Website
*.repl.co
Tags
Phishing C&C Exfiltration Download
Phishing
Attackers can use *.repl.co to host their phishing websites.
Command and Control
Attackers can use a customized subdomain of repl.co as their C&C server.
Exfiltration
Attackers can add upload functionalities hosted on *.repl.co and exfiltrate data on there.
Download
Attackers can host their malicious tools on an external provider and then use *.repl.co to fetch the files.
Service Provider
Replit
Sample
https://www.joesandbox.com/analysis/487279/0/html
Created: 2022-01-20
Last Update: 2022-01-20
Credits: Anonymous