Mastodawn

Detected #SmartApeSG infection chain

Compromised site
-->
www[.]ski-snowboardvancouver[.]ca/d.js (injected)
-->
blitomra[.]top/scope/realm-html.js
-->
blitomra[.]top/scope/callback-fetch.php
-->
blitomra[.]top/scope/admin-controller.js (clickfix)
-->
qamderil[.]com/rspack (HTA)

Monitor SG 5h ago

Detected #SmartApeSG infection chain

Compromised site
-->
thesnackbee[.]com/d.js (injected)
-->
tirqavem[.]top/session/version-header.js
-->
tirqavem[.]top/session/realm-response.php
-->
tirqavem[.]top/session/login-stylesheet.js (clickfix)
-->
qamderil[.]com/rspack (HTA)

Monitor SG 9h ago

Detected #SmartApeSG infection chain

Compromised site
-->
tirqavem[.]top/session/realm-response.php
-->
tirqavem[.]top/session/login-stylesheet.js (clickfix)
-->
qamderil[.]com/rspack (HTA)

Monitor SG 13h ago

Detected #SmartApeSG infection chain

Compromised site
-->
mezcalpro[.]com/scq (injected)
-->
tirqavem[.]top/session/realm-response.php
-->
tirqavem[.]top/session/login-stylesheet.js (clickfix)
-->
qamderil[.]com/rspack (HTA)

Monitor SG 15h ago

Detected #SmartApeSG infection chain

Compromised site
-->
cpajoliette[.]com/q (injected)
-->
wexlunto[.]top/session/realm-response.php
-->
wexlunto[.]top/session/login-stylesheet.js (clickfix)

Monitor SG 1d ago

Detected #SmartApeSG infection chain

Compromised site
-->
cpajoliette[.]com/q (injected)
-->
wexlunto[.]top/session/realm-response.php
-->
wexlunto[.]top/session/login-stylesheet.js (clickfix)
-->
salkunet[.]com/v1/user/py (HTA)

Monitor SG 1d ago

Detected #SmartApeSG infection chain

Compromised site
-->
cpajoliette[.]com/q (injected)
-->
wexlunto[.]top/session/realm-response.php
-->
wexlunto[.]top/session/login-stylesheet.js (clickfix)
-->
pelgiron[.]com/v1/user/py (HTA)

Monitor SG 1d ago

Detected #SmartApeSG infection chain

Compromised site
-->
tirqavem[.]top/session/realm-response.php
-->
tirqavem[.]top/session/login-stylesheet.js (clickfix)
-->
pelgiron[.]com/v1/user/py (HTA)

Monitor SG 1d ago

Detected #SmartApeSG infection chain

Compromised site
-->
cpajoliette[.]com/meta.google.com (injected)
-->
wexlunto[.]top/session/version-header.js
-->
wexlunto[.]top/session/realm-response.php
-->
wexlunto[.]top/session/login-stylesheet.js (clickfix)
-->
pelgiron[.]com/v1/user/py (HTA)

Monitor SG 2d ago

Detected #SmartApeSG infection chain

Compromised site
-->
cpajoliette[.]com/q (injected)
-->
bemqorli[.]top/logout/route-sessionstore.php
-->
bemqorli[.]top/logout/signup-sandbox.js (clickfix)
-->
nivraxod[.]com/opo/call (HTA)