IOC Radar
TLP:WHITE208 IOCs

Maltrail IOC for 2026-06-22

CO
CIRCL OSINT Feed
Published June 22, 2026Original Report

Malware Families

Diamond Model

SOCIAL AXISTECHNOLOGY AXISADVERSARYunknownINFRASTRUCTUREixyausghxa.clickantxzone.dynu.net38.47.123.84CAPABILITYLummaVICTIMunknown
Adversary
Infrastructure(6)
Capability(1)
Victim

5W+H Threat Analysis

Analysis unavailable

Indicators of Compromise

Indicators of Compromise208

TypeIndicatorConfidenceScoreFirst Seen
Domainixyausghxa.click
aptespionagemalware
High
70
Jun 22, 26
Domainantxzone.dynu.net
aptespionagemalware
High
70
Jun 22, 26
IP38.47.123.84
aptespionagemalware
High
70
Jun 22, 26
Domainnbwuquc.com
aptespionagemalware
High
70
Jun 22, 26
SHA1aa0177c6776c99f2ee98c3f909910b9840316445
aptespionagefile-hash
High
70
Jun 22, 26
IP89.124.115.82
indicatormalwarenetwork
High
70
Jun 22, 26
Domainmois-nun.dynuddns.net
aptespionagemalware
High
70
Jun 22, 26
SHA2564ce45e016a304d813e67b29a08265b2101c2e15a09ace5de6539cad02567affe
file-hashindicatormalware
High
70
Jun 22, 26
SHA1c33fe893281d8ad7df05ad29df89c04146be2953
file-hashindicatormalware
High
70
Jun 22, 26
SHA1cd807d15586ce7e4bb9793f922af162234e0dcdb
file-hashmalwarespam
High
68
Jun 23, 26
Domaingsgc2.ddns.net
indicatormalwarenetwork
High
70
Jun 22, 26
Domainadapter-ouath.vercel.app
aptespionageexploit
High
68
Jun 23, 26
Domainsplftez.com
aptespionagemalware
High
70
Jun 22, 26
Domainmoneyglitch.fun
aptespionageexploit
High
68
Jun 23, 26
Domain132.226.100.149.nip.io
indicatormalwarenetwork
High
70
Jun 22, 26
Domainsdahdor.com
aptespionagemalware
High
70
Jun 22, 26
Domainncodevpass.dynu.org
aptespionagemalware
High
70
Jun 22, 26
Domainiketqtb.com
aptespionagemalware
High
70
Jun 22, 26
Domainmew001.dynuddns.net
aptespionagemalware
High
70
Jun 22, 26
IP202.141.236.42
aptespionagemalware
High
70
Jun 22, 26
Domain38.47.123.84.nip.io
aptespionagemalware
High
70
Jun 22, 26
Domainarmmiddle.cfd
aptespionageloader
High
70
Jun 22, 26
Domainngeiido.com
aptespionagemalware
High
70
Jun 22, 26
Domaintest7.sbtx.me
aptespionagemalware
High
70
Jun 22, 26
Domainnkejzoe.com
aptespionagemalware
High
70
Jun 22, 26
Domainedoc.mew003.dynuddns.net
aptespionagemalware
High
70
Jun 22, 26
Domainmaintenanceroutine.com
malwarenetworkstealer
High
68
Jun 23, 26
Domainlaicai666.com
aptespionagemalware
High
70
Jun 22, 26
Domainuuutalk.com.cn
aptespionagemalware
High
70
Jun 22, 26
Domainepwunpl.com
aptespionagemalware
High
70
Jun 22, 26
IP185.203.39.99
indicatormalwarenetwork
High
70
Jun 22, 26
SHA1d6396cc12d2ecf9db9aeabe57d0690bb6f6d4d67
file-hashloadermalware
High
70
Jun 22, 26
Domainedoc.mew006.dynuddns.net
aptespionagemalware
High
70
Jun 22, 26
Domainc2.greifvogel.ch
indicatormalwarenetwork
High
70
Jun 22, 26
IP152.53.20.140
aptespionagemalware
High
70
Jun 22, 26
Domainmew006.dynuddns.net
aptespionagemalware
High
70
Jun 22, 26
SHA1ec9dc2a56490417d18eda72b5380da5d40e67fc9
file-hashloadermalware
High
