Created
July 2, 2025 17:53
-
-
Save silence-is-best/44d48000436c26511a31b6ff331212b0 to your computer and use it in GitHub Desktop.
June Malspam Campaigns
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Date,Details,Email Payload Type,Users Targeted | |
| 6/4/2025,Attachment name is Pago a partir del 04-06-2025 por monto USD 114,800.pdf.z; z -> vipkeylogger,Attachment,4 | |
| 6/4/2025,[ORDER] POSPHL0002653 Projector Pro2 Refurbished Order# 49763; iso -> vbs -> remcos,Attachment,6 | |
| 6/4/2025,Attachment name is Invoice for payment.pdf.z; z -> vipkeylogger,Attachment,4 | |
| 6/5/2025,Attachment name is inv. 324.20374.pdf.z; z -> vipkeylogger,Attachment,4 | |
| 6/5/2025,RE: PRODUCT ENQUIRY; zip -> xloader,Attachment,7 | |
| 6/5/2025,FW: Order; 7z -> vbe -> guloader -> xloader,Attachment,2 | |
| 6/6/2025,RFQ 6000169715 from 3340; rar -> xloader continued to 06/25,Attachment,42 | |
| 6/8/2025,OUR REF: RET-402-1438; xlsx -> remcos,Attachment,3 | |
| 6/9/2025,Attachment name is soa_longsail intl cargo services_feb_march 2025_from longsail.pdf.z; z -> snakekeylogger,Attachment,4 | |
| 6/11/2025,Attachment name is quote-fl202306200039 swp 查询编号 2025-1981 (2).pdf.z; z -> xloader,Attachment,4 | |
| 6/12/2025,Re: RFQ; 7z -> xloader,Attachment,5 | |
| 6/12/2025,payment request 【Urgent payment request】|RE: RFQ:EO-230807; z|rar -> masslogger,Attachment,4 | |
| 6/13/2025,kindly quote your best price for the; zip -> xloader continued to 6/17,Attachment,14 | |
| 6/15/2025,Inquiry ex SHANGHAI to ISTANBUL , CARGO BUTYL ACRYLATE 3/2348; z -> xloader,Attachment,2 | |
| 6/15/2025,19-0415 MSC Payment Request for ALL Trade/MSC; z -> xloader,Attachment,2 | |
| 6/16/2025,RE: Pre-Alert/Invoice/DND - TFI FOODS LTD, GGSZ2504214 - GGCA2504046; zip -> snakekeylogger continued to 6/19,Attachment,6 | |
| 6/16/2025,Payment Receipt 06-16-2025; zip -> url -> asyncrat,Attachment,2 | |
| 6/16/2025,PREPAYMENT FOR INV #009991267.; zip -> xloader,Attachment,2 | |
| 6/16/2025,Invoice for PO#7311104164, OC#168427; z -> vipkeylogger,Attachment,4 | |
| 6/18/2025,RE: PRODUCT ENQUIRY|RE: URGENT REQUEST; zip -> snakekeylogger,Attachment,17 | |
| 6/19/2025,Attachment name is payment เกี่ยวกับการส่งสินค้า $45,387; rar -> xloader,Attachment,4 | |
| 6/20/2025,RE:Urgent Request // RFQ-1579; zip -> snakekeylogger,Attachment,5 | |
| 6/20/2025,SHIPMENT ADVICE & FREIGHT INVOICE; zip -> snakekeylogger,Attachment,10 | |
| 6/22/2025,RE: Comeau's Sea Foods - Scallops; zip -> snakekeylogger continued to 6/25,Attachment,10 | |
| 6/23/2025,Attachment name is kuzuoglu order n. f-1676.25.pdf.z; z -> xloader,Attachment,5 | |
| 6/23/2025,Request For Quotaion-PO# 3280; gz -> xloader,Attachment,2 | |
| 6/24/2025,RE:Request for Quotation ;zip -> snakekeylogger,Attachment,4 | |
| 6/24/2025,OUR-REF: RET-402-1438; xlam -> xworm continuted to 6/26,Attachment,4 | |
