Website
*.oraclecloud.com
Tags
Phishing Exfiltration Download C&C
Phishing
Attackers can use a *.oraclecloud.com subdomain to host their phishing websites.
Command and Control
Attackers can use *.oraclecloud.com for C&C purposes.
Exfiltration
Attackers can use Oracle Object Storage to upload exfiltrated files there.
Download
Attackers can store malicious tools on Oracle Object Storage and download them when needed.
Service Provider
Oracle
Sample
https://www.joesandbox.com/analysis/499112/0/html
Created: 2021-11-21
Last Update: 2021-11-21
Credits: Tas - @tas_kmanager