70
Jun 22, 26
Domainnsidmlog.dynu.org
aptespionagemalware
High
70
Jun 22, 26
Domainlpgoewb.com
aptespionagemalware
High
70
Jun 22, 26
Domainbewowgc.com
aptespionagemalware
High
70
Jun 22, 26
Domainedoc.mew004.dynuddns.net
aptespionagemalware
High
70
Jun 22, 26
Domaindmdoc.dynv6.net
aptespionagemalware
High
70
Jun 22, 26
Domainchenjad.com
aptespionagemalware
High
70
Jun 22, 26
Domainpricemk.cyou
malwarenetworkstealer
High
68
Jun 23, 26
Domainprentiva99.info
indicatormalwarenetwork
High
70
Jun 22, 26
Domainhga5568.com
indicatormalwarenetwork
High
70
Jun 22, 26
Domainnebulqj.cyou
malwarenetworkstealer
High
68
Jun 23, 26
Domain13stripescleaning.com
indicatormalwarenetwork
High
70
Jun 22, 26
IP161.97.93.60
malwarenetworkrat
High
70
Jun 22, 26
SHA1b7f65cabde5037b0b2f18571323c1ef7f15d2188
aptespionagefile-hash
High
70
Jun 22, 26
Domainpoldocsinf.dynu.net
aptespionagemalware
High
70
Jun 22, 26
Domainbownslackcorp.com
malwarenetwork
High
68
Jun 23, 26
SHA1fc09fa16a2bc754d8e60bd7278fcf3f70f109840
file-hashmalwarestealer
High
68
Jun 23, 26
Domainapp.miloyannopoulos.com
botnetindicatorloader
High
86
Jun 22, 26
Domainemailsendr.publicvm.com
malwarenetworkstealer
High
68
Jun 23, 26
Domainrushaxv.cyou
malwarenetworkstealer
High
68
Jun 23, 26
Domaingigadatsolutions.dubya.net
indicatormalwarenetwork
High
70
Jun 22, 26
Domainrichardjini.com
malwarenetwork
High
68
Jun 23, 26
Domaina.hga5999.com
indicatormalwarenetwork
High
70
Jun 22, 26
Domainnationalts.dynu.net
aptespionagemalware
High
70
Jun 22, 26
IP178.104.57.130
indicatormalwarenetwork
High
70
Jun 22, 26
Domainmeshcore.nephelae-cloud.com
indicatormalwarenetwork
High
70
Jun 22, 26
Domainmulchga.cyou
malwarenetworkstealer
High
68
Jun 23, 26
Domainqwvxrsf.com
aptespionagemalware
High
70
Jun 22, 26
Domainvote.cream.finance
aptespionageexploit
High
68
Jun 23, 26
SHA1624fc75747db3eae61652f23ef603bedfbe04efd
aptespionagefile-hash
High
70
Jun 22, 26
Domainolkkinjahsas.xyz
aptespionagemalware
High
70
Jun 22, 26
Domainnationalts.dynuddns.net
aptespionagemalware
High
70
Jun 22, 26
Domainfhfmjtn.com
aptespionagemalware
High
70
Jun 22, 26
Domainnewstarcommunications.com
malwarenetwork
High
68
Jun 23, 26
IP49.235.153.53
indicatormalwarenetwork
High
70
Jun 22, 26
Domainrabinlawco.com
indicatormalwarenetwork
High
70
Jun 22, 26
Domain161-97-93-60.sslip.io
malwarenetworkrat
High
70
Jun 22, 26
Domainacnms.dmdoc.dynv6.net
aptespionagemalware
High
70
Jun 22, 26
Domainauditva.cyou
malwarenetworkstealer
High
68
Jun 23, 26
IP113.207.105.196
loadermalwarenetwork
High
70
Jun 22, 26
Domainmew004.dynuddns.net
aptespionagemalware
High
70
Jun 22, 26
Domainvxtxrhh.com
aptespionagemalware
High
70
Jun 22, 26
Domain52talk.net
aptespionagemalware
High
70
Jun 22, 26
IP89.124.95.161
indicatormalwarenetwork
High
70
Jun 22, 26
IP91.92.241.109
malwarenetworkstealer
High
68
Jun 23, 26
SHA2562a2b10c0e250ed8c6256e05967af1425c70a290d10322d73ead0d34ec7dfd592