| 6/24/2025,Attachment name is payment as of 13th-05-2025 for amount usd 74,770.pdf.z; z -> xloader,Attachment,12 | |
| 6/25/2025,Document Review Request; xls -> xworm,Attachment,6 | |
| 6/27/2025,RE:New order; zip -> snakekeylogger,Attachment,5 | |
| 6/30/2025,INVOICE HKDEC017721 BL CNCC833877 updated; z ->,Attachment,4 | |
| 6/30/2025,Purchase Order SC ORCA 4561838969 PO; zip ->,Attachment,4 | |
| 6/30/2025,KE-250617-008 ([QUOTATION] Hamilton Quotation Inquiry KE-250617-008); zip -> vipkeylogger,Attachment,2 | |
| asyncrat, 54e7bcb0ed49ff4e1bc5ce671a94dad5cbf0f857cf4c4ade1597095df7fbe6f1, voilt1984may.duckdns.org | |
| asyncrat, 6729b2ff4690b89dc85f5cea710265ebcb43b00356e9d8a0e901aa335f79776c, asy5858d.duckdns.org:5858 | |
| darkvision, b842ddc35525b66569d22aaa47c0afdb7efe6dbe4236d4f59af4dc8cba73e327, educare1.ddns.net | |
| m0yv-xloader, 0ea246c52245f5dd919aead5707821080a13b70af25218973a14f373a4691ec3, www.authnine.xyz/7dqp | |
| masslogger, 5a858ee15be33744767b76a7fbd1d51b08c102047c6af0fa7ad6ea4c9c5defc2, https://api.telegram.org/bot7905958978 | |
| masslogger, ab16e654e1cd8c20d4255a5d4dfcace05d24de1952285c80c87a5b4010e42295, mail.telemaxjo.com | |
| originlogger, 83a02fa534ab80c2661d7ab12802abc716a7325d396ff2e8b701a45721b2b854, imustgetlogsooo.site | |
| originlogger, e3b280fc7bd9dc77cf90901553a8d9e103d8ce3eb4fb4f107599a6c9630ff825, mail.amfco.com.vn | |
| purelogs, 30a3b2dadb38084cc19d271b08b15710939b3b9de88efa716684b7ebe819b7d5, 185.249.198.213 | |
| purelogs, 409b91be113a46f365f3ec04dc5da58a25871ce339f77364a4546d32ceca4a7b, 185.249.198.213:8088 | |
| remcos, 129ec1c44de7962c96b9497ae6dd45dccb93c6f93ddb93d218a162a56fc6754f, 216.250.249.219 | |
| remcos, 2345ba4c97d721f9df926ad1182202564c644ac0e74e10cb9c40c1a671395055, enermax-com.cc:2490 | |
| remcos, 297bca102c03945188697b877e0c12b4e24befd1b9b313408d5fcbf5795434bf, 103.202.55.193 | |
| remcos, 5b88855f34ff72021f08f6fc67295b5faa130f268cd0109156fc9570e4f6ff9b, 185.149.233.28 | |
| remcos, ddfeb0fe7084da26f1e51c8fe5342046cfefc3e54439bf63022d3fd798a35c0f, keenwood.duckdns.org:59785 | |
| skuld, 1be1474e493ffae0a7b65aab0e6e3f4d3bbb7dbb2d3648ced517d94d13ecee30, https://discord.com/api/webhooks/1387090487722250390/uIdf0nge3vqzIpSSyHk65zodg5HkaoJ7JNhM9x00yOP2qij7CJ79yoYCYQ27pyDXBpa | |
| snakekeylogger, 090be2d28dbb7a3d5782f1946ca17e5c048987dd027090cf1de7b8cffc0c07ea, mail.ssfreightbd.com | |
| snakekeylogger, 0ccfcbd467b949b1658d188651152bcc945adce590e0e15f39967da1813d5186, https://api.telegram.org/bot7553756477 | |
| snakekeylogger, 3170c4fb54059b275d63c1b7047565732d224d2b9a4e362d6b6a07de10b688ad, mail.fgiltd.com.pk | |
| snakekeylogger, 34b19072c45c71ce1bbff06393ef5af4e753492eb21ffdc93350f68b54df9ae3, mail.famousdesignltd.com | |
| snakekeylogger, 3a85ae54aa037e1651b9c67673d6c6f9fd723b92b111431ce0d285fcb99aff17, https://api.telegram.org/bot7553756477 | |
