1st Dual Stack Threat Feed

Mrlooquer has created the first threat feed focused on systems with dual stack. Since IPv6 protocol has begun to be part of malware and fraud communications, It is necessary to detect and mitigate the threats in both protocols (IPv4 and IPv6).

We analyze and generate daily our dual stack threat feed. You can download below the IOCs we’ve seen in the last 7 days. However, you can access to all our threat database in our IPLake service.

JSON CSV

STIX Soon

Data generated: 2020-07-13 00:00 GMT

Total: 138,152 IOCs

Malware: 50,358 IOCs

Fraud: 84,741 IOCs

Anonymization: 3,053 IOCs

Dual stack IOCs with CVEs (7 days)

IPv6	CVE	Nº Ports	Domains
2603:1046:c02:1838::2	30	16	HKG-efz.ms-acdc.office.com
2600:1f16:d83:1200::6e:3	847	82	c9f44961.ngrok.io
2603:1036:302:40d0::8	30	2	autodiscover.sandrsecurity.com
2a0d:8480:3::3cb	30	5	x-vdsina-ams-tor.xks.in
2a01:4f9:c010:9ed2::1	30	5	static.54.223.217.95.clients.your-server.de
2a01:4f9:c010:6b27::1	30	5	static.105.14.217.95.clients.your-server.de
2001:b011:4006:111a::11	15	12	36-227-162-2.dynamic-ip.hinet.net
2603:1046:c02:1080::2	30	16	HKG-efz.ms-acdc.office.com
2a06:1700:1::15	30	4	53.129.228.37.in-addr.arpa.
2603:1036:302:880::8	30	2	autodiscover.sandrsecurity.com

Top IPv6 prefixes by IOCs (7 days)

IPv6	Count	ASN Number	Country
2606:4700:30::/64	45,568	13335	US
2a00:15f8:a000:5::/64	2,877	25532	RU
2606:4700:20::/64	2,436	13335	US
2606:4700::/64	1,401	13335	US
2606:4700:3033::/64	1,039	13335	US
2606:4700:3035::/64	1,029	13335	US
2606:4700:3037::/64	1,011	13335	US
2606:4700:3031::/64	990	13335	US
2606:4700:3034::/64	894	13335	US
2606:4700:3036::/64	844	13335	US

Who Is Involved?

IOC FEED by MrLooquer is based on Open Source Intelligence and key partnerships with Cybersecurity Industry leads companies.
Get the party started!

Terms of Services (ToS)

By using the website of IOCFeed by MrLooquer, or any of the services / datasets referenced above, you agree that:

Any information provided by MrLooquer IOCFeed is offered as it is on best effort.
All datasets offered by MrLooquer IOCFeed can be used for both, commercial and non-commercial purpose giving appropriate credit (CC BY-SA 4.0)
IOCFeed by MrLooquer is not responsible for any damage that may be caused by the information offered. In the same way it is not responsible for possible false positives.