file-hashindicatormalware
High
70
Jun 22, 26
Domainkongpcg.com
aptespionagemalware
High
70
Jun 22, 26
Domaindeepratsms.ddns.net
malwarenetworkrat
High
70
Jun 22, 26
Domainag.hga5999.com
indicatormalwarenetwork
High
70
Jun 22, 26
IP161.33.141.99
indicatormalwarenetwork
High
70
Jun 22, 26
SHA1f8745b79fc196b86e7e6b9cd2866298efbeb1294
file-hashmalware
High
68
Jun 23, 26
Domainxgspgpu.com
aptespionagemalware
High
70
Jun 22, 26
Domain027.st
aptespionagemalware
High
70
Jun 22, 26
Domainmew005.dynuddns.net
aptespionagemalware
High
70
Jun 22, 26
Domainelasqcf.cyou
malwarenetworkstealer
High
68
Jun 23, 26
Domainfzovqfn.com
aptespionagemalware
High
70
Jun 22, 26
Domainfutkwlc.com
aptespionagemalware
High
70
Jun 22, 26
IP166.88.1.247
indicatormalwarenetwork
High
70
Jun 22, 26
SHA1b457f6f725faf3cd5665a5c306b4f6204e9dc787
file-hashindicatormalware
High
70
Jun 22, 26
Domain120.st
aptespionagemalware
High
70
Jun 22, 26
Domainedoc.mew002.dynuddns.net
aptespionagemalware
High
70
Jun 22, 26
Domaingoldmanadv.com
indicatormalwarenetwork
High
70
Jun 22, 26
Domainlkqywio.com
aptespionagemalware
High
70
Jun 22, 26
SHA25639019279686c820c3af5684012a0085a7e2109f612c9fab886dd0577ace5b5c6
file-hashloadermalware
High
70
Jun 22, 26
IP154.31.217.203
aptespionageloader
High
70
Jun 22, 26
Domaincriolqs.cyou
malwarenetworkstealer
High
68
Jun 23, 26
Domainnode-js.prentiva99.info
botnetindicatorloader
High
86
Jun 22, 26
Domainsafdadfasf.com
malwarenetwork
High
68
Jun 23, 26
Domaindfdaqbz.com
aptespionagemalware
High
70
Jun 22, 26
SHA2564e622dab403688309dd7124d6d4a8b153fc6852bc53b6e043434ecc22841925b
file-hashmalwarespam
High
68
Jun 23, 26
Domaingoffmanlawyer.com
indicatormalwarenetwork
High
70
Jun 22, 26
Domainmew008.dynuddns.net
aptespionagemalware
High
70
Jun 22, 26
SHA25654d31e5b1786f4433284981d8d63f83b587271c0d331727ba5490b8e1ec30dbe
file-hashmalwarestealer
High
68
Jun 23, 26
Domainastrale.cyou
malwarenetworkstealer
High
68
Jun 23, 26
Domainforbidden.38.47.123.84.nip.io
aptespionagemalware
High
70
Jun 22, 26
Domainc2.defensive-dst.com
indicatormalwarenetwork
High
70
Jun 22, 26
SHA1bf00b1a19e4fff97eae9feac15ac7fef36c2b00e
file-hashindicatormalware
High
70
Jun 22, 26
SHA116e6fdbf1561ba53b763441bd5328dcbc1749385
file-hashmalwarestealer
High
68
Jun 23, 26
Domainiijwvpg.com
aptespionagemalware
High
70
Jun 22, 26
Domainag.hga7666.com
indicatormalwarenetwork
High
70
Jun 22, 26
Domainmew003.dynuddns.net
aptespionagemalware
High
70
Jun 22, 26
SHA25663bcea329041f266c2664c59944fd6c10d4604af9c81393f7679cb9b7403e22d
file-hashmalware
High
68
Jun 23, 26
Domainpump.fun-scene.xyz
indicatormalwarenetwork
High
70
Jun 22, 26
Domainiykzhnf.com
aptespionagemalware
High
70
Jun 22, 26
IP93.123.109.228
indicatormalwarenetwork
High
70
Jun 22, 26
Domainripezvo.cyou
malwarenetworkstealer
High
68
Jun 23, 26
IP188.166.219.1
indicatormalwarenetwork
High
70
Jun 22, 26
Domaintrbdoxt.com
aptespionagemalware
High
70
Jun 22, 26
Domain46.29.234.39.sslip.io
