Skip to content
This repository has been archived by the owner on Aug 8, 2023. It is now read-only.

gluvoob.com - suggestion to be added to blacklist #883

Open
lucamosca1 opened this issue May 18, 2023 · 2 comments
Open

gluvoob.com - suggestion to be added to blacklist #883

lucamosca1 opened this issue May 18, 2023 · 2 comments

Comments

@lucamosca1
Copy link

Hi there! Today we've been warned by AWS GuardDuty that one of our internal dns tried to resolve this harmful domain
@notracking
Copy link
Owner

What specifically is malicious about this domain?

@lucamosca1
Copy link
Author

GuardDuty details says: EC2 instance i-XXX is querying a domain name associated with a known Command & Control server.

Evidence: Threat intelligence details
Threat IP list
CrowdStrike
Threat names
PdfCaptchaLure21

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@lucamosca1 @notracking