| snakekeylogger, 4f8dff4a98a4dc1e366f3ed7fea7ecb9e241513d53b8c1162b6d10e82f503444, https://api.telegram.org/bot7950066405 | |
| snakekeylogger, 55a8b6f3e55d23ccf3b4747b6c5e2de1116a38b052816b2ec2b03f4846b6cb87, mail.onionmail.org | |
| snakekeylogger, 5f31ae849162679f3f77a484a2f1915b69e805d3e5c5b3e57b5941885e21d62e, https://api.telegram.org/bot7553756477 | |
| snakekeylogger, 6676107dd17fa919b32fbb317cd5700b690f51f5e179da5b1c2acca15c2f0c3e, mail.marinbio.com.tr | |
| snakekeylogger, 6ef7e6b7f68656ff45e2d4a671b740aad9ca63a1e0fba6a4a11528b728f93589, mail.famousdesignltd.com | |
| snakekeylogger, 75d631734ecc86eee16c3775b08cf678d5ec0a24dbaa4b9edc09545b401dfa84, mail.famousdesignltd.com | |
| snakekeylogger, 83aca3eedf69640af7707090177d6194b4f0ece7feb76ddf84fa459cea018a97, mail.unitechautomations.com | |
| snakekeylogger, 88cdd28c561934d520ccce4a17178b2f5fc674d1f15314dc5a14695516a35e10, mail.ssfreightbd.com | |
| snakekeylogger, 89dcebec2d13a5469569db4075b595797b914b8f2c472547415eb6f4ca05d023, mail.famousdesignltd.com | |
| snakekeylogger, a5a895ef9fd3d2a7cb217cebe4674173fee2813c9242d386210624de34af29d9, mail.famousdesignltd.com | |
| snakekeylogger, a63698fa18a4e6acac1da7d4f30d5b8be01ec947365874d1b6f90bf9633b4319, mail.fgiltd.com.pk | |
| snakekeylogger, af6e3afe54776fbfcfd18d707576ea0ae9504da1d53f7af1ae41fd71408816d4, Server.lurstan.host | |
| snakekeylogger, bf9f84205245698621d7d37f6bf5783d735d4840f514c79c9166c07b84b9a043, mail.famousdesignltd.com | |
| snakekeylogger, d2fcd0aa013349a6b6356132f39e7936ba6ba9d4dccc19ccee243165917bbe19, mail.unitechautomations.com | |
| snakekeylogger, e6955c6feb002c426cd1fac9174ca3ac8bfc32d2956fa355e6a82d7ec6b0994d, mail.famousdesignltd.com | |
| snakekeylogger, e700543bf24e34ae3c78f7f7db0f32b543fafd561674ff35bd227efbec3591c8, mail.famousdesignltd.com | |
| snakekeylogger, ef8ba4be77cba9ddd2b41f191dfac798f9c369fd5bddeef750c100d5428c9cc9, mail.famousdesignltd.com | |
| vipkeylogger, 070c6ad15748e19c59ba06b20e73c4f2df1cc572a380da321cc52c78cbca2bc9, Server.lurstan.host | |
| vipkeylogger, 07b152394aab317e08fc56aa9fd33236cc8ea7a71d58ab9d7660ac70ccb495ec, mail.eraygrup.com.tr | |
| vipkeylogger, 299dbcf74564593cca443ee4575c1b28e9df0109799565d7004d99767a6d366e, https://api.telegram.org/bot7950066405 | |
| vipkeylogger, 433c3aa09017e6ee702051e3db03e730700fa2f39fae4de8aa2d0ae597878c10, Server.lurstan.host | |
| vipkeylogger, 55dcfeab7d6de39475b1df20819b44da3181b3f907a399ac3287ce45d582f2fa, Server.lurstan.host | |
| vipkeylogger, a940014a730129f95371c84c982bcbf378586e7afd6eb2f3d0acaf0d15a8ded4, Server.lurstan.host | |
| vipkeylogger, c53170393e7825648709b042f54ff764a4228f38b31ecf29b7e7d971b4e42b56, Server.lurstan.host | |
| vipkeylogger, ebacd47d8d9c76fbc8e7f1c2d4768f5db3911ce8374ac2a704223c7c302b6998, mail.privateemail.com | |
| xloader, 0b4068937a44dd0cae5a1bb2eac56a4d60da190adbcf43a5dc05332dd97857b6, http://www.authnine.xyz/axnl/ | |
