A Profile of IRS Scammers: Behind Tax Fraud
Common Information
| Type | Value |
|---|---|
| UUID | c206ad28-50f4-44cd-8dde-9ccc5fb13aab |
| Fingerprint | cafbae5b978768e08d10973ab523db54f3dfe4a1155262f95318cbb4a3a40a24 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | April 1, 2015, 11:31 a.m. |
| Added to db | April 14, 2024, 11:45 a.m. |
| Last updated | Aug. 30, 2024, 11:03 p.m. |
| Headline | A Profile of IRS Scammers: Behind Tax Fraud |
| Title | A Profile of IRS Scammers: Behind Tax Fraud |
| Detected Hints/Tags/Attributes | 126/3/195 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | benben74.no-ip.org |
|
| Details | Domain | 1 | ip.pin |
|
| Details | Domain | 1 | davidsmithestate.co.uk |
|
| Details | Domain | 1 | dunlam007.ru |
|
| Details | Domain | 1 | davidestlincon.com |
|
| Details | Domain | 1 | dunlamisdavid.com |
|
| Details | Domain | 1 | ayool2day.biz |
|
| Details | Domain | 136 | mail.com |
|
| Details | Domain | 1 | crackingforum.com |
|
| Details | Domain | 1 | cardersforum.se |
|
| Details | Domain | 1 | idontknows.biz |
|
| Details | Domain | 1 | idontlnows.biz |
|
| Details | Domain | 1 | ma2dayzs.com |
|
| Details | Domain | 1 | svkmrhosting.biz |
|
| Details | Domain | 23 | irs.gov |
|
| Details | Domain | 1 | ayool.no-ip.org |
|
| Details | Domain | 1 | ayool1.no-ip.org |
|
| Details | Domain | 1 | ayool3.no-ip.org |
|
| Details | Domain | 1 | baleareson.net |
|
| Details | Domain | 1 | bamisoro.no-ip.biz |
|
| Details | Domain | 1 | business11.no-ip.org |
|
| Details | Domain | 1 | chuks052.no-ip.org |
|
| Details | Domain | 1 | clak64.no-ip.org |
|
| Details | Domain | 1 | d19.no-ip.biz |
|
| Details | Domain | 1 | dmosole.zapto.org |
|
| Details | Domain | 1 | dvd.selfip.net |
|
| Details | Domain | 1 | fjkabelo.no-ip.biz |
|
| Details | Domain | 1 | ftp.2013update.net |
|
| Details | Domain | 1 | ftp.mozero1.yzi.me |
|
| Details | Domain | 1 | hessu.zapto.org |
|
| Details | Domain | 1 | hessubs.zapto.org |
|
| Details | Domain | 1 | koby1.no-ip.org |
|
| Details | Domain | 1 | koby2.no-ip.biz |
|
| Details | Domain | 1 | leeyou.no-ip.org |
|
| Details | Domain | 1 | logicrat.no-ip.org |
|
| Details | Domain | 1 | magicconnect.no-ip.biz |
|
| Details | Domain | 1 | mail.kngkong.com |
|
| Details | Domain | 1 | mcsoft.noip.me |
|
| Details | Domain | 1 | misakikoikoi.no-ip.biz |
|
| Details | Domain | 1 | oathsworn.org |
|
| Details | Domain | 1 | oboyouk.comoj.com |
|
| Details | Domain | 1 | ohis052.no-ip.biz |
|
| Details | Domain | 1 | r0c.ddns.net |
|
| Details | Domain | 1 | rainbowie.no-ip.biz |
|
| Details | Domain | 1 | rapadar333.zap.org |
|
| Details | Domain | 1 | serveurben44.no-ip.org |
|
| Details | Domain | 1 | sgpon.webege.com |
|
| Details | Domain | 1 | tazbot.mooo.com |
|
| Details | Domain | 1 | tazbox.zapto.org |
|
| Details | Domain | 1 | tripplem78.no-ip.biz |
|
| Details | Domain | 1 | uzzikie.netdns.net |
|
| Details | Domain | 40 | edition.cnn.com |
|
| Details | Domain | 84 | www.forbes.com |
