Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

yousweeps.com #1412

Closed
g0d33p3rsec opened this issue Dec 15, 2024 · 0 comments
Closed

yousweeps.com #1412

g0d33p3rsec opened this issue Dec 15, 2024 · 0 comments
Assignees
@spirillen
Labels
Phishing Phishing is the fraudulent attempt to obtain sensitive information or data, such as usernames, passw Scamming Scam Ware or Scamming
Milestone
Phishing

Comments

@g0d33p3rsec
Copy link
Collaborator

Comments

I received a lure email with a link to https://storage.googleapis.com/loblaman996655/lobla.html#... that redirected to https://us-zelonecard1000-tp.lpus.yousweeps.com/. Reviewing the history of the parent domain on urlscan showed a history of various subdomains being used to target different companies. See also: Phishing-Database/phishing#528

Wildcard domain records

yousweeps.com|phishing

Sub-Domain records

No response

Hosts (RFC:953) specific records, not used by DNS RPZ firewalls

No response

SeafeSearch records

No response

Screenshots

Screenshot

Screenshot 2024-12-15 153946
86a7a5c1-f46f-4124-a8b8-c6e36826e122
ce114614-648d-43be-99a0-ae62a45e534f
c96ce22a-6b80-49be-8bc1-8d8a3c003125

Links to external sources

https://us-zelonecard1000-tp.lpus.yousweeps.com/ 
https://us-gamesplay-tp.lpus.yousweeps.com/
https://us-gamesplay-tp.lpus.yousweeps.com/ 
https://urlscan.io/result/86a7a5c1-f46f-4124-a8b8-c6e36826e122
https://urlscan.io/search/#yousweeps.com
https://urlscan.io/result/ce114614-648d-43be-99a0-ae62a45e534f/
https://urlscan.io/result/c96ce22a-6b80-49be-8bc1-8d8a3c003125/

logs from uBlock Origin

N/A
@g0d33p3rsec g0d33p3rsec added Scamming Scam Ware or Scamming Phishing Phishing is the fraudulent attempt to obtain sensitive information or data, such as usernames, passw labels Dec 15, 2024
@g0d33p3rsec g0d33p3rsec added this to the Phishing milestone Dec 15, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@spirillen spirillen

Labels
Phishing Phishing is the fraudulent attempt to obtain sensitive information or data, such as usernames, passw Scamming Scam Ware or Scamming
Milestone
Phishing
Development

No branches or pull requests
2 participants
@spirillen @g0d33p3rsec