TLP:WHITE160 IOCs
Maltrail IOC for 2026-06-22
Diamond Model
Adversary
Infrastructure(6)
Capability
Victim
5W+H Threat Analysis
Analysis unavailable
Indicators of Compromise
Indicators of Compromise160
| Type | Indicator | Confidence | Score | First Seen |
|---|---|---|---|---|
| Domain | ixyausghxa.click aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | antxzone.dynu.net aptespionagemalware | High | 70 | Jun 22, 26 |
| IP | 38.47.123.84 aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | nbwuquc.com aptespionagemalware | High | 70 | Jun 22, 26 |
| SHA1 | aa0177c6776c99f2ee98c3f909910b9840316445 aptespionagefile-hash | High | 70 | Jun 22, 26 |
| IP | 89.124.115.82 indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | mois-nun.dynuddns.net aptespionagemalware | High | 70 | Jun 22, 26 |
| SHA256 | 4ce45e016a304d813e67b29a08265b2101c2e15a09ace5de6539cad02567affe file-hashindicatormalware | High | 70 | Jun 22, 26 |
| SHA1 | c33fe893281d8ad7df05ad29df89c04146be2953 file-hashindicatormalware | High | 70 | Jun 22, 26 |
| Domain | gsgc2.ddns.net indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | splftez.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | 132.226.100.149.nip.io indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | sdahdor.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | ncodevpass.dynu.org aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | iketqtb.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | mew001.dynuddns.net aptespionagemalware | High | 70 | Jun 22, 26 |
| IP | 202.141.236.42 aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | 38.47.123.84.nip.io aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | armmiddle.cfd aptespionageloader | High | 70 | Jun 22, 26 |
| Domain | ngeiido.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | test7.sbtx.me aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | nkejzoe.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | edoc.mew003.dynuddns.net aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | laicai666.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | uuutalk.com.cn aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | epwunpl.com aptespionagemalware | High | 70 | Jun 22, 26 |
| IP | 185.203.39.99 indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| SHA1 | d6396cc12d2ecf9db9aeabe57d0690bb6f6d4d67 file-hashloadermalware | High | 70 | Jun 22, 26 |
| Domain | edoc.mew006.dynuddns.net aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | c2.greifvogel.ch indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| IP | 152.53.20.140 aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | mew006.dynuddns.net aptespionagemalware | High | 70 | Jun 22, 26 |
| SHA1 | ec9dc2a56490417d18eda72b5380da5d40e67fc9 file-hashloadermalware | High | 70 | Jun 22, 26 |
| Domain | nsidmlog.dynu.org aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | lpgoewb.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | bewowgc.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | edoc.mew004.dynuddns.net aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | dmdoc.dynv6.net aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | chenjad.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | prentiva99.info indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | hga5568.com indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | 13stripescleaning.com indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| IP | 161.97.93.60 malwarenetworkrat | High | 70 | Jun 22, 26 |
| SHA1 | b7f65cabde5037b0b2f18571323c1ef7f15d2188 aptespionagefile-hash | High | 70 | Jun 22, 26 |
| Domain | poldocsinf.dynu.net aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | app.miloyannopoulos.com botnetindicatorloader | High | 86 | Jun 22, 26 |
| Domain | gigadatsolutions.dubya.net indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | a.hga5999.com indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | nationalts.dynu.net aptespionagemalware | High | 70 | Jun 22, 26 |
| IP | 178.104.57.130 indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | meshcore.nephelae-cloud.com indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | qwvxrsf.com aptespionagemalware | High | 70 | Jun 22, 26 |
| SHA1 | 624fc75747db3eae61652f23ef603bedfbe04efd aptespionagefile-hash | High | 70 | Jun 22, 26 |
| Domain | olkkinjahsas.xyz aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | nationalts.dynuddns.net aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | fhfmjtn.com aptespionagemalware | High | 70 | Jun 22, 26 |
| IP | 49.235.153.53 indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | rabinlawco.com indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | 161-97-93-60.sslip.io malwarenetworkrat | High | 70 | Jun 22, 26 |
| Domain | acnms.dmdoc.dynv6.net aptespionagemalware | High | 70 | Jun 22, 26 |
| IP | 113.207.105.196 loadermalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | mew004.dynuddns.net aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | vxtxrhh.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | 52talk.net aptespionagemalware | High | 70 | Jun 22, 26 |
| IP | 89.124.95.161 indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| SHA256 | 2a2b10c0e250ed8c6256e05967af1425c70a290d10322d73ead0d34ec7dfd592 file-hashindicatormalware | High | 70 | Jun 22, 26 |
| Domain | kongpcg.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | deepratsms.ddns.net malwarenetworkrat | High | 70 | Jun 22, 26 |
| Domain | ag.hga5999.com indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| IP | 161.33.141.99 indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | xgspgpu.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | 027.st aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | mew005.dynuddns.net aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | fzovqfn.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | futkwlc.com aptespionagemalware | High | 70 | Jun 22, 26 |
| IP | 166.88.1.247 indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| SHA1 | b457f6f725faf3cd5665a5c306b4f6204e9dc787 file-hashindicatormalware | High | 70 | Jun 22, 26 |
| Domain | 120.st aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | edoc.mew002.dynuddns.net aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | goldmanadv.com indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | lkqywio.com aptespionagemalware | High | 70 | Jun 22, 26 |
