# Copyright (c) 2014-2023 Maltrail developers (https://github.com/stamparm/maltrail/) # See the file 'LICENSE' for copying permission # Reference: https://gist.githubusercontent.com/Jquinn147/0891fdd018372a8cbf4e0f381ebab7a8/raw/60e9a48b2922538f87eab8849e012d67ea91cc25/FakeBatCampaign_020223 aida-x64.top ccleaner-cdn.top cpu-id.top crystaldiskinfo.top filezilla.top gpg4wins.top extractor-ultra.top lightshoot.top paintnet.top ultraiso.top # Reference: https://twitter.com/malwrhunterteam/status/1620171409438969860 # Reference: https://www.virustotal.com/gui/ip-address/185.26.122.20/relations 09formser.online 7ziq.online 7ziq.site 7ziq.website 7zlp.online 90formser.online 90formser.site blenderr.online blenderr.site blenderr.website blendler.online celfcu.online celfcu.site celfcu.space celfcu.website cirtix.site citrilxs.website citrixl.online citrixl.site citrixl.space citrixl.website citrixs.online citrixs.site citrlix.online citrlix.site citrlix.website citrlx.online citrlxx.online citrrix.online citrrix.site cittix.online cittrix.online cittrix.site cittrix.website clitrix.online clitrlix.online clitrlix.site clitrlix.website cltl.space cltl.website cltrix.online cltrixx.site diiscord.online dilscord.online disccord.online discordl.site discorld.online discorld.site discorrd.online discorrd.site discorrd.website disscord.website entcu.site entcu.space entcu.website omenote.online omenote.site oneenote.online oneenote.site onemote.site onenole.website onenolte.online onenolte.site onenolte.space onenolte.website onenoote.website onenotee.online onenotee.site onenotee.website onenotes.site onenotes.website onenotesx.website onenotex.online onenotle.site onenotle.website onenottes.online onenottes.site onenottes.website onenoute.site onnenote.online onnenote.website tmsteams.site v9-formss.website vvws9forms.online whatlsapp.website www-citi.online www-citi.space www-citi.website www-dcu.online # Reference: https://twitter.com/malwrhunterteam/status/1620174777083363328 pcapp.store # Reference: https://twitter.com/gorimpthon/status/1625409314080030720 # Reference: https://www.virustotal.com/gui/file/9f7c8b9f7205a8b5a29dfec9b77d906f858ef0da602f1658a915ce6e6fef4b15/detection advert-job.site # Reference: https://twitter.com/malwrhunterteam/status/1620866243199930368 bbasecaupe.space # Reference: https://www.virustotal.com/gui/ip-address/134.209.96.222/relations ddockerf.site docckerf.site dockeerf.site dockkerf.site doockerf.site webbexx.site webeexx.site weebexx.site wwebexx.site # Reference: https://twitter.com/idclickthat/status/1620526292314750976 www-apeswap.com # Reference: https://twitter.com/idclickthat/status/1620525514858590209 neonbats.fun # Reference: https://twitter.com/idclickthat/status/1620560824623575040 cyber-ghostsvpn.com cyberghost-vpnpro.com cyberghostpro-vpn.com cyberghostprovpn.com cyberghosts-vpn.com cyberghostvpn-pro.com cyberghostvpnpro.com cybergostsvpn.com gamingtop-vpn.com gamingtopvpn.com pandaa-vpn.com pandaavpn.com pandavpn-pro.com vpn-4games.com vpn4-games.com vpn4gamespro.com # Reference: https://twitter.com/idclickthat/status/1620494704512217088 zoom-in.tech zoomcloud.tech zoomcloud.tech zoomnow.tech zoomonline.tech # Reference: https://twitter.com/kyleehmke/status/1626233802690539521 teieqram.me teiergam.com teleqram.co telergam.co # Reference: https://twitter.com/Iamdeadlyz/status/1634759371308826625 # Reference: https://community.emergingthreats.net/t/ruleset-update-summary-2023-03-13-v10266/357 # Reference: https://www.recordedfuture.com/new-crypto-drainer-phishing-pages-siphon-cryptocurrency-seconds pingpongtool.xyz redeem-circle.com rewards-decentraland.com usdc-circle.com # Reference: https://twitter.com/idclickthat/status/1637936437747396610 # Refereence: https://www.virustotal.com/gui/ip-address/94.131.101.55/relations # Reference: https://www.virustotal.com/gui/file/92651f9418625e5281b84cccb817e94e6294b36c949b00fcd4046770b87f10e4/detection 88.119.175.124:443 citrixisdownload.com citrixteams.com citrixteams.shop citrixteams.world fortigroup.shop fortigroups.com