216.73.216.133

Indicator (IOC)

stix Revoked AlienVault · Published 21/12/2025 13:44 · Modified 21/12/2025 14:53

Essential information

Value / Name
winterchill.shop
Confidence
100/100
Revoked
Yes
Valid from
22/05/2025 01:03
Valid until
17/10/2025 00:58
Pattern type
stix
Published
21/12/2025 13:44
Modified
21/12/2025 14:53
Author / Source
AlienVault

Description

No description.

Pattern

[domain-name:value = 'winterchill.shop']

Labels / Tags

Labels: cat-themed domains data theft domain seizures information stealer infostealing malware infrastructure takedown infrastructure tracking lummac lummac2 malware distribution malware-as-a-service multi-tiered c2 redline risk scoring threat intelligence

Marking (TLP)

TLP:CLEAR