Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

184.174.97.68/24 #1387

Open
g0d33p3rsec opened this issue Nov 29, 2024 · 0 comments
Open

184.174.97.68/24 #1387

g0d33p3rsec opened this issue Nov 29, 2024 · 0 comments
Assignees
@spirillen
Labels
IP Range Blacklisting networks by using IP addresses versus domain names Phishing Phishing is the fraudulent attempt to obtain sensitive information or data, such as usernames, passw
Milestone
Phishing

Comments

@g0d33p3rsec
Copy link
Collaborator

Comments

This CloudFlare protected domain is associated with several Amazon related domains being used for smishing lures. The following domains are currently associated with this IP:

amazoncrx.com
amazoncrw.com
amazonwwj.com
amazoncvo.co
amazonczf.co
amazonctg.com
amazoncth.com

See also: mitchellkrogza/phishing#520

Wildcard domain records

32.68.97.174.184|phishing

Sub-Domain records

No response

Hosts (RFC:953) specific records, not used by DNS RPZ firewalls

No response

SeafeSearch records

No response

Screenshots

Screenshot

Screenshot_20241129-130646
Screenshot 2024-11-29 133349
Screenshot 2024-11-29 132521
Screenshot 2024-11-29 133503

Links to external sources

https://search.censys.io/hosts/184.174.97.68/data/table#80-TCP-HTTP
https://urlscan.io/ip/184.174.97.68
https://app.any.run/tasks/af5d4374-820b-41e0-ace3-ab205f83fda3
https://urlscan.io/result/f1f9aa53-9d19-4a30-89c8-8a719ef8c0c6/#summary

logs from uBlock Origin

N/A
@g0d33p3rsec g0d33p3rsec added Phishing Phishing is the fraudulent attempt to obtain sensitive information or data, such as usernames, passw IP Range Blacklisting networks by using IP addresses versus domain names labels Nov 29, 2024
@g0d33p3rsec g0d33p3rsec added this to the Phishing milestone Nov 29, 2024
spirillen added a commit that referenced this issue Nov 30, 2024
@spirillen
184.174.97.68
f3bb731 
Fixing #1387

Rel mitchellkrogza/phishing#520

Signed-off-by: Spirillen <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@spirillen spirillen

Labels
IP Range Blacklisting networks by using IP addresses versus domain names Phishing Phishing is the fraudulent attempt to obtain sensitive information or data, such as usernames, passw
Milestone
Phishing
Development

No branches or pull requests
2 participants
@spirillen @g0d33p3rsec