-
Notifications
You must be signed in to change notification settings - Fork 5
/
Copy pathblocklists-securonix.txt
243 lines (208 loc) · 11.4 KB
/
blocklists-securonix.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
## hosts-blocklists
## domains-ips-hashes
## blocklists-securonix
## https://www.securonix.com/blog
## https://www.securonix.com/securonix-threat-research-lab
# https://www.securonix.com/blog/analysis-and-detection-of-cloudreverser-an-attack-involving-threat-actors-compromising-systems-using-a-sophisticated-cloud-based-malware/
159.100.13.216
09FEE43F923FAAA30857A09C74D96FCA9354653835165A01B274CAD4C24460C7
4C37F3DB024AFD425301666E318C03E34F8813D21D90D95EFB4018B3196D07B8
4CB1E5CA257C709154B38704C34F4F0ADE5305263FB21E6142C90C10A5764D52
5F0642383CA70A3FD2C4491B2826002763E90CA25A7413869FD824E7745D0465
7BB7CA87149B6407E1E7C11C1A528A2E2147D3096337E3DA6F6BE130F76FF6AC
9B9A3DA9C602BF70A60CDB9B2BCA6F4472222E8431B6B5ECF82B010FE274BBA3
51D758FC04D05B997C651F658CDD30819EF5CF795D4498FAD919E75A320E72EA
59C49F31B5F389C1C0109B0E603E2679C4F63C3F5C64432E820A50F50B80124F
91bd0f7e5af15248c1e3f2908891bbd9262753910fe4bbd61729f0c184287153
590353941BAB80F38D77B2139BC7DA6888B3DFF9C8817C4B7E058F50173288BF
8955585100F75C59472E4C2C77FCDDD7422400F745AE75132C81C6144AA86824
b89d6be0bcfb915492beb7ae726f815dcf289a284e650c200bda4faf5db60fa1
BEAA71057AD064E96FC9F8227A7C2A3B8D70D13E45D5908F25C066D937D5BD9D
f4275b0d3c4b6f3a165984b862f4890df14cc346013a22412f7288c9fdc65690
F96631CDFFA6AE69E5432C38778F3B93E5335A935F62939CD0094E5CCB886460
# https://www.securonix.com/blog/analysis-of-devpopper-new-attack-campaign-targeting-software-developers-likely-associated-with-north-korean-threat-actors/
147.124.214.131
173.211.106.101
45c991529a421104f2edf03d92e01d95774bf54325f9107dd4139505912a0c1e
977A9024962102B02128D391C0543C63328D3F26701ECA1A5D282AF4D493DC2E
33617F0AC01A0F7FA5F64BD8EDEF737F678C44E677E4A2FB23C6B8A3BCD39FA2
F9CA12321FB91157CCE8513E935810D1C2005AB0739322B474F0CB4AF2605D16
# https://www.securonix.com/blog/securonix-threat-research-security-advisory-frozenshadow-attack-campaign/
23-95-209-148-host.colocrossing.com
bjSdg0.pintaexoticfashion.co.in
danteshpk.com
globalsolutionunlimitedltd.com
kasnackamarch.info
krd6.com
l1-03.winupdate.us.to
maramaravilha.com
mmtixmm.org
simplyfitphilly.com
skinnyjeanso.com
sokingscrosshotel.com
stratimasesstr.com
t0talwar.screenconnect.com
titnovacrion.top
winarkamaps.com
wireoneinternet.info
23.95.209.148
23.159.160.88
45.95.11.134
85.239.54.190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# https://www.securonix.com/blog/securonix-threat-research-security-advisory-new-deepgosu-attack-campaign/
gbionet.com
1B75F70C226C9ADA8E79C3FDD987277B0199928800C51E5A1E55FF01246701DB
46A5D54C264152CE915792AF31C75824A558AF7D7340D78B34E146D8C6249E79
69C917EA96DB28DBD5B67073CA0AAC234D25651A849171B45F20979EAFA05A1C
89CAD9A57985CC0AB3B7403A943AD0AA7B167DC7A3C38557417FEDEA67A77B87
60666CACDD6806ED05771F32EAA719E3EFD2F4DB55F28A447D383C3EAC1DC72E
1617587CCDF5B0344089559ECF8FE7D39F6E07A6A64F74F2B44BFA2C8CB67983
B72CAAB78D164637FEA0937D7A94FC470579EC6BB4FA87DADB6F0FA7826E217C
F262588C48D2902992FFD275D2BE6362FE7F02E2F00A44AB8C75AC1A2827C6E9
# https://www.securonix.com/blog/securonix-threat-research-knowledge-sharing-series-batch-obfuscation/
convertmast.com
east-healthy-dress.glitch.me
95.179.201.171
# https://www.securonix.com/blog/security-advisory-steadyursa-attack-campaign-targets-ukraine-military/
guvalas.ru
81.19.140.172
85.159.228.101
89.185.84.203
92.118.112.195
185.245.184.146
195.133.88.136
02A29C72C2B6B9AE4359743AC10C232668A51F330799B902B32989769768E84A
