Caught in the Net: Using Infostealer Logs to Unmask CSAM Consumers
Show in Graph
Image Description
Common Information
Type Value
UUID 7bee8e08-049b-48d5-bfb5-f5fe1e30de12
Fingerprint 3ac4a5cc84b5d62fb4136cd0e3953b5b22f91e5a8f128bf0e3d14c7d54f33652
Analysis status DONE
Considered CTI value 0
Text language
Published July 1, 2024, 4:06 p.m.
Added to db July 2, 2024, 6:19 p.m.
Last updated Aug. 31, 2024, 8:56 a.m.
Headline Caught in the Net: Using Infostealer Logs to Unmask CSAM Consumers
Title Caught in the Net: Using Infostealer Logs to Unmask CSAM Consumers
Detected Hints/Tags/Attributes 132/3/18
Source URLs
Redirection Url
Details Source https://go.recordedfuture.com/hubfs/reports/cta-2024-0702.pdf
URL Provider
Details Provider Source level domain
Details recordedfuture.com go.recordedfuture.com
Attributes
Details Type #Events CTI Value
Details Domain 546 
www.recordedfuture.com
Details Domain 1 
amorzinho.com
Details Domain 1 
resistance.onion
Details Domain 1 
email.net
Details Domain 1174 
gmail.com
Details Domain 1 
abe.illinois.gov
Details Domain 1 
illinoisjoblink.illinois.gov
Details Domain 77 
mega.nz
Details Domain 265 
recordedfuture.com
Details Email 1 
amorzinho@amorzinho.com
Details Email 1 
member@resistance.onion
Details Email 1 
real@email.net
Details Email 1 
a@aa.aa
Details Email 1 
x@y.net
Details Email 1 
marcos****@gmail.com
Details Email 1 
baseadogab****@gmail.com
Details Email 1 
dd*****@gmail.com
Details Email 1 
dar*****@gmail.com