{ "61f4dae4-905f-42ab-a385-fb6a6f4d2885": { "event_id": 11054, "created_at": "2021-04-29T16:40:47.263943+00:00", "updated_at": "2021-04-29T16:46:47.740613+00:00", "name": "Campagna Flubot DHL via SMS", "description": "", "subject": "Hai un pacco nel nostro magazzino. Ti preghiamo di richiederlo cliccando qui", "tlp": "0", "campaign_type": "malware", "method": "linked", "country": "italy", "file_type": [ "apk" ], "theme": "Delivery", "malware": "Flubot", "phishing": null, "tag": [], "ioc_list": { "md5": [], "sha1": [], "sha256": [], "imphash": [], "domain": [], "url": [ "https://catkinhsaigon.com/dhl/", "https://aldeaescondida.mx/dhl/", "https://www.koji.vn/dhl/", "https://www.khushii.org/dhl/", "https://kwc-iran.ir/dhl/", "https://huopic.com/dhl/", "https://omg-career.com/ups/", "https://opsealog.com/ups/", "https://rfcm-tn.com/ups/", "https://www.rubindecelis.es/dhl/", "https://txtfinder.xyz/dhl/", "https://www.sooryacricket.club/dhl/", "https://pelpeemedia.com/ups/", "https://simaalexandru.me/dhl/", "https://cleantown.eu/ups/", "https://911us.us/ups/", "https://envolve.adv.br/dhl/", "https://xn--bj0bs4gg8e6k26opzcb8kmmkgnbe0gcr3b.kr/ups/", "https://westbayenergy.com/dhl/", "https://opsealog.com/dhl/", "https://dev.ctservices.gr/ups/", "https://rgbmedia.vn/dhl/", "https://nucleisense.com/dhl/", "https://huopic.com/ups/", "https://mrrooster.com.au/dhl/", "https://bardomane.com.br/dhl/", "https://stormboutiquex.co.uk/dhl/", "https://wordpress.vexil.in/ups/", "https://rahemsley.com/dhl/", "https://sachngoaingugiare.com/dhl/", "https://fizzybay.com/dhl/", "https://its-globaltek.com/dhl/", "https://www.normalthai.ru/ups/", "https://dev.psengltd.com/dhl/", "https://sandance.ru/ups/", "https://evestore.id/ups/", "https://qtrading.com.sa/dhl/", "https://doradoart.ir/dhl/", "https://macengdictionary.com/ups/", "https://omastroinfo.in/dhl/", "https://jobs.datamime.ai/ups/", "https://tresraices.mx/dhl/", "https://wordpress.vexil.in/dhl/", "https://kaoyucatan.com/dhl/", "https://cleanvisionpro.xyz/dhl/", "https://www.palmaresyucatan.com/dhl/", "https://tucorp.com.au/dhl/", "https://www.7patterns.in/dhl/", "https://www.sooryacricket.club/ups/", "https://youtuberealtortraining.com/ups/", "https://batdongsanthetrue.com/ups/", "https://semanadaastrologia.com.br/dhl/", "https://okolab4microsystems.com/dhl/", "https://ewiki.vnexpress.net/ups/", "https://www.altamisa.mx/dhl/", "https://product.md/dhl/", "https://evestore.id/dhl/", "https://www.sone.lk/ups/", "https://www.goatstudio.sg/ups/", "https://apriori.design/ups/", "https://www.coffeservice.it/dhl/", "https://brandpa.in/dhl/", "https://shadhintechnicians.com/dhl/", "https://grape.engineering/ups/", "https://www.telinhamosquiteiro.com.br/dhl/", "https://product.md/ups/", "https://batdongsanthetrue.com/dhl/", "https://www.dietisana.com/dhl/", "https://ieeesjcesbc.org/dhl/", "https://www.yourdigitalpeople.com/dhl/", "https://995sunsun.com.tw/ups/", "https://www.drcatalan.com/dhl/", "https://afzapayam.ir/dhl/" ], "ipv4": [], "email": [] }, "email_victim": [], "ioca_version": "1.0", "organization": "cert-agid" } }