John FApr 26, 2024

Have you seen The Empire in your network?

A #cybercrime group, registered under โ€œEVILEMPIREโ€, is hosting dozens of #C2 servers between 185.172.128.0-185.172.128.255 including:
#RedLineStealer #LokiBot #HookBot #RisePro #Amadey #CobaltStrike #AsyncRAT #AMOS

Donโ€™t let your computers enlist! Block 185.172.128.0/24 ๐Ÿ”ฅ

Malwar3Ninja | Threatview.ioNov 24, 2023

[Threatview.io] ๐ŸŒ€Our telemetry from Proactive hunter for last 3 mnth - looks like #Hookbot is gaining popularity.

๐Ÿ”Activity seem to corelate with availability of a cracked/ free hookbot panel one of the telegram channels

๐Ÿ›‘ All IP's / Domains in our Daily blocklist published at our website and ๐Ÿ†“

#threatintel
#malware
#cti
#android