| SHA256 | 39019279686c820c3af5684012a0085a7e2109f612c9fab886dd0577ace5b5c6 file-hashloadermalware | High | 70 | Jun 22, 26 |
| IP | 154.31.217.203 aptespionageloader | High | 70 | Jun 22, 26 |
| Domain | node-js.prentiva99.info botnetindicatorloader | High | 86 | Jun 22, 26 |
| Domain | dfdaqbz.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | goffmanlawyer.com indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | mew008.dynuddns.net aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | forbidden.38.47.123.84.nip.io aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | c2.defensive-dst.com indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| SHA1 | bf00b1a19e4fff97eae9feac15ac7fef36c2b00e file-hashindicatormalware | High | 70 | Jun 22, 26 |
| Domain | iijwvpg.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | ag.hga7666.com indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | mew003.dynuddns.net aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | pump.fun-scene.xyz indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | iykzhnf.com aptespionagemalware | High | 70 | Jun 22, 26 |
| IP | 93.123.109.228 indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| IP | 188.166.219.1 indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | trbdoxt.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | ygiujpr.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | labresults.me indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | coinospot.online aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | chaojishijiebei.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | nid-naverovb.svcma.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | node22.lunes.host aptespionagemalware | High | 70 | Jun 22, 26 |
| IP | 132.226.100.149 aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | polsecu.dynu.net aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | edoc.mew008.dynuddns.net aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | h5.aylesworth.info indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | mew002.dynuddns.net aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | dyxngeb.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | epncqxj.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | zesihat.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | writersfm.com loadermalwarenetwork | High | 86 | Jun 6, 26 |
| Domain | htszhle.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | zekfamb.com aptespionagemalware | High | 70 | Jun 22, 26 |
| IP | 185.203.39.103 indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | fun-scene.xyz indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | ejemznu.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | thematrix.cc indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| SHA1 | eaf40f627c3e7eb105bcbb458878e618b621fbff file-hashindicatormalware | High | 70 | Jun 22, 26 |
| Domain | iohyuzxbchcq.xyz aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | ncodevverify.dynu.org aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | nhiscorps.dynu.org aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | xblsbro.com aptespionagemalware | High | 70 | Jun 22, 26 |
| SHA1 | 653892d2740605b9de62dead1d1d321bb4823631 file-hashindicatormalware | High | 70 | Jun 22, 26 |
| SHA1 | 688dc5e96c48ef4597a0d83aa589140674e28d7b file-hashindicatormalware | High | 70 | Jun 22, 26 |
| SHA1 | 0635fa5068f38f7d43769628bde1a6c2f14894ff file-hashindicatormalware | High | 70 | Jun 22, 26 |
| Domain | edoc.mew005.dynuddns.net aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | xianhsgfvbcash.click aptespionagemalware | High | 70 | Jun 22, 26 |
| SHA1 | 7bac24270c06e7b36ae3a429c3aa1a3c5adf76dc aptespionagefile-hash | High | 70 | Jun 22, 26 |
| Domain | jpbmxie.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | utvhis.dynu.net aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | c2.absolutely-not-a-virus.zip indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| SHA256 | b0a6f7afa4877eab5085d49207e26d1d2461d2d61d71a4d406e81e9f30711c5e file-hashindicatormalware | High | 70 | Jun 22, 26 |
| Domain | c2.apollo-labs.xyz indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | inidanniafuu.com indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | edoc.mew001.dynuddns.net aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | miloyannopoulos.com indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | wssrumk.com aptespionagemalware | High | 70 | Jun 22, 26 |
| SHA1 | 0992bbda303d6e9f7db10954d472f0e43ee8af3c aptespionagefile-hash | High | 70 | Jun 22, 26 |
| Domain | mew007.dynuddns.net aptespionagemalware | High | 70 | Jun 22, 26 |
| SHA1 | 2ac72f332d9cf45e768cfe4d60c4b6cf1d65a555 aptespionagefile-hash | High | 70 | Jun 22, 26 |
| IP | 198.23.209.169 indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | linye666.pw indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | edoc.mew007.dynuddns.net aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | lvwefwl.com aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | pckjjte.com aptespionagemalware | High | 70 | Jun 22, 26 |
| SHA1 | f12ce4f06f0ccc8a3f087419813d71fb249d28a4 aptespionagefile-hash | High | 70 | Jun 22, 26 |
| SHA1 | 83147fed67052629680a66fdd9f71ea8817c6a4a aptespionagefile-hash | High | 70 | Jun 22, 26 |
| SHA1 | 6af79dd521302d465d55dd558bc02292fea997d8 file-hashindicatormalware | High | 70 | Jun 22, 26 |
| IP | 101.201.62.40 indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | esfjyra.com aptespionagemalware | High | 70 | Jun 22, 26 |
| IP | 47.109.92.206 indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | nsmdnsi.dynu.org aptespionagemalware | High | 70 | Jun 22, 26 |
| Domain | gotrwag.com aptespionagemalware | High | 70 | Jun 22, 26 |
| IP | 23.27.249.58 malwarenetworkproxy | High | 70 | Jun 22, 26 |
| Domain | namlongland.net indicatormalwarenetwork | High | 70 | Jun 22, 26 |
| Domain | ncodevcheck.dynu.org aptespionagemalware | High | 70 | Jun 22, 26 |
| SHA1 | dbbe93de92b595894f99eab0729c191d9fbf45f8 file-hashmalwarerat | High | 70 | Jun 22, 26 |
| IP | 23.27.125.112 aptespionagemalware | High | 70 | Jun 22, 26 |
IOC Relationship Graph
IOC Relationship Graph160 total IOCs
DomainIPSHA1SHA256