1st Dual Stack Threat Feed

Mrlooquer has created the first threat feed focused on systems with dual stack. Since IPv6 protocol has begun to be part of malware and fraud communications, It is necessary to detect and mitigate the threats in both protocols (IPv4 and IPv6).

We analyze and generate daily our dual stack threat feed. You can download below the IOCs we’ve seen in the last 7 days. However, you can access to all our threat database in our IPLake service.

JSON CSV
STIX Soon
Data generated: 2020-11-28 11:00 GMT
 

Total: 155,231 IOCs

Malware: 51,535 IOCs

Fraud: 99,119 IOCs

Anonymization: 4,577 IOCs

Dual stack IOCs with CVEs (7 days)

IPv6 CVE Nº Ports Domains
2604:4500:a:7::7f8e:8d2e 30 8 23-29-125-116.static.hvvc.us
2001:41d0:305:2100::465a 5 4 vps-f8b6e6c8.vps.ovh.net
2001:41d0:401:3200::3d7d 17 3 vps-4865ebd4.vps.ovh.net
2a00:1838:36:20e::a752 30 5 180.173.22.185.in-addr.arpa.
2a01:e0a:2eb:8170::ce0e:... 15 9 82-64-223-54.subs.proxad.net
2603:1036:302:415d::8 30 2 autodiscover.sandrsecurity.com
2a01:4f8:151:3b1::2 30 23 y.gy
2a00:d0c0:200:0:48a:86ff... 4 16 streamd-3chords.de
2a0f:9100:110:a::87 6 2 135.160.153.45.in-addr.arpa.
2a0f:9100:110:a::89 6 2 137.160.153.45.in-addr.arpa.

Top IPv6 prefixes by IOCs (7 days)

IPv6 Count ASN Number Country
2606:4700:30::/64 45,568 13335 US
2a00:15f8:a000:5::/64 2,896 25532 RU
2606:4700:20::/64 2,566 13335 US
2606:4700:3037::/64 2,332 13335 US
2606:4700:3033::/64 2,299 13335 US
2606:4700:3035::/64 2,290 13335 US
2606:4700:3031::/64 2,243 13335 US
2606:4700:3034::/64 1,916 13335 US
2606:4700:3032::/64 1,896 13335 US
2606:4700:3036::/64 1,870 13335 US

Who Is Involved?

IOC FEED by MrLooquer is based on Open Source Intelligence and key partnerships with Cybersecurity Industry leads companies.
Get the party started!

blueliv

If you are interested in being part of MrLooquer IOCFeed send us an email.

Terms of Services (ToS)

By using the website of IOCFeed by MrLooquer, or any of the services / datasets referenced above, you agree that:

  • Any information provided by MrLooquer IOCFeed is offered as it is on best effort.
  • All datasets offered by MrLooquer IOCFeed can be used for both, commercial and non-commercial purpose giving appropriate credit (CC BY-SA 4.0)
  • IOCFeed by MrLooquer is not responsible for any damage that may be caused by the information offered. In the same way it is not responsible for possible false positives.