Attacker Tracking Users Seeking Pakistani Passport

description: A few days ago we encountered a breach on a Pakistani government site which was compromised to deliver a dangerous payload- the Scanbox Framework. This compromise is exactly the kind of attack we were concerned about when discussing the danger in a previous compromise that we uncovered just a few weeks ago against another government site, at that time the Bangladesh Embassy in Cairo.

publish date:

reference :

IOC Table
total 4
type value
URL http://185.236.76.35/
URL http://185.236.76.35/i
URL http://185.236.76.35/i/recv.php
URL http://185.236.76.35/i/?1