Related #fakeapp phish domains: github.com/stamparm/maltr…

New #osx #amos stealer distribution domain, based on old "Brew" topic. brrewsh\.org raw.brrewsh\.org B: bazaar.abuse.ch/sample/20fac81… V: virustotal.com/gui/file/20fac…

Initial IOCs from Patchstack article: patchstack.com/articles/criti… gravityapi\.io gravityapi\.org Potentially related domains with very close creation date found by Validin Lookalike mechanism: gravityapi\.ai gravityapi\.co gravityapi\.dev gravityapi\.net

We're launching experimental ML Verdicts on urlscan Pro. Our new machine learning engine automatically classifies scan results as malicious or benign with a likelihood score. Perfect for threat hunting and for noise reduction. Available now on urlscan Pro: urlscan.io/blog/2025/07/1…

FYI

notTonight redd.it/1m2xjx5

New #osx #amos/#odyssey domain to detect: sdojifsfiudgigfiv[.]to Scan: urlscan.io/result/0198225…

🧐🤔"BlockNova" topic, described in Silent Push article: shorturl.at/jRUCz has returned me some fresh data to detect: 103.35.189\.107:3000 103.35.189\.107:4000 74.119.194\.205:3000 74.119.194\.205:4000 (hiring.)crostox\.com (apply.|contract.|hiring|support.)waventic\.com

New #osx #amos stealer distribution domain, based on old "Brew" topic. brewsh\.cx raw.brewsh\.cx

298 domains with suchlike content related to #ACR #Stealer panels. E.g. therenuomystores[.]shop --> urlscan.io/result/019832a… Detection: github.com/stamparm/maltr…