Lmst

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: **talus-foundatlon[.]xyz**
🔍 Analysis at: https://urlscan.io/result/019add13-8eea-759f-aee6-57028982ffb8/

#malware #cybersec #DigitalFraud #scamalert #fake

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: **alert[.]casino6868[.]xyz**
🔍 Analysis at: https://urlscan.io/result/019adc85-617a-745a-b456-0e676dad2192/

#ScamPrevention #cybersec #BlockchainFraud #CryptoProtection #SecureYourWallet

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: **defire-solutions[.]pages[.]dev**
🔍 Analysis at: https://urlscan.io/result/019adc85-7ad3-7101-b4e9-f2410da02eae/

#ScamDetection #BlockchainSafety #cybersec #ScamPrevention #malware #NFT

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: **ahaoinn[.]com**
🔍 Analysis at: https://urlscan.io/result/019adc85-4977-71bd-992e-7bb8064e379d/

#cybersec #WalletHackers #ProtectCrypto

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: **blueboatpresidoo[.]pages[.]dev**
🔍 Analysis at: https://urlscan.io/result/019adc84-6983-7109-bd43-ab2e395ae654/

#Web3Security #cybersec #Web3Awareness #DigitalFraud #WalletHackers #scamalert #AntiPhishing

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: **token-pocket[.]pages[.]dev**
🔍 Analysis at: https://urlscan.io/result/019adc84-8ac9-76b0-b2b3-b84c93c819e9/

#malware #BlockchainSafety #DigitalFraud #CryptoDrainers #cybersec #Web3Hacking #CryptoThreats

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: **dnzdfg8[.]pages[.]dev**
🔍 Analysis at: https://urlscan.io/result/019adc83-3cdf-7689-a7b1-05b340ef8df3/

#Web3Hacking #CryptoSafety #BlockchainFraud #cybersec

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: **mail[.]google[.]oscarmar[.]com**
🔍 Analysis at: https://urlscan.io/result/019adc70-464f-7122-8a49-40e711818482/

#scam #CryptoAwareness #DigitalFraud #cybersec #CryptoThreats

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: **ftnxboost[.]icu**
🔍 Analysis at: https://urlscan.io/result/019adc70-0ce6-74ff-a718-3d1ecc606d50/

#BlockchainSafety #ScamPrevention #cybersec

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: **distribution-mon[.]xyz**
🔍 Analysis at: https://urlscan.io/result/019adc6f-985e-757c-896a-198724a144b9/

#scamalert #malware #cybersec #BlockchainFraud

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: **kntara[.]click**
🔍 Analysis at: https://urlscan.io/result/019adc6f-144c-715e-bf27-93f210d0057f/

#NFT #CryptoHacking #WalletHackers #cybersec #ScamPrevention

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: **oklvld[.]pl[.]ua**
🔍 Analysis at: https://urlscan.io/result/019adc6e-5526-71ab-8b68-cadfd64e9ec4/

#cybersec #BlockchainFraud #ScamPrevention

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: **bullishdegen[.]pro**
🔍 Analysis at: https://urlscan.io/result/019adc6e-43ca-774e-8299-d8446e52b966/

#CryptoThreats #BlockchainFraud #cybersec #CryptoHacking #PhishingScam

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: **omnera-tge[.]xyz**
🔍 Analysis at: https://urlscan.io/result/019adc6e-1a36-74fd-bd91-2495e035d279/

#scam #CryptoAwareness #cybersec #malware #ScamDetection #Web3Awareness

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: **trezor-suite-feq-us[.]typedream[.]app**
🔍 Analysis at: https://urlscan.io/result/019adc6d-baca-775a-aab3-a9738f349c87/

#CyberFraud #malware #cybersec #ScamPrevention

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: **oeze5y57b26xn8zk[.]umso[.]co**
🔍 Analysis at: https://urlscan.io/result/019adc6d-8454-73d0-ab53-3cdafcb4bded/

#malware #PhishingScam #cybersec #PhishingWarning #SecureYourWallet

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: **bitbboob[.]com**
🔍 Analysis at: https://urlscan.io/result/019adc6c-f76b-759b-98f1-e03b6cac7883/

#PhishingWarning #CryptoDrainers #WalletHackers #cybersec

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: **scst[.]booksvala[.]in**
🔍 Analysis at: https://urlscan.io/result/019adc6b-f9e6-734d-931f-9ae62cfebd34/

#cybersec #BlockchainFraud #scamalert #CryptoAwareness #NFT #fake #Web3Security

2025-12-01 RDP #Honeypot IOCs - 1980 scans
Thread with top 3 features in each category and links to the full dataset
#DFIR #InfoSec

Top IPs:
134.199.198.215 - 1824
103.126.161.152 - 27
80.64.19.158 - 18

Top ASNs:
AS14061 - 1833
AS396982 - 36
AS135959 - 27

Top Accounts:
hello - 1881
Test - 33
Administr - 15

Top ISPs:
DigitalOcean, LLC - 1833
Google LLC - 36
Onebim Vietnam Limited Company - 27

Top Clients:
Unknown - 1980

Top Software:
Unknown - 1980

Top Keyboards:
Unknown - 1980

Top IP Classification:
hosting - 1881
Unknown - 93
hosting & proxy - 3

Pastebin links with full 24-hr RDP Honeypot IOC Lists:
Bad API request, invalid api_dev_key

#CyberSec #SOC #Blueteam #SecOps #Security

🚨 PHISHING DETECTED 🚨

🔗 Suspicious URL: **ai-trade[.]live**
🔍 Analysis at: https://urlscan.io/result/019adc6b-a1be-765f-a2c1-36e669353a2d/

#FraudDetection #cybersec #CryptoHacking #CryptoProtection

#cybersec

Client Info