ioc[.]one - OSINT Cyber Threat Intelligence Database

Franken-phish: TodayZoo built from other phishing kits - Microsoft Security Blog

Tags

cmtmf-attack-pattern:	Geofencing
maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Credentials - T1589.001 Domains - T1583.001 Domains - T1584.001 Email Accounts - T1585.002 Email Accounts - T1586.002 Geofencing - T1627.001 Geofencing - T1581 Ip Addresses - T1590.005 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Software - T1592.002 Tool - T1588.002

Show in Graph

Common Information

Type	Value
UUID	f1ddd3c2-d67e-450e-a374-22a7fac9ef93
Fingerprint	a6000f502b886fc8
Analysis status	DONE
Considered CTI value	0
Text language
Published	Oct. 21, 2021, 8 a.m.
Added to db	Sept. 11, 2022, 12:44 p.m.
Last updated	Nov. 17, 2024, 10:40 p.m.
Headline	Franken-phish: TodayZoo built from other phishing kits
Title	Franken-phish: TodayZoo built from other phishing kits - Microsoft Security Blog
Detected Hints/Tags/Attributes	72/3/110

Source URLs

	Redirection	Url
Details	Source	https://www.microsoft.com/security/blog/2021/10/21/franken-phish-todayzoo-built-from-other-phishing-kits/

