Jun 15, 26 |
| Domain | playgoogle-store-love-meet-love-newpeople.pages.dev malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | fusesd.shop malwarenetworkrat | High | 68 | Jun 16, 26 |
| IP | 64.52.80.132 malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | gov.in.web.indexe.buzz aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | syncroval.com malwarenetworkrat | High | 72 | Jun 15, 26 |
| Domain | gov-ln.site aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | tinymittycake.shop malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | dc.crsorgi.gov.vaiw.in aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | crsorgi.gov.vaiw.in aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | gov.websecure.site aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | dc.crsorgi.crs-gov.com aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | applefilehub.com malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | nsicodeverify.dynu.org aptespionagemalware | High | 70 | Jun 15, 26 |
| Domain | csd-gov-pk-pakistanhuhsifhsofhohnwojwfjpwjwfwfhwfowhfiwh.pages.dev malwarenetwork | High | 70 | Jun 15, 26 |
| Domain | dc.crsorgi.gov.in.verfy.store aptespionagemalware | High | 72 | Jun 15, 26 |
| SHA1 | 0a0300f658c66a1977a8b441793622e8392ad306 file-hashmalware | High | 70 | Jun 15, 26 |
| Domain | pk-gov-csd-hirepurchas-online-best.pages.dev malwarenetwork | High | 70 | Jun 15, 26 |
| SHA256 | 22480680a22ba444a3924f906cbec947d11f011200b89ef6b67afd48b4c71d77 file-hashmalware | High | 70 | Jun 15, 26 |
| Domain | index.birthcetficate.co aptespionagemalware | High | 72 | Jun 15, 26 |
| Domain | crsorgi.gov.ec.cc aptespionagemalware | High | 72 | Jun 15, 26 |
| IP | 107.23.82.119 malwarenetworkspam | High | 68 | Jun 16, 26 |
IOC Relationship Graph
IOC Relationship Graph184 total IOCs
DomainSHA1SHA256IP