PROXY.AM Powered by Socks5Systemz Botnet | Bitsight
Tags
country: Algeria Egypt Argentina Bangladesh Belarus Brazil Colombia Nigeria India Indonesia Pakistan Morocco Thailand Mexico Philippines Russia Vietnam Ukraine United States Of America
attack-pattern: Data Model Botnet - T1583.005 Botnet - T1584.005 Dns - T1071.004 Dns - T1590.002 Exploits - T1587.004 Exploits - T1588.005 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Whois - T1596.002 Connection Proxy - T1090
Show in Graph
Common Information
Type Value
UUID eea0df7c-71e2-494f-be31-6ef0828453d3
Fingerprint ae25a61f8cfba69b
Analysis status DONE
Considered CTI value 2
Text language
Published Dec. 3, 2024, midnight
Added to db Dec. 3, 2024, 9:13 p.m.
Last updated Dec. 16, 2024, 5:16 a.m.
Headline PROXY.AM Powered by Socks5Systemz Botnet
Title PROXY.AM Powered by Socks5Systemz Botnet | Bitsight
Detected Hints/Tags/Attributes 79/2/52
Source URLs
Redirection Url
Details Source https://www.bitsight.com/blog/proxyam-powered-socks5systemz-botnet
URL Provider
Details Provider Source level domain
Details bitsight.com www.bitsight.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 468 BitSight Security Ratings Blog https://www.bitsight.com/blog/rss.xml 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 7 
proxy.am
Details Domain 4 
bddns.cc
Details Domain 6 
ns1.reg.ru
Details Domain 6 
ns2.reg.ru
Details Domain 2 
design.proxy.am
Details Domain 2 
hpf.proxy.am
Details Domain 2 
api.proxy.am
Details Domain 3 
proxyam.one
Details File 5 
ns1.reg
Details File 5 
ns2.reg
Details sha256 3 
5260154782dd66c6a7b0e14c077c4b44ed1f483c6708495d0344edf8a14e2b27
Details sha256 3 
36cffd7d54385e0473cb7f7bf2d33910027428837725c4d3649ff1af2d88cb2b
Details sha256 3 
aa93289a23603efc27f70a7eb38f8e81fa7c30f4a5dff71f70c6f2ee583df619
Details sha256 3 
e185e43f039f7a97672db4a44597abd6d2bf49c08d7bc689318a098ec826bb00
Details sha256 3 
f6bbff3463d01da463091dc3347f5f42b32378353d2f7ddfab6285ecf0450c14
Details sha256 3 
a2a41ff58541f577ea1580932cc89642e987239a2fa1ccdb33a3029a520ecd0b
Details sha256 3 
fa3fe68c4a784c01e170098296b3212696b611e0239b69a40f4438532ca33e88
Details sha256 3 
54feb0e02729304c1c054e34c3bcb4e76be31b31ec2276187ccc4479378ce130
Details sha256 3 
0fc2f189aa3ebc1ff836079e49dac9758ab5e807d7ab4b42ff37c2376bcc2705
Details sha256 3 
bf34984756336bc78428f3f856be287ef364afa3330cac5facf019c39be73657
Details sha256 3 
b1e5b0e42e039b9711c435d691f1372ec663b2cb5a5d6a733d859d75a9f2d662
Details sha256 3 
f4456c54b840b5650d131ee27ffc9f23b7b3d8344cd88bd2dd2dbad05741e401
Details sha256 3 
c742642edeae783ffdc9efd52f514a5eef830ec115f8e723ee7cfd82ca7c0ba6
Details sha256 3 
dd075ec25d314f2d97d89065239ccb1d6c680d3f08ea94bf59f522545a1546c9
Details sha256 3 
75e722495c157a05b557580863f90b856d6ec229c7cb4974a008c823377369f5
Details IPv4 2 
109.236.51.104
Details IPv4 3 
141.98.234.31
Details IPv4 3 
81.31.197.38
Details IPv4 3 
45.155.250.90
Details IPv4 3 
152.89.198.214
Details IPv4 3 
91.211.247.248
Details IPv4 3 
185.208.158.248
Details IPv4 3 
185.237.207.107
Details IPv4 3 
185.208.158.202
Details IPv4 3 
79.132.128.13
Details IPv4 3 
176.10.111.126
Details IPv4 3 
194.62.105.143
Details IPv4 6 
195.154.176.209
Details IPv4 3 
89.105.201.183
Details IPv4 3 
46.8.225.74
Details IPv4 3 
88.80.150.13
Details IPv4 3 
195.154.174.225
Details IPv4 3 
62.210.201.223
Details IPv4 3 
185.141.63.209
Details IPv4 3 
195.154.173.35
Details IPv4 3 
195.154.174.12
Details IPv4 3 
62.210.204.81
Details IPv4 6 
62.210.204.131
Details IPv4 3 
185.141.63.216
Details IPv4 3 
195.154.185.134
Details IPv4 3 
88.80.148.252
Details Url 2 
https://proxy.am