02459F35033D241A71124051153890CA8D3470AEBCE07446CF6E16D5757B51F1
029C0F4C44DA0733EC6455ABDD120FABA7FC7989489C3FE7CEC86C25BAD3E572
038FA00486EBE8A4F22F167FD664ACC41D59334489A920F7F24CAD2910CF3417
2F0375BB6A732010D0082F0F44F74D6A641E0A61C9F77D7922A15597CDA6A1CD
3A4C14D0745FC97839F904BACB8B42FD9EB620D736A29C08841A2E9C0E488D3B
3AAD467C86DBA8755E6F5209307CD311AB6F517F26578144E3C7B16308177D83
3BC1AFED855DBD8C729C50A74DFE01164673941DDF8DCAF4402D9B23EDC2F2CC
4EC3682BC45036A0C48C01208EC1FB07B8AF6D9F03AC803A51B34876B3BE245E
5E7AAD698DC49213CE6C9A1B2DCFCCC3F42769855D5169D41BAF99B46D405AD0
6CAD4614E91980AF16F9057764F98FB44CA2FA99DDCFF46B76297B3C8CD0BE0
6DDED7FC8B22BFCE6F7C548D75B20F01586D348982788626178D48C72D705E26
6EDC9B3FF9F69E86919D80B513E7CA4C93AC0DC03D6E40F85A8703FF49DA2758
7A925D78C3B0F30B16EE358EEC51F2A6439027BDF37B1C840DBC49FF1B224054
7C480891587F22CD8592CC4E9DD2F10D907E02CF46D6B4C188ADB13669AB3AEC
8ECE5D5C77C3A03B50C756F39B9212956143B969223318530A8DBB9F3D9F5F3D
8F9AD0AD2BA5499CAF098C3DC055888883D1268257CF923A380E7C3460F1C63D
9D1F858D2325A27944A21387B78FA3957B904325350E580E8DE5255AA650CB1D
19CCDB29F65B6BD79E536FCD3560874D8A725730BF24365CA9695C0322BB33D8
52B7243B9C07A51DABB3DC69216ADB6E277ACFFA827D2599C68C331ADEE8FEAF
79C2038B401391923C4253A5409AE537E8D397C8DFE8510B9C467BE78CA04F59
252A6736420862DB7A275A16F5C3D4F3E51784244CCF72FCFA30236439D834C8
462BE856BF70BC25DF2A694825D99B97453F117100A3309DF3C03B1FC60EAA61
920BD70612E63C673CE3B84B4A1FC7319C2FB01FA940D8A269429FF8FDD5D018
2861CE32762327228F9875643AB253E2C2B04565739B65919D2AFDDE405A9AEA
3063D671609088BB518FF69FDEC337EDD1BA5626BD427E03ED8D9D0F8EA4F14F
5302E764A9638D86F787137ED02D6C59A4E1E6AA2E7BEE27EC91653C83E3127A
5460CBEBC25FE4C856AFC5089702AFAA90EDCBC25C4980E021D1C59BF4E059EA
5856E52224EC2C7D322FE28E207A8AEF5D7B69032ED060FBD1EAD7331F67A004
17752B3F3B452ACAF372108CC233CA67790FF62716916A9B84B4E3EF31E89883
61370D0AC56F73321C11876424EC75E2740D6910FF53B0791F0560C72D85B330
3678034E693E3451754401C1B71D841DC8DCD63EA2DD9343FE52C81FD056D519
8102995258F1D800A76273213AE57B3A320CBAFED491C101DB5EB7B191CE53D7
AA01B0CC318286ED4DB10B23D2A3CD27482EF2B0DF794234F62E2D59CFC67336
B22E3F12A8C41096D83DA3F9E04931AFE60A7BB182261861569858E3D50967CA
B257088C0D3CA65F3A3BDA1B8CECF942D0967F3591E182EC32474737AB6BF3C6
BF754818C4033247F645C66E7A61E6E755795982339E74011857C79EF17F391D
C0A01267184FC943D6C5D373341FD495ECF6D69154343E3980A11635446D522F
C44ACD1B6961D585E89366D0FE0C2DAC3FD6103318EC8FEBA3E4926C85B85A02
C32844822C46D76E39AFD825348AB07D45CC6015A544DEBDF0C39A438D66006B
D7E228473690FEC029A0204FEB2AE58504A869C86686194B8034C21718A55BE7
D222977AB20317647595C9DE7413BD17A8074006007150102AA2B569FC2CCBF1
E7E9D09E181901FE7F2FEE367AB9B7E6AE05150E3EE01046F370078911AB215C
EC6283E87ABC73CDF0AF2120A77EA3140904B261D61782369B9A25431AEE9EBF
ED891F921F379916F6119C32DAFD068B13B216D11AB8F212BD309EF39F24D0DE
EEC752C82A84C1A5BC949FDD6FE23D70C8837A03184AA89A1E9698C730A51582
# https://www.securonix.com/blog/securonix-threat-research-security-advisory-technical-analysis-and-detection-of-two-zero-day-vulnerabilities-in-ivanti-connect-secure-vpn/
psecure.pro
65.130.146
92.254.14
252.183.116
# https://www.securonix.com/blog/securonix-threat-research-security-advisory-new-returgence-attack-campaign-turkish-hackers-target-mssql-servers-to-deliver-domain-wide-mimic-ransomware/
seruvadessigen.3utilities.com
45.148.121.87
88.214.26.3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# https://www.securonix.com/blog/seolurker-attack-campaign-uses-seo-poisoning-fake-google-ads-to-install-malware/
gaweeweb.com
niubab.com
pr-uae.com
141.98.6.195
194.169.175.221
194.180.48.42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