|
| Details | Domain | 6 | www.treasury.gov |
|
| Details | Domain | 177 | blog.trendmicro.com |
|
| Details | Domain | 11 | www.irs.gov |
|
| Details | Domain | 604 | www.trendmicro.com |
|
| Details | Domain | 9 | www.webopedia.com |
|
| Details | Domain | 138 | www.securityweek.com |
|
| Details | Domain | 2 | support.dnsimple.com |
|
| Details | Domain | 3 | cloudsecurity.trendmicro.com |
|
| Details | 10 | phishing@irs.gov |
||
| Details | File | 3 | paypal.exe |
|
| Details | File | 1 | testv2.exe |
|
| Details | File | 117 | taskmgr.exe |
|
| Details | File | 3 | google.exe |
|
| Details | File | 5 | sample.doc |
|
| Details | File | 1 | paypaltransaction_dispute.doc |
|
| Details | File | 29 | report.pdf |
|
| Details | File | 101 | gate.php |
|
| Details | File | 1 | 2013_early_tax_return_report.pdf |
|
| Details | File | 1 | tspy_fareit.cab |
|
| Details | File | 1 | your_2013_taxreturnreport.pdf |
|
| Details | File | 1 | your_2013_taxreturnreport.exe |
|
| Details | File | 1 | early2013taxreturnreport.exe |
|
| Details | File | 1 | 2013taxreturnreport.exe |
|
| Details | File | 1 | image_001_040214.exe |
|
| Details | File | 1 | 2013statetaxrefund.exe |
|
| Details | File | 1 | troj_dloadr.cab |
|
| Details | File | 1 | i_early2013taxreturnreport.exe |
|
| Details | File | 1 | 2013statetaxreturn.exe |
|
| Details | File | 1 | tigta-2015-01_home.htm |
|
| Details | File | 1 | mutex.html |
|
| Details | sha1 | 1 | f9611b43cc53fac250c841f0258d98bc8212c1ed |
|
| Details | sha1 | 1 | 5af2279b5107ec97e77dca9a7271e8a64446d3c3 |
|
| Details | sha1 | 1 | e53030c8a6364df879f32ee5e459b1b0ed0a50a7 |
|
| Details | sha1 | 1 | 667a68dc226eafe2464b1ecd9826b409674223ff |
|
| Details | sha1 | 1 | 1d075575dd2c3999fe7c34850c81dc5848a05495 |
|
| Details | sha1 | 1 | 3b750393f3420e6bf06a842a5bf82398de823153 |
|
| Details | sha1 | 1 | 3bf8b1e76d5397a3c77d7c0ef99ac6acaf14c13b |
|
| Details | sha1 | 1 | 609b0d5a5552a9b7a1cc566fea6600cd223a9f16 |
|
| Details | sha1 | 1 | 44389df2d6dcc01ae68506ae9481282427c318fe |
|
| Details | sha1 | 1 | 12deef8d9cb51f7c33870a72a227ee6bebc99b71 |
|
| Details | sha1 | 1 | 1bd6bf50eb014e39d743eff7041caf85597b3b0d |
|
| Details | sha1 | 1 | cb05b325601beb70cf67b76ef82cd6ba124db032 |
|
| Details | sha1 | 1 | 65942b6c23a2850e7a77d1be1e4411c31ac92fc5 |
|
| Details | sha1 | 1 | 2eeabfc5902e2548f89ffb706c90e385f2e9a72a |
|
| Details | sha1 | 1 | b34430c3ced52950875214844f7ffe557319ef46 |
|
| Details | sha1 | 1 | ee926fc88e9e506c80ffd411202a4bd692ed40bd |
|
| Details | sha1 | 1 | 154324f1d446d8a8bb9a8362876eae6760d0f28c |
|
| Details | sha1 | 1 | 19174eef360cd5c7b14a0641ab85597195fd6eb3 |
|
| Details | sha1 | 1 | 1f7660384eceea5919fd0c6790a561db650d0f84 |
|
| Details | sha1 | 1 | 6160c03743ea3dff4cfd98cc9d390fd30747e070 |
|
| Details | sha1 | 1 | b3b2d7c824d220b2b2f326612a97486faee053e1 |
|
| Details | sha1 | 1 | 31cb7393be49539e9f6a419049decf544c47ff6b |
|
| Details | sha1 | 1 | fc6f3eff01e12cc991edd68c334aa13fd56c17dd |