URL Provider

Details	Provider	Source level domain
Details	microsoft.com	www.microsoft.com

Attributes

Details	Type	#Events	Value
Details	Domain	3	awsapps.com
Details	Domain	1	wederfs76y3uwedi3uy89ewdu23ye87293eqwhduayqw.awsapps.com
Details	Domain	1	limestonesm.com
Details	Domain	369	microsoft.com
Details	Domain	1	nftduniya.com
Details	Domain	1	dancevida.com
Details	Domain	3	digitaloceanspaces.com
Details	Domain	1	pentsweser.com
Details	Domain	1	eurhutos.com
Details	Domain	1	dalotcii.com
Details	Domain	1	buiyosi.com
Details	Domain	1	gsuouyty.com
Details	Domain	1	matanictii.com
Details	Domain	1	phmakert.com
Details	Domain	1	brepeme.com
Details	Domain	1	conncorrd.com
Details	Domain	1	sazmath.com
Details	Domain	1	normmavec.com
Details	Domain	1	jumperctin.com
Details	Domain	1	selfessdas.com
Details	Domain	1	kurvuty.com
Details	Domain	1	iotryfuty.com
Details	Domain	1	setmakersl.com
Details	Domain	1	vlogctii.com
Details	Domain	1	coffimkeer.com
Details	Domain	1	mosyeurty.com
Details	Domain	1	qurythuy.com
Details	Domain	1	carlssbad.com
Details	Domain	1	chovamb.com
Details	Domain	1	tenssmor.com
Details	Domain	1	tenssmr.com
Details	Domain	1	coffkeer.com
Details	Domain	1	tamsops.com
Details	Domain	1	speedoms.com
Details	Domain	1	shageneppi.com
Details	Domain	1	shadain.com
Details	Domain	1	coffieer.com
Details	Domain	1	cofeer.com
Details	Domain	1	carrtwright.com
Details	Domain	1	uyfteuty.com
Details	Domain	1	slobhurtiy.com
Details	Domain	1	braingones.com
Details	Domain	1	beinsmter.com
Details	Domain	1	ksfcaghyou.com
Details	Domain	1	coffkr.com
Details	Domain	1	rtuatatcty.com
Details	Domain	1	lamyot.com
Details	Domain	1	tenssm.com
Details	Domain	1	kanesatakss.com
Details	Domain	1	brainsdeads.com
Details	Domain	1	ourygshry.com
Details	Domain	1	1776769042.ujsd.iotryfuty.com
Details	Domain	1	443577567.ujsd.iotryfuty.com
Details	Domain	1	646611056.ujsd.gsuouyty.com
Details	Domain	1	1007183231.ujsd.gsuouyty.com
Details	Domain	1	1469782555.ujsd.phmakert.com
Details	Domain	1	1436029448.ujsd.buiyosi.com
Details	Domain	1	946552600.ujsd.buiyosi.com
Details	Domain	1	1733787821.ujsd.buiyosi.com
Details	Domain	1	1988722677.ujsd.eurhutos.com
Details	Domain	1	255622856.ujsd.eurhutos.com
Details	Domain	1	600774497.ujsd.sazmath.com
Details	Domain	1	1315116569.ujsd.setmakersl.com
Details	Domain	1	1179340144.ujsd.sazmath.com
Details	Domain	1	516942697.ujsd.setmakersl.com
Details	Domain	1	1742965301.ujsd.setmakersl.com
Details	Domain	1	124967719.ujsd.normmavec.com
Details	Domain	1	202271174.ujsd.pentsweser.com
Details	Domain	1	1010306526.ujsd.iotryfuty.com
Details	Domain	1	728156920.ujsd.iotryfuty.com
Details	Domain	1	1244535616.ujsd.selfessdas.com
Details	Domain	1	1227334331.ujsd.selfessdas.com
Details	Domain	1	1229648857.ujsd.kurvuty.com
Details	Domain	1	926765708.ujsd.kurvuty.com
Details	Domain	1	254503147.ujsd.kurvuty.com
Details	Domain	1	1656812361.ujsd.dalotcii.com
Details	Domain	1	100666740.ujsd.matanictii.com
Details	Domain	1	404793834.ujsd.matanictii.com
Details	Domain	1	879643450.ujsd.matanictii.com
Details	Domain	1	658338120.ujsd.matanictii.com
Details	Domain	1	1359496128.ujsd.dalotcii.com
Details	Domain	1	995216045.ujsd.dalotcii.com
Details	Domain	1	1838392685.ujsd.dalotcii.com
Details	Domain	1	9725332.ujsd.brepeme.com
Details	Domain	1	1668463162.ujsd.conncorrd.com
Details	Domain	1	165175575.ujsd.sazmath.com
Details	Domain	1	215852665.ujsd.brepeme.com
Details	Domain	1	pogfhryet.com
Details	Domain	1	luhyrtye.com
Details	Domain	1	lcspecops.com
Details	Domain	41	www.imperva.com
Details	Domain	4	blog.bushidotoken.net
Details	Domain	2	steved3.io
Details	Email	1	limestonesm.com/edfh.kerfq/#no-reply@microsoft.com
Details	Email	1	fra1.digitaloceanspaces.com/koip/25_40_24_5e_40_26_40_26_28_29_23_23_5e_23_24_26_5e_25_26_40_5e_28_23_26.html#no-reply@microsoft.com
Details	Email	1	pogfhryet.com/edfh.kerfq/#no-reply@microsoft.com
Details	Email	1	luhyrtye.com/edfh.kerfq/#no-reply@microsoft.com
Details	Email	1	nyc3.digitaloceanspaces.com/bnj/25_40_24_5e_40_26_40_26_28_29_23_23_5e_23_24_26_5e_25_26_40_5e_28_23_26_%_%_%_%_%_%_%_%_%_%_%_%_%_%_%_%_%_%_%_%_%_%_%_%_%_%_%_%_%_%_%_%_%_%_%_%.html#no-reply@microsoft.com
Details	File	1	25_40_24_5e_40_26_40_26_28_29_23_23_5e_23_24_26_5e_25_26_40_5e_28_23_26.html
Details	File	1	todayzoo.php
Details	File	1	zoom.php
Details	File	1	vcoominctodayq.php
Details	File	1	the-next-evolution-in-office365.html
Details	Url	1	http://2124658742.ujsd.pentsweser.com//fhwpp8sv
Details	Url	1	https://limestonesm.com/edfh.kerfq/#no-reply@microsoft.com
Details	Url	1	https://fra1.digitaloceanspaces.com/koip/25_40_24_5e_40_26_40_26_28_29_23_23_5e_23_24_26_5e_25_26_40_5e_28_23_26.html#no-reply@microsoft.com
Details	Url	1	https://nftduniya.com/cas/vcoominctodayq.php
Details	Url	1	https://www.imperva.com/blog/our-analysis-of-1019-phishing-kits
Details	Url	1	https://blog.bushidotoken.net/2021/02/the-next-evolution-in-office365.html
Details	Url	1	https://steved3.io/data/kit-hunter-report-example/2021/01/16