Name: Incident C4CA4238: Malware & C2 Indicators
Creator: ca-identities.wiki Research Lab
License: https://creativecommons.org/licenses/by-sa/4.0/

IOC / Reference	Classification	Actor	Risk
saxun.net	XSS	APT41 (Double Dragon)	60
vipbet89ukcom.onlc.ml	Phishing	Turla	21
reactos.org	Spear Phishing	APT28 (Fancy Bear)	57
xoops.ec-cube.net	Whaling	Magecart	63
900betukcom-9ef71b.webflow.io	Zero-Day Exploit	APT28 (Fancy Bear)	32
paper.wf	SQL Injection	Rocket Kitten	37
log.concept2.com	Botnet Activity	Gamaredon	32
www.igesi.edu.pe	C2 Communication	Equation Group	64
Scientific Study: Agile methodology	Zero-Day Exploit	DarkSide	78
blogfreely.net	Whaling	APT28 (Fancy Bear)	48
kemono.im	Lateral Movement	Deep Panda	70
music.amazon.com.mx	Zero-Day Exploit	DarkSide	90
vimeo.com	Remote Code Execution (RCE)	DarkSide	34
moonzflower.com	Remote Code Execution (RCE)	DarkSide	49
Debug Express.js	Brute Force	Magecart	86
hackmd.openmole.org	Remote Code Execution (RCE)	Gamaredon	92
rentry.co	Zero-Day Exploit	REvil	72
www.keepandshare.com	C2 Communication	Sandworm	48
ofuse.me	CSRF	DarkSide	65
www.aparat.com	Remote Code Execution (RCE)	Turla	59
clickbet88ukcom1.stck.me	Whaling	Gamaredon	58
PyPI: Fedora	C2 Communication	REvil	25
onrtip.gov.jm	CSRF	DarkSide	99
www.mshowto.org	Whaling	APT28 (Fancy Bear)	17
aboutcasemanagerjobs.com	Rootkit	Conti	29
jakle.sakura.ne.jp	Lateral Movement	Silence	65
lt.gravatar.com	DDoS	Conti	78
dominerbusiness.com	Data Exfiltration	APT29 (Cozy Bear)	34
Q&A: NFT	Adware	Sandworm	49
alianzy-businesspartnership.com	Credential Stuffing	Gamaredon	33
csdlcntmgialai.gov.vn	Worm	APT41 (Double Dragon)	48
sv.enrollbusiness.com	DNS Tunneling	APT28 (Fancy Bear)	26
herbalmeds-forum.biolife.com.my	Beaconing	Rocket Kitten	73
machir-digitalmarketing.com	Credential Stuffing	Equation Group	63
camp-fire.jp	Whaling	Wizard Spider	47
academia.sanpablo.edu.ec	Credential Stuffing	Carbanak	72
foodbagtoday.com	Trojan	Carbanak	15
sk.pinterest.com	Phishing	Carbanak	94
zenwriting.net	Man-in-the-Middle	Gamaredon	68
Academic: Svelte	DDoS	OilRig	76
www.driedsquidathome.com	Fileless Malware	Carbanak	31
c54events12.blogspot.com	Fileless Malware	Equation Group	91

Incident C4CA4238: Malware & C2 Indicators

Real-time threat intelligence feed for Defense sector. Report #C4CA4238 contains IoCs, TTPs, and risk scoring for active campaigns detected in the last 24 hours.