IOC Radar Logo
IOCRadar
IOC Radar Logo
IOCRadar

zbuckz.com

Suspicious Hostname
42.75%
SIGNAL STRENGTHModerate Noise
FIRST SEEN2025-01-11 14:48:12
LAST SEEN2025-04-24 21:49:06
CATEGORY
malware
supply chain attack
cryptocurrency threats
uefi/bios malware infection via bluetooth
bios/uefi infection via bluetooth with potential network propagation
MITRE
T1566 - Phishing
T1542 - Pre-OS Boot
T1190 - Exploit Public-Facing Application
T1053.005 - Scheduled Task
T1078.001 - Default Accounts
T1068 - Exploitation for Privilege Escalation
T1189 - Drive-by Compromise
T1202 - Indirect Command Execution
T1542.001 - System Firmware
T1566.001 - Spear Phishing via Service
TAGS
command and control
malicious software
cryptojacking
resource hijacking
process injection
distributed attacks
buy
best
squad
pre-boot execution
Eye Icon
SOCRadar
AI Insight

The domain zbuckz.com poses a significant security risk, exhibiting characteristics associated with potentially malicious or compromised infrastructure. Its consistently elevated threat score (42.75) across multiple reputable threat intelligence feeds including SOCRadar Threat Exchange Services, C2IP List, SOCRadar Attack Surface Intelligence (ASI), and AlienVault OTX Feeds suggests a pattern of suspicious activity. The domain's age (created 2025-01-11, last modified 2025-04-24) indicates sustained malicious activity, rather than a short-lived anomaly. Associated infrastructure and linked vulnerabilities, especially older CVEs, suggest possible exploitation or use in phishing campaigns or malware distribution. The large number of related objects (100) including files (license.php), hashes, hostnames, IP addresses, URLs and public reports necessitates immediate investigation to determine the scope of potential compromise and prevent further damage, especially considering the associated reports referencing potentially harmful content distribution and virus related mentions.

Domain Summary

Domain Rank:
-
IP Address Count:
1
Related Domain Count:
0
Subdomain Count:
0
Country:
United States

Top Classifications

Campaign:
-
Industry:
finance
Country:
-
Region:
-
Threat Actors:
-
Malware:
-

IP Range

Range:
-
Range Nature:
-
AS:
-

IP Categorization

Proxy
CDN
VPN
TOR
Hosting
Cloud
Cryptocurrency
Honeypot
Malware
Scanner
Threat Actor
Botnet

Vulnerabilities

CVE-2007-3205
CVE-2013-2220
CVE-2017-8923
CVE-2022-31628
CVE-2022-31629
CVE-2022-4900
CVE-2024-25117
CVE-2009-1390
CVE-2009-3765
CVE-2009-3766
CVE-2009-3767
CVE-2017-3735
CVE-2017-3736
CVE-2017-3737
CVE-2017-3738
CVE-2018-0732
CVE-2018-0734
CVE-2018-0737
CVE-2018-0739
CVE-2018-5407
CVE-2019-1547
CVE-2019-1551
CVE-2019-1552
CVE-2019-1559
CVE-2019-1563
CVE-2020-1968
CVE-2020-1971
CVE-2021-23840
CVE-2021-23841
CVE-2021-3712
CVE-2021-4160
CVE-2022-0778
CVE-2022-1292
CVE-2022-2068
CVE-2022-4304
CVE-2023-0215
CVE-2023-0286
CVE-2023-0464
CVE-2023-0465
CVE-2023-0466
CVE-2023-2650
CVE-2023-3817
CVE-2023-5678
CVE-2024-0727
CVE-2024-5458
CVE-2022-37454
CVE-2021-21703
CVE-2021-21706
CVE-2021-21707
CVE-2006-20001
CVE-2007-4723
CVE-2009-0796
CVE-2009-2299
CVE-2011-1176
CVE-2011-2688
CVE-2012-3526
CVE-2012-4001
CVE-2012-4360
CVE-2013-0941
CVE-2013-0942
CVE-2013-2765
CVE-2013-4365
CVE-2021-32785
CVE-2021-32786
CVE-2021-32791
CVE-2021-32792
CVE-2021-33193
CVE-2021-34798
CVE-2021-39275
CVE-2021-40438
CVE-2021-44224
CVE-2021-44790
CVE-2022-22719
CVE-2022-22720
CVE-2022-22721
CVE-2022-23943
CVE-2022-26377
CVE-2022-28330
CVE-2022-28614
CVE-2022-28615
CVE-2022-29404
CVE-2022-30556
CVE-2022-31813
CVE-2022-36760
CVE-2022-37436
CVE-2023-25690
CVE-2023-31122
CVE-2023-45802
CVE-2024-27316
CVE-2024-38474
CVE-2024-38476
CVE-2024-38477
CVE-2024-40898
CVE-2023-27522
CVE-2021-36160

Ports

No ports found

Threat Activity Timeline

Last 24 hours
Dormant
Last 7 Days
Minimal Activity
Last Month
Moderate
Last 3 Months
Moderate
Extended Threat Intelligence
Free Trial

Stay ahead with proactive cyber threat warnings

Discover how SOCRadar's all-in-one platform can help protect your digital assets with extended threat intelligence, digital risk protection, and attack surface management.