search

chartingshow / crypto-firewall

🎁 Blocks browser-based crypto mining, cryptojacking, banking and crypto malware and phishing websites, apps and hackers command-and-control (C2) servers.
GNU General Public License v3.0
7 stars 0 forks source link

Block `Savvy Seahorse` fake investment scams #461

Closed summercms closed 4 months ago

summercms commented 4 months ago

Enhancement idea

Description

The actor, known as Savvy Seahorse, employs DNS CNAME records to set up a traffic distribution system (TDS) for their fraudulent schemes. These campaigns involve using fake ChatGPT and WhatsApp bots to lure victims into fake investment opportunities, targeting individuals speaking various languages. Savvy Seahorse's operations have been ongoing since at least August 2021 and are primarily conducted through Facebook advertisements.

Links

https://blogs.infoblox.com/cyber-threat-intelligence/beware-the-shallow-waters-savvy-seahorse-lures-victims-to-fake-investment-platforms-through-facebook-ads/

https://github.com/infobloxopen/threat-intelligence/blob/main/indicators/csv/savvy_seahorse_20240228_iocs.csv

IOC

I2P websites

n/a

IPFS websites

n/a

Tor2web websites

n/a

TOR websites

n/a

URL's

n/a

Folders

n/a

Sub-Domains

n/a

Domains

abyss-world-asset.net
activityprog.site
actyprogss.top
akturtrad.xyz
aladdaican.xyz
alekkon.site
alinter.top
amalg.live
amarell.xyz
anticriss-es.xyz
anticrisses.xyz
anticriz.site
anticrsss-ep.xyz
anticrsss1-ep.xyz
anticrys.xyz
anticrysz.site
antikrys.xyz
appchi.top
asals.top
auproject.xyz
autotrdes.top
aziims.xyz
b36cname.site
badanie-pl.site
bakv1p.top
baltez-offic.xyz
beneffit.top
beparat.site
bepparat.site
betatransfer.io
biolicca.online
bionicca.online
bitproms.top
bittwhite.xyz
bitupes.xyz
bizinnfo.top
biztok.site
bloagster.site
blog-vcnews.site
bppsa.com
bt-platform.xyz
buddaa.xyz
buuda.xyz
byseniscon.top
canadapower.top
canpartner.top
canssin.top
capital-inwest.site
carted.xyz
cepura.site
cetaro.site
chainmi.top
checkty.live
chimman.top
cidreo.info
clubformen.site
coinntrde.site
comproges.xyz
condd.top
constat.site
constat.xyz
cryptech.icu
cryptech.site
crypto-payer.co
crypto-payer.one
crypto-payer.online
cukerzak.xyz
czrlibr.xyz
daska.top
dasms.xyz
dehhg.xyz
denngitut.site
depilid.site
digtalz.xyz
dinox.site
distrac.xyz
diwpek.site
domstatt.top
duums.xyz
ecclippse.site
esbopehan.xyz
eu-progectx.site
eudkmon.top
eumaxtro.top
eupartner.site
euterne.com
euteschan.top
evaprins.live
facst.xyz
falza.site
feles.site
feren.site
fergulini.site
ficol.site
fin-flex.xyz
firehongtrade.life
fisec.top
fltrad.top
fonden.site
formaa.top
formew.top
formhh.top
formpr.top
formsok.xyz
fresh-newss.top
fusda.top
futtes.site
fxxmaxtrade.top
gelopro.com
gentaxe.info
geolloc.site
gernik.site
getid.top
getyourapi.site
giftec.site
glowtrad.com
gmusken.online
grandd.xyz
grm-new.xyz
groovetonprogramz.xyz
harrsun.top
highhlife.site
histtory.top
hustleside.xyz
hyppe.site
imedespofic.xyz
impercan.top
imperiallprogram.top
imperr.top
imsol.site
inccomme.com
infosio.top
infplatnew.online
inncrease.top
innwest.top
inseto.site
itprofbin.site
itunt.xyz
ixims.top
justoplatf.online
kamiln.site
kappibar.xyz
kingsman-adv.org
kitoll.xyz
kolotas.top
labramtum.online
lareg.site
lenfls.top
letecush.top
libcanprof.top
