Closed g0d33p3rsec closed 1 month ago
This domain is being used to distribute Lumma Stealer. See #681 and https://github.com/mitchellkrogza/phishing/pull/450
lajollaautorepairs.com|malicious
No response
https://lajollaautorepairs.com/cart/VBDVMGWB.exe https://urlscan.io/result/ef983f61-edc6-4a31-99e6-6ebbeab7d9bf/ https://www.virustotal.com/gui/file/584945fbd2076bc151184065a72373f87405136be7b0131d36ded7d986b968fc https://tria.ge/240712-yyrq8sybrp/behavioral1
N/A
Comments
This domain is being used to distribute Lumma Stealer. See #681 and https://github.com/mitchellkrogza/phishing/pull/450
Wildcard domain records
Sub-Domain records
No response
Hosts (RFC:953) specific records, not used by DNS RPZ firewalls
No response
SeafeSearch records
No response
Screenshots
Screenshot
Links to external sources
logs from uBlock Origin
N/A