malwarenetwork
High
68
Jun 23, 26
Domainygiujpr.com
aptespionagemalware
High
70
Jun 22, 26
Domainlabresults.me
indicatormalwarenetwork
High
70
Jun 22, 26
Domaincoinospot.online
aptespionagemalware
High
70
Jun 22, 26
Domainchaojishijiebei.com
aptespionagemalware
High
70
Jun 22, 26
Domainchrysqn.cyou
malwarenetworkstealer
High
68
Jun 23, 26
Domainnid-naverovb.svcma.com
aptespionagemalware
High
70
Jun 22, 26
Domainai.xzloveqing.top
malwarenetworkstealer
High
68
Jun 23, 26
Domainnode22.lunes.host
aptespionagemalware
High
70
Jun 22, 26
IP132.226.100.149
aptespionagemalware
High
70
Jun 22, 26
Domainpolsecu.dynu.net
aptespionagemalware
High
70
Jun 22, 26
Domainedoc.mew008.dynuddns.net
aptespionagemalware
High
70
Jun 22, 26
Domainh5.aylesworth.info
indicatormalwarenetwork
High
70
Jun 22, 26
Domainmew002.dynuddns.net
aptespionagemalware
High
70
Jun 22, 26
Domaindyxngeb.com
aptespionagemalware
High
70
Jun 22, 26
IP46.29.234.39
malwarenetworkstealer
High
68
Jun 23, 26
Domainepncqxj.com
aptespionagemalware
High
70
Jun 22, 26
Domainbeastiesenterprise.com
malwarenetwork
High
68
Jun 23, 26
Domainzesihat.com
aptespionagemalware
High
70
Jun 22, 26
Domainwritersfm.com
loadermalwarenetwork
High
86
Jun 6, 26
SHA10afa9dd3eea4cf549b181fe75666d7fbfd8a29c8
file-hashmalwarestealer
High
68
Jun 23, 26
Domainhtszhle.com
aptespionagemalware
High
70
Jun 22, 26
Domainzekfamb.com
aptespionagemalware
High
70
Jun 22, 26
SHA166d4513aba6e9bff3f52c871f0522947b3efa006
file-hashmalwarestealer
High
68
Jun 23, 26
Domainbuyinpt.cyou
malwarenetworkstealer
High
68
Jun 23, 26
Domainovercjo.cyou
malwarenetworkstealer
High
68
Jun 23, 26
IP185.203.39.103
indicatormalwarenetwork
High
70
Jun 22, 26
Domainfun-scene.xyz
indicatormalwarenetwork
High
70
Jun 22, 26
Domainejemznu.com
aptespionagemalware
High
70
Jun 22, 26
Domainthematrix.cc
indicatormalwarenetwork
High
70
Jun 22, 26
SHA1eaf40f627c3e7eb105bcbb458878e618b621fbff
file-hashindicatormalware
High
70
Jun 22, 26
Domainiohyuzxbchcq.xyz
aptespionagemalware
High
70
Jun 22, 26
Domainncodevverify.dynu.org
aptespionagemalware
High
70
Jun 22, 26
Domainnhiscorps.dynu.org
aptespionagemalware
High
70
Jun 22, 26
SHA1b355546769f70e42b5e2e73d8a81619c8ad567fc
file-hashmalware
High
68
Jun 23, 26
SHA12c442e24cce30861f3f0526fed1da6c7b8f9355c
file-hashmalwarestealer
High
68
Jun 23, 26
Domainxblsbro.com
aptespionagemalware
High
70
Jun 22, 26
SHA1653892d2740605b9de62dead1d1d321bb4823631
file-hashindicatormalware
High
70
Jun 22, 26
SHA1688dc5e96c48ef4597a0d83aa589140674e28d7b
file-hashindicatormalware
High
70
Jun 22, 26
SHA10635fa5068f38f7d43769628bde1a6c2f14894ff
file-hashindicatormalware
High
70
Jun 22, 26
Domainedoc.mew005.dynuddns.net
aptespionagemalware
High
70
Jun 22, 26
Domainxianhsgfvbcash.click
aptespionagemalware
High
70
Jun 22, 26
SHA17bac24270c06e7b36ae3a429c3aa1a3c5adf76dc
aptespionagefile-hash
High
70
Jun 22, 26
Domainjpbmxie.com
aptespionagemalware
High
70
