Recent DarkGate Activity & Trends [Wednesday, December 13, 2023]

Recent DarkGate Activity & Trends [Wednesday, December 13, 2023]
Report

Recent DarkGate Activity & Trends

Description :
DarkGate is a malware family, dating back to 2018, that gained prominence after the demise of Qakbot with a Malware-as-a-Service (MaaS) offering advertised in underground cybercrime forums starting in the summer of 2023. This blog examines DarkGate intrusion trends observed by ThreatLabz between June and October 2023.

Published Created Modified
2023-12-13 17:05:57 2023-12-13 17:05:57 2023-12-13 17:18:27

Tags

Indicators

IPv4s :
  • 88.119.175.245
  • 45.144.28.244
  • 5.42.77.33
  • 94.131.106.78
  • 45.32.222.253
  • 66.42.110.147
  • 94.228.169.123
  • 94.228.169.143
  • 5.188.87.58
Domains :
  • gsrhrservices.com
  • dhtech.ae
  • supershuttles.co.za
  • boutiquedhev.com
  • japaaesthetics.com
  • axecapital.ro
  • adam-xii-rpl.my.id
  • skylineprodutora.com.br
  • drvidhya.in
  • fefasa.hn
  • blackshine.lk
  • bligevale.co.zw
  • grupowcm.com.br
  • medsure.com.br
  • journeotravel.com
  • techs.com
  • luxury-event-rentals.com
  • roundstransports.com
  • grupec.com.co
  • runnerspacegifts.com
  • eelontech.com
  • expertaitalia.eu
  • winstonandfriendz.ca
  • ibuytech.pk
  • sictalks.com
  • humanrecruitasia.com
  • appapi.store
  • semquedagotas.com.br
  • ziaintegracion.com
  • themarijuanashow.com
  • divinfosystem.com
  • flyforeducation.com
  • alpileannn.com
  • beautifullike.com
  • onetabmusic.com
  • kalismprivateltd.co.uk
  • plusmag.ro
  • tikwave.site
  • kelotecnologia.com
  • thekhancept.com
  • yellowstone.com.mm
  • nile-cruiise-egypt.com
  • getldrrgoodgame.com
  • gatraders.com.pk
  • vtektv.com
  • deroze.net
  • gsrglobal.org
  • darkgate.com
  • kiwifare.net
  • arshany.com
  • asiaprofessionals.net
  • mycopier.com.my
  • a2zfortextile.com
  • mfleader.com.ar
  • unasd.org
  • hypothequeswestisland.com
  • ncsinternationalcollege.com
  • nia-dbrowntestserver.com.ng
  • reverasuplementos.fun
  • millennialradio.es
  • phomecare.co.uk
  • glowriters.com
  • ofc.ai
  • ahantadevnet.org
  • sirishareddy.info
  • hmas.mx
  • dna-do-gamer.com
  • plataformaemrede.com.br
  • skincaremulher.fun
  • alianzasuma.com
  • corialopolova.com
  • msteamseyeappstore.com
Hashes :
  • youth.digital
MITRE ATT&CK Techniques :

External References

You can download the txt file containing the indicators by clicking on the button below:

About the author
Julien B.

Securitricks

Up-to-Date Cybersecurity Insights & Malware Reports

Securitricks

Great! You’ve successfully signed up.

Welcome back! You've successfully signed in.

You've successfully subscribed to Securitricks.

Success! Check your email for magic link to sign-in.

Success! Your billing info has been updated.

Your billing was not updated.