librahongtrade.life
librprograms.xyz
lideb.top
likeprogg.top
limeplatf.xyz
lintant.top
littre.top
live-syst.site
logterd.top
lonwysox.site
lorwynx-stox.xyz
luxxeeu.com
lymox.top
makeyourpay.com
makssipro.site
malza.top
manasan.top
marzijay.top
maseczka.top
masslis.top
mastercasc.top
max-platform.xyz
maxhongtrade.life
maxiaztr.top
maxlux.xyz
maxprogt.top
maxxiprogram.xyz
maxymus.xyz
meetonews.xyz
melaofisial.xyz
metesp.xyz
metikt.top
metxst.top
milen.top
minarr.site
mipinves.site
mixx-today.site
monmaker.top
moreadd.xyz
mstpr.site
mt-online.xyz
mtatarade.xyz
mtattarade.xyz
mtprogram.xyz
multimman.xyz
nanyxson.xyz
nasteri.top
nattive.xyz
netaproj.top
newchhance.top
newlvlpro.top
newplatf.top
newplattf.top
newplf.top
newprogf.top
newprogrms.xyz
newstrdinfo.xyz
newstrdinfos.xyz
newstriy.top
newtrdin.xyz
newtrds.xyz
nextxa.site
nimprove.top
noppyw.top
now-programs.xyz
nowax.site
numrr.xyz
off-finsic.site
oiltrrade.top
oksitepl.site
onetraddd.top
onlinedelo.top
onlinedietslimm.xyz
onlinelibra.site
orggf.xyz
parapett.site
parkfinancialconsulting.org
parliam-tara.xyz
partneronline.site
partnersspecialcapitalltd.trade
peoplepro.xyz
pesiv.top
pixipl.xyz
pixosell.xyz
platform-info.xyz
platformkod.online
platformm.site
platformtrad.xyz
plowson.site
pointpayment.net
pomochaleness.top
ponyw.site
premmium.site
primeson.top
prl-tlx.xyz
prof-trde.xyz
profactive.top
profinnce.top
profinves.top
progforwellbeing.xyz
progipro.site
progitl.online
program-delo.site
program-lid.site
program-lids.site
program-life.xyz
program-plus.site
program-plus.xyz
program-pro2.xyz
program-world.site
programbndr.site
programerstr.xyz
programfuture.site
programinject07.site
programir.xyz
programm-one.site
programs-pl.site
programwatonline.xyz
progrmsk.xyz
progslimsk.xyz
progtemal.site
progtrde.top
prommosite.xyz
prooffit.top
prossaud.top
prostprogr.xyz
prowile.top
pushi-eu.top
quantrade.org
quaquain.top
qurmade.xyz
qwantam.online
reachyrigy.site
reacttion.top
recoiin.xyz
recursenergy.xyz
repostikom.site
res1te-eu.top
revolesbit.xyz
rexol.xyz
rgnfinancialplanningltd.com
rikza.top
robinsson.live
rominvest-market.net
rooff.xyz
roommer.xyz
rslimess.xyz
santrapeex.site
satin1.xyz
savek.xyz
secretcount.xyz
seikko.xyz
sheelpor.top
sitevms.site
skybounce.top
soeassy.top
spactiv.site
startone.top
stopetcart.site
strprogram.com
sunproflts.site
suppii.xyz
suuccess.site
tadin.top
tandox.xyz
taptixot.xyz
tayki.site
tdp-like.xyz
technotrd.xyz
teleslast.site
teraw.site
tesrlon.top
tesslcanfit.top
tesslend.site
tesslonline.site
testorovich.xyz
tesxprofit.top
tetron.site
texlox.live
tistul.top
top-strx.site
toppeople.top
tr-offici.xyz
tradday.top
tradefxok.info
tradfls.top
tradiinsg.site
tradstatsx.top
trde-pulse.xyz
trdelibra.top
trdevista.xyz
trednig.top
truproggs.top
tsqwz.xyz
tubur.top
tutorel.top
ultra-vest.one
upptoyou.xyz
valuez.top
vibewawe.site
vilkateka.site
vip-krisp.site
vipsites.site
vipstaris.top
vizlet.site
waagge.online
weallthh.com
wekza.top
welerpro.com
wertin.top
wimsa.top
winprogs.site
wlossofficial.xyz
wodrx.xyz
worldinfo-lo.top
worldkolf.info
worldtrades.top
wskyrti.top
xdelx.xyz
xiproject.top
xoloto-ru.xyz
zatrradd.top
zol0to-rus.xyz
zolotoros.site
zolotoru.site

IP's

n/a

Emails

n/a

Wallet addresses

n/a

Mining pool addresses

n/a