|
| Details | sha1 | 1 | 908a11bf72f40ff5facc4d989e73945df82ffa0c |
|
| Details | sha1 | 1 | bf1d1662d9fa1160603c7fbffe158d80ffa201d0 |
|
| Details | sha1 | 1 | 972485a192cec6bc6a22cf22b7a227239799d314 |
|
| Details | sha1 | 1 | b51fe1dd35047387a9ae86ec5a9ddbb0b5f6f112 |
|
| Details | sha1 | 1 | 82295a6edca2009886f12d126f159a7dfdccc436 |
|
| Details | sha1 | 1 | bc60772665a0268b5472992d28f05dc01c03ce15 |
|
| Details | sha1 | 1 | ca7bcd7839610f6b0eb82797c5622a1ae57f92d1 |
|
| Details | sha1 | 1 | 2174cc9c14a21708359f2f14a7d73d08a2b1c3fe |
|
| Details | sha1 | 1 | a1ab29491e9ea126e7d94a48569be3cc4a3a42d5 |
|
| Details | sha1 | 1 | 6a6dd2939f395555c8eef0a7004ef07e63c91ebf |
|
| Details | sha1 | 1 | cd75834c76e553c1bd5b79f17f6e15eb588682eb |
|
| Details | sha1 | 1 | 598abe576bfe1becbf3d991b9ac0cd1e4acde592 |
|
| Details | sha1 | 1 | 38aee74c6631316518891f6921324bda81024114 |
|
| Details | sha1 | 1 | bdf561f8fc52fa26afb9741a6f3124bb62d8a93e |
|
| Details | sha1 | 1 | 3ea1c53c91a9f85971a408679fce862d65f3cd36 |
|
| Details | sha1 | 1 | c4bfd7579a37c92899fa612e0dba3e89ff258656 |
|
| Details | sha1 | 1 | cdd73e1274be39cc00902b0cf2772904078548f3 |
|
| Details | sha1 | 1 | e2f8874b8e2989efa037fa7e8268e27a8d0479c6 |
|
| Details | sha1 | 1 | 18bd850f24092a47150228e5673dbb1c471b72f6 |
|
| Details | sha1 | 1 | ee4a66fdaca21c468b66cd61a3eb25ef3db4f61f |
|
| Details | sha1 | 1 | 61d09580e3bece91fffec0cc80f7727999bec241 |
|
| Details | sha1 | 1 | 49abe98235421771f8c486e5e0d14cde0607fa6c |
|
| Details | sha1 | 1 | 8ac215a349b2c8c2fa0424daff2a729d00131e4e |
|
| Details | sha1 | 1 | 5c4d47a18c18da60e2ee0e45e541dce54fce190f |
|
| Details | sha1 | 1 | fb0f011771874fa246aa7e5072436467b2018f96 |
|
| Details | sha1 | 1 | ef1753acb3ffb6089126d84fb5a6311cd3565bf0 |
|
| Details | sha1 | 1 | 022d3b48f9b9288df2eb5a46b171d276852b6881 |
|
| Details | sha1 | 1 | 8bb377f1c27fe790cc5f9bac3c0b75689e178f37 |
|
| Details | sha1 | 1 | 9ff0f93aa9f51d3ecaf21be507da900b73e8f0f2 |
|
| Details | sha1 | 1 | 181ddf0091bbb7c59cfa01fba694c55e600ae950 |
|
| Details | sha1 | 1 | c0428f3d4e6a66362f252352ec61d8b2751e3677 |
|
| Details | sha1 | 1 | 08e61abcd2c351e22ebc3536cf7d2a15ac8cbf06 |
|
| Details | sha1 | 1 | 387bfeb2372f9bd69860d9176e919803d12a6734 |
|
| Details | sha1 | 1 | fb57991dd4300848e0e53d389c3eef0b5332f8ce |
|
| Details | sha1 | 1 | ed2a3d6e7d437fcca00666c2fdd74bb44a67a052 |
|
| Details | sha1 | 1 | f3b3da6f11b7779b896579c39761757e65f91b5a |
|
| Details | sha1 | 1 | 77e3bcef2ebf77b6b6fb00235f707b6e9236bb86 |
|
| Details | sha1 | 1 | c8ed319d45ea0bd5b67be3c49af3f674da06e22e |
|
| Details | sha1 | 1 | cb77e715a55ce55f4633b30d2a5a89bbd00e77c6 |
|
| Details | sha1 | 1 | b43ad394d8fca98077bfc33c96dd8a526e145793 |
|
| Details | sha1 | 1 | 8f2ebf0422d34a7e0bc1480bc0efea859f2f56e8 |
|
| Details | sha1 | 1 | 045d94462a505b8b7250c9836620d1373af6798f |
|
| Details | sha1 | 1 | cfea6c4f6f44ca9c79a3d613edef820dcd4d5876 |
|
| Details | sha1 | 1 | 06d01b8299c3a11403ba32228b19cff4d1438509 |
