{ "Event": { "analysis": "1", "date": "2026-03-11", "extends_uuid": "", "info": "[Threat Intel][PhishHuntMY] Bantuan Laptop eMadani Phishing Analysis", "protected": false, "publish_timestamp": "1774048982", "published": true, "threat_level_id": "3", "timestamp": "1774048981", "uuid": "4f13ed69-7e1b-42f7-b8a4-8a47116ab229", "Orgc": { "name": "Rectifyq", "uuid": "cd9bd516-61fa-476b-980f-2f8de03992d4" }, "Tag": [ { "colour": "#ffffff", "local": false, "name": "tlp:clear", "relationship_type": "" }, { "colour": "#004646", "local": false, "name": "type:OSINT", "relationship_type": "" }, { "colour": "#0088cc", "local": false, "name": "misp-galaxy:target-information=\"Malaysia\"", "relationship_type": "" }, { "colour": "#0088cc", "local": false, "name": "misp-galaxy:country=\"indonesia\"", "relationship_type": "" }, { "colour": "#0088cc", "local": false, "name": "misp-galaxy:online-service=\"b0c71d51-34fd-47b5-9eb4-dd406ffc607f\"", "relationship_type": "" }, { "colour": "#49a260", "local": false, "name": "rectifyq:category=\"threat\"", "relationship_type": "" }, { "colour": "#130049", "local": false, "name": "rectifyq:sub-category=\"campaign-analysis\"", "relationship_type": "" }, { "colour": "#ffd12e", "local": false, "name": "rectifyq:target=\"broad-based\"", "relationship_type": "" }, { "colour": "#dd2e44", "local": false, "name": "rectifyq:MY-relevancy=\"relevant\"", "relationship_type": "" }, { "colour": "#b94b1d", "local": false, "name": "rectifyq:mitre-att&ck=\"none-from-src\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"MalwareBazaar\"", "relationship_type": "" }, { "colour": "#626567", "local": false, "name": "rectifyq:no-samples-in=\"Tria.ge\"", "relationship_type": "" }, { "colour": "#3800d9", "local": false, "name": "rectifyq:action-taken=\"VT-comment\"", "relationship_type": "" }, { "colour": "#3d00e9", "local": false, "name": "rectifyq:action-taken=\"telegram\"", "relationship_type": "" } ], "Attribute": [ { "category": "External analysis", "comment": "", "deleted": false, "disable_correlation": false, "timestamp": "1773688979", "to_ids": false, "type": "link", "uuid": "bbc6da26-3fdc-459b-9f2b-a80fc3ab1e5d", "value": "https://shrouded-brake-a7f.notion.site/Bantuan-Laptop-eMadani-Phishing-Analysis-320002229ba780278300f55f5b06adb1" }, { "category": "Network activity", "comment": "Phishing Domain", "deleted": false, "disable_correlation": false, "timestamp": "1773752485", "to_ids": true, "type": "domain", "uuid": "2dd41bb2-54c9-4a2c-9f95-1e02f70838ce", "value": "percumaa477.com", "Tag": [ { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "Phishing Subdomain", "deleted": false, "disable_correlation": false, "timestamp": "1773752507", "to_ids": true, "type": "hostname", "uuid": "773d2b73-5a6f-40ce-8faa-be4c3289cd85", "value": "bantuan-laptop.percumaa477.com", "Tag": [ { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Network activity", "comment": "Phishing URL", "deleted": false, "disable_correlation": false, "timestamp": "1773752528", "to_ids": true, "type": "url", "uuid": "354879ad-6ed4-41db-995b-b7f7703d2a47", "value": "https://bantuan-laptop.percumaa477.com/", "Tag": [ { "colour": "#342294", "local": false, "name": "CommentAdded", "relationship_type": "" } ] }, { "category": "Other", "comment": "", "deleted": false, "disable_correlation": false, "timestamp": "1773689056", "to_ids": false, "type": "text", "uuid": "2fb08653-ec42-49fe-a46e-37f2e4083fc9", "value": "### Infrastructure IOCs\r\n| **Type** | **Value** |\r\n| --- | --- |\r\n| Build ID | jvx5jttgUVtcK5hc2-ZSr |\r\n| Cloudflare Beacon Token | f1703f8ed0ae43488f15a60361d7b25b |\r\n| Framework | Next.js + Turbopack |\r\n| Registry Domain ID | 3070857253_DOMAIN_COM-VRSN |\r\n| API Pattern | /api?id=1&step=[1,2,3] |\r\n| Server Path | /ROOT/node_modules/next/dist/compiled/process/ |" } ] } }