| xloader, 0e6389a3fdfa62ca6e1b852be32912ccc7152011c3de3bb12bcca515109b3f38, www.cyvirtual.xyz | |
| xloader, 10c502a060f3625e5ec841bf87e3f1e04f1ef0794edfcdc4225dd7d6cde0e2f1, ww.beacondata.xyz/c91t | |
| xloader, 1810d2d9df43ec403bbcf58140b9e2fef92cb644b234a2551c144d06d10ba68d, http://www.aibay.top/k12w/ | |
| xloader, 192aa0a8e282a9344634f2742b7af5e0c312b110b93c16c5f1107b279e76866f, http://www.s5dic3tz5.xyz/vu22/ | |
| xloader, 23323a33069681bab514aeb89322790e97f02099685bcfbeefd43afccca67141, www.beacondata.xyz/c91t | |
| xloader, 23fe0166456c0cc305c6d7eebb8f9f24385ff9dccd544e8246b093889c35d25f, http://www.s5dic3tz5.xyz/vu22/ | |
| xloader, 2412e0910cc1deae89794bb142f6a0ec6089761fcace1f51f968b8f62bb19c32, www.telearhfdech.digital | |
| xloader, 282e13a70ed78c813eb0c3f8452a1f458e74b06b263ac2e33f00c91b3d7b9ea2, www.torrentfunk.com/z1z6 | |
| xloader, 2fbeb147acc6a400fdf52595966a38c61f6b323536d9a244de11067c9da57610, www.prestigeapp.xyz/x6s2 | |
| xloader, 34c4a7d2e16716cc0a9f9518718dd8efd2d36f97d2ee93721b9c2b40f4a164ce, 20250701_034838_qPFcme1_wAODETzzlx_ZCmxIZctkHjvV.eml | |
| xloader, 38e65102a6d8af117d96ba3159ab096d2b95ea8615408667997ce1375c00f35e, www.prestigeapp.xyz/x6s2 | |
| xloader, 3d4b7da0e29cdd7948064dd1a63fe86401240716d54ab1ef4d6e234e0b66807e, www.telearhfdech.digital | |
| xloader, 40167477540a9876374b2bdf7f211b8a943dc382653b6ecd7c815800ad2a1385, www.8pjz4m6z.top/lfmt | |
| xloader, 4857ee7f02efc4f90333790708097f4ad955beaaf41cdfe6ba11a5385a1ba8d5, www.royalfood.shop/5eia | |
| xloader, 4fe0933a0bf1ade46b1dfe96a881c8528246b40d32aa3d08c18ab25d71e0946c, www.isjiawei.xyz/zgcp | |
| xloader, 53d30b6b4749ebdfdfebc9a93793ea3863d5c5ef93594e3c215d91b347db2bca, www.aplayplinko.xyz/hi26/ | |
| xloader, 5b3289beac94dff2d22258090d7b1a8af7f5527606fc7e0e24f772e94f5cf7a1, www.beacondata.xyz/c91t | |
| xloader, 5bf3c820c4ed7b2b2e38dec099a4b76273a4e82472ced8f9cad59ba37b02dcb1, host=www.royalfood.shop/5eia | |
| xloader, 5e000909af896e406ecd05a8d6a880322356ac3deb01da1f964a0bb0b225398f, www.3333bet.website/180h | |
| xloader, 61c3caec2a3c95494495549b3b538ddbbc3240eb794a57ac759ce4164b880734, http://www.aibay.top/k12w/ | |
| xloader, 61d6bc63a0a6db062dd3f42a6ae0dec0a8990d445200660ce6346047128c2cc3, www.prestigeapp.xyz/x6s2 | |
| xloader, 62da33c2e155768abd4ef31719662c17ec0d1d282c143d1d1d9f4c4a6c622040, www.3333bet.website/180h | |
| xloader, 65bcbf5fd47e0d3de349ea522b93b5564a143ce2a9f61693b6870ef14740bd63, www.restrainreflection.xyz/el9f | |
| xloader, 6781be8abda50b0cc7d27b9466f7b39572f978cf16151092554e7b4557f0ac06, ctopeaux.shop/hi26 | |
| xloader, 68fae3525daf2f34468abf08649f38ae82b7d0adbe3c0714476702bd58c39fa8, http://www.m2ijmq.vip/wbw6/ | |
| xloader, 6924363cb427ecd59994781e876040d4f0f2422fec9b0e1f61dbe9000dee2baa, www.naafiuighurkuba.sbs | |
| xloader, 6de98d353d17a24ecee4a837b122624ed6438a7c1e205dc0b3c252a5e83b0103, www.expertscloud.xyz/jmyp | |