|
| Details | sha1 | 1 | fc9441983b0c119bbc3f2fc221af15da5a621c57 |
|
| Details | sha1 | 1 | 9f7d6d8a2a7c36e953369703421c3f6274144619 |
|
| Details | sha1 | 1 | 15b4a4c05bd3847ececb1fbdecb5c2cbb89309ea |
|
| Details | sha1 | 1 | cb5a4923317bc840be1c7a7a1527aa80f9241991 |
|
| Details | sha1 | 1 | 724ed96e7eb10b1be9ad817f2e42a4a9f31d81d1 |
|
| Details | sha1 | 1 | 060a3b4fd165f87e7fc650c806c9dec17469ed45 |
|
| Details | sha1 | 1 | 9cc1dff14d9b964f8d2abe713b10792df764f437 |
|
| Details | sha1 | 1 | 2164cd3db503d2d0bd3a4bdfacffa13fb0ceb540 |
|
| Details | sha1 | 1 | 0d96bf07de613c46920d99282408421024472d11 |
|
| Details | sha1 | 1 | a4c95a755685c6802ae41a7b8272c87a8d399af9 |
|
| Details | sha1 | 1 | e7d924e1dd6a0407636430f026bad24f473d9ed6 |
|
| Details | sha1 | 1 | 39e35b0c0d41875f28e1313240f6534f5bf1bffa |
|
| Details | sha1 | 1 | c3a4f194ebd90e1de96a79824fb433c39de6425c |
|
| Details | sha1 | 1 | 02ba7427340ed41c1f6c4fa1cfec23ae610672a0 |
|
| Details | sha1 | 1 | eab345a3897f4c11ebaee2b260ca1e3f95257433 |
|
| Details | sha1 | 1 | 75215151f8265582f4235230aa37181a20ff903d |
|
| Details | sha1 | 1 | 8fc7dafe6f09d0343bad260cb4892e8b9381e2fd |
|
| Details | sha1 | 1 | d02d8de75930154642725b8f6de5b86526078960 |
|
| Details | sha1 | 1 | 870c6153637b713d8bdce94611bf7da4ed218dfb |
|
| Details | sha1 | 1 | 5de76f097d9ca06fe1498f888ce67bf29ac5d651 |
|
| Details | IPv4 | 1 | 124.248.205.92 |
|
| Details | IPv4 | 1 | 212.7.208.77 |
|
| Details | IPv4 | 1 | 82.145.41.7 |
|
| Details | Url | 3 | http://www.forbes.com/sites |
|
| Details | Url | 1 | http://www.treasury.gov/tigta/press/press_ |
|
| Details | Url | 24 | http://blog.trendmicro.com/trendlabs-security-intelligence |
|
| Details | Url | 1 | http://blog.trendmicro.com/trendlabs-security-intelligence/tax- |
|
| Details | Url | 1 | http://www.irs.gov/uac/irs-updates-the-%e2%80%98dirty- |
|
| Details | Url | 1 | http://www.irs.gov |
|
| Details | Url | 1 | http://www.irs.gov/uac/newsroom/phishing- |
|
| Details | Url | 1 | http://www.irs.gov/uac/newsroom/identity-theft-a- |
|
| Details | Url | 1 | http://www.irs.gov/uac |
|
| Details | Url | 1 | http://www.irs.gov/uac/newsroom |
|
| Details | Url | 1 | http://www.irs.gov/uac/newsroom/fake-charities-among-the-irs- |
|
| Details | Url | 1 | http://www.webopedia.com/term/m/mutex.html |
|
| Details | Url | 33 | http://blog.trendmicro.com/trendlabs-security- |
|
| Details | Url | 20 | http://blog.trendmicro.com |
|
| Details | Url | 1 | http://www.securityweek.com/pony-loader-20-malware-source-code- |
|
| Details | Url | 23 | http://blog.trendmicro.com/trendlabs- |
|
| Details | Url | 11 | http://www.trendmicro |
|
| Details | Url | 14 | http://www.trendmicro.com |
|
| Details | Url | 1 | https://support.dnsimple.com/articles |
|
| Details | Url | 1 | http://www.irs.gov/uac/tax-scams-consumer-alerts. |
|
| Details | Url | 4 | http://www.trendmicro.com/vinfo/us |
|
| Details | Url | 1 | http://cloudsecurity.trendmicro.com/us/technology-innovation/our- |