Jun 22, 26
Domainutvhis.dynu.net
aptespionagemalware
High
70
Jun 22, 26
Domaintetetest.duckdns.org
malwarenetworkstealer
High
68
Jun 23, 26
Domaingreenhoodenterprise.com
malwarenetwork
High
68
Jun 23, 26
Domainc2.absolutely-not-a-virus.zip
indicatormalwarenetwork
High
70
Jun 22, 26
SHA256b0a6f7afa4877eab5085d49207e26d1d2461d2d61d71a4d406e81e9f30711c5e
file-hashindicatormalware
High
70
Jun 22, 26
Domainc2.apollo-labs.xyz
indicatormalwarenetwork
High
70
Jun 22, 26
Domaininidanniafuu.com
indicatormalwarenetwork
High
70
Jun 22, 26
Domainedoc.mew001.dynuddns.net
aptespionagemalware
High
70
Jun 22, 26
Domainportfolio.onyx-studio.online
malwarenetwork
High
68
Jun 23, 26
Domainmiloyannopoulos.com
indicatormalwarenetwork
High
70
Jun 22, 26
Domainwssrumk.com
aptespionagemalware
High
70
Jun 22, 26
SHA10992bbda303d6e9f7db10954d472f0e43ee8af3c
aptespionagefile-hash
High
70
Jun 22, 26
Domainmew007.dynuddns.net
aptespionagemalware
High
70
Jun 22, 26
SHA12ac72f332d9cf45e768cfe4d60c4b6cf1d65a555
aptespionagefile-hash
High
70
Jun 22, 26
IP198.23.209.169
indicatormalwarenetwork
High
70
Jun 22, 26
Domainlinye666.pw
indicatormalwarenetwork
High
70
Jun 22, 26
Domainedoc.mew007.dynuddns.net
aptespionagemalware
High
70
Jun 22, 26
Domainlvwefwl.com
aptespionagemalware
High
70
Jun 22, 26
SHA1d6ba7e078ce8421db8dc7ca0a61010d386beb044
file-hashmalware
High
68
Jun 23, 26
Domainlimbcre.cyou
malwarenetworkstealer
High
68
Jun 23, 26
Domainkodiakflnence.org
malwarenetwork
High
68
Jun 23, 26
Domainpckjjte.com
aptespionagemalware
High
70
Jun 22, 26
Domainturacpn.cyou
malwarenetworkstealer
High
68
Jun 23, 26
IP136.175.82.101
malwarenetworkstealer
High
68
Jun 23, 26
SHA1f12ce4f06f0ccc8a3f087419813d71fb249d28a4
aptespionagefile-hash
High
70
Jun 22, 26
SHA183147fed67052629680a66fdd9f71ea8817c6a4a
aptespionagefile-hash
High
70
Jun 22, 26
SHA16af79dd521302d465d55dd558bc02292fea997d8
file-hashindicatormalware
High
70
Jun 22, 26
IP101.201.62.40
indicatormalwarenetwork
High
70
Jun 22, 26
Domainesfjyra.com
aptespionagemalware
High
70
Jun 22, 26
IP47.109.92.206
indicatormalwarenetwork
High
70
Jun 22, 26
Domainnsmdnsi.dynu.org
aptespionagemalware
High
70
Jun 22, 26
Domaingotrwag.com
aptespionagemalware
High
70
Jun 22, 26
IP23.27.249.58
malwarenetworkproxy
High
70
Jun 22, 26
Domainnamlongland.net
indicatormalwarenetwork
High
70
Jun 22, 26
Domainncodevcheck.dynu.org
aptespionagemalware
High
70
Jun 22, 26
Domainbetavmt.cyou
malwarenetworkstealer
High
68
Jun 23, 26
SHA1dbbe93de92b595894f99eab0729c191d9fbf45f8
file-hashmalwarerat
High
70
Jun 22, 26
Domain3333.xyz
aptespionageexploit
High
68
Jun 23, 26
IP23.27.125.112
aptespionagemalware
High
70
Jun 22, 26
Domainquestealer.world
malwarenetworkstealer
High
68
Jun 23, 26

IOC Relationship Graph

IOC Relationship Graph208 total IOCs
DomainIPSHA1SHA256
Domain148SHA128IP25SHA2567Malware1REPORTMaltrail IOC for 2026-06-2Lumma
scroll to zoom · drag to pan · click IOC to open