Website
*.mybluehost.me
Tags
Phishing C&C Download Exfiltration
Phishing
Attackers can use a customized subdomain of mybluehost.me to host their phishing websites.
Command and Control
Attackers can use a customized subdomain of mybluehost.me as their C&C server.
Exfiltration
Attackers can add upload functionalities hosted on *.mybluehost.me and exfiltrate data on there.
Download
Malicious tools can be stored on *.mybluehost.me and downloaded when required.
Service Provider
Bluehost
Sample
https://www.joesandbox.com/analysis/302028/0/html
Created: 2022-03-27
Last Update: 2022-03-27
Credits: Adithya Ravoori - @ravooriadithya