| xloader, 7d6248b79e83e710efc263a60b855854648088ea196e3460aece7f3fef4dbc8c, ctopeaux.shop/hi26 | |
| xloader, 818748704f30fafa6b32864efe6904d7c3a972c461bdbff0f18cb20f960304b5, www.alpenoirch.online | |
| xloader, 876186ad1969e2f202fd93fdde333f8d042e4dd35c687a8f17723f77788d1837, aplayplinko.xyz/hi26 | |
| xloader, 8c3489348715bda7436dc0fe13fdbe2bd13820b766422a820096cf14008bec09, www.hkkax.xyz | |
| xloader, 944a6a3a4de33125c36c3f343c2303a61a9b94f5044a77f35d38d4e7e28283da, http://www.dualmining.xyz/0ajo/ | |
| xloader, 9457c57f87426deb09c61c3d665d58120b8007a004a09777aae236a74526ff2f, http://www.bnplsolutions.xyz/rwj2/ | |
| xloader, a099fd8df9bd4c01464c6b2ebe38fc174d073702a0b75338bc010aa98131f18d, ctopeaux.shop/hi26 | |
| xloader, a17117280214fe71571039b3863859bce0282d686f7cb2f0082c533170dc79a7, www.telearhfdech.digital | |
| xloader, a553ff1d13ae071438bd4bbea08a59917a5dcb635c80024d7438059158b0d39e, www.8pjz4m6z.top/lfmt | |
| xloader, a58896a47761d269afb0f254997065c2dcc173cedbbb3d3a87d2e6c83e5a3611, www.playboysolana.xyz/av1g | |
| xloader, adb3ace893f661c1578e335b5247414f87c554922d47660b223c52b3cdb79649, www.royalfood.shop/5eia | |
| xloader, adf664c4bba9af7873a7aa41ee0f2264e2757f14d8ac6619194572b58c1e7e68, www.royalfood.shop/5eia | |
| xloader, b7848d685d3768d2098ffaa76afe70f95516024955a380893a221f64ed5abf85, http://www.glucozenes.shop/ihgp/ | |
| xloader, cd329f54525e470e879f7bd111f4103cc63b412549ec6be25d69bebc78ed4ac2, www.expertscloud.xyz/jmyp | |
| xloader, df6da3ee9daf4cfd9047fa531202f860f6296e009f2f4eb0c1e2905cea319b09, www.bloxtools.website | |
| xloader, e5b03cd986d01784169cf3c91b130eb538c17f44e1136a212f3a6a60080cd894, www.cyvirtual.xyz | |
| xloader, e703350c07f3828f681e338b68e3ab8cd7ca933fcd056bf9487eb10f419431e5, www.aplayplinko.xyz/hi26/ | |
| xloader, e82761150effc8a77c096328b3fe325dd7910104f9d756a56868653e3c813dc6, www.bloxtools.website | |
| xloader, efa23692aeb1a3c3365ba0c850e3248f4f0009bf386ff101dcd8dafe65f70024, http://www.authnine.xyz/axnl/ | |
| xloader, efd5bd5583718e2f16537a1c78f65c7dec90933451615c7663995533fd6f3d68, http://www.authnine.xyz/7dqp/ | |
| xloader, f0a905542b77b1e9d101dff1115070bffd1871f4c2ada0f3a95ee21081e8c671, www.telearhfdech.digital | |
| xloader, f6a0ee3459a41918aedc9dc305eb06e8781da0e48bc44a8528913e038b482026, http://www.voxedrip.xyz/eg8s/ | |
| xloader, f700199315360a824ed6eca65f543d531d04210118e3cfc8bfbe986ed1641aaa, ctopeaux.shop/hi26 | |
| xworm, 754da186c4e37abfd6f3a1c6108f567f4c05dd1082a8b139ec7745b108c377b8, enermax-com.cc:4190 | |
| xworm, d9dbaa0e882dac03609ce5121d53edd308c7b35b63036e6f8b59d7222175877c, dpunk.duckdns.org:2025 | |
| [email protected] | |
| [email protected] | |
| [email protected] | |
| [email protected] | |
| [email protected] | |
| [email protected] | |
| [email protected] |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment