add indicators related to infection chain found at 185.156.72.2 (#821)

g0d33p3rsec · web-flow · commit 53c260b0f17c · 2025-05-19T00:27:39.000-04:00
* add indicators related to infection chain found at 185.156.72.2

* add related steam profiles used to relay c2 addresses

* add 193.41.226.231/32
diff --git a/IP-addr.cidr.in-addr.arpa b/IP-addr.cidr.in-addr.arpa
@@ -34,6 +34,7 @@
 32.150.5.153.43
 32.154.197.137.79
 32.156.180.51.49
+32.157.96.254.185
 32.157.99.153.43
 32.16.215.131.45
 32.16.40.130.43
@@ -55,14 +56,17 @@
 32.186.60.153.43
 32.188.34.139.235
 32.188.87.153.43
+32.191.226.60.62
 32.191.251.119.160
 32.193.186.51.49
 32.194.13.130.43
 32.195.250.61.49
 32.195.41.244.156
+32.196.72.156.185
 32.197.44.252.47
 32.197.7.252.47
 32.198.72.153.43
+32.2.72.156.185
 32.20.8.153.43
 32.202.190.137.45
 32.205.98.253.47
@@ -80,7 +84,9 @@
 32.224.120.251.47
 32.225.3.181.5
 32.229.95.3.192
+32.231.106.12.49
 32.231.139.205.154
+32.231.226.41.193
 32.231.51.76.80
 32.236.187.106.170
 32.236.194.253.47
@@ -128,9 +134,11 @@
 32.67.138.166.43
 32.67.26.252.47
 32.68.97.174.184
+32.69.207.83.77
 32.70.121.148.45
 32.70.186.51.49
 32.72.80.153.43
+32.8.72.156.185
 32.81.83.252.47
 32.85.59.153.43
 32.86.76.153.43
diff --git a/IP-addr.cidr.list b/IP-addr.cidr.list
@@ -23,13 +23,19 @@
 181.215.205.242/32
 184.174.97.59/32
 184.174.97.68/32
+185.156.72.196/32
+185.156.72.2/32
+185.156.72.8/32
+185.254.96.157/32
+185.80.128.14/32
 185.81.115.28/32
 192.142.18.243/32
 192.3.55.217/32
 192.3.95.229/32
 193.143.1.160/32
 193.143.1.54/32
 193.233.72.58/32
+193.41.226.231/32
 198.11.175.44/32
 198.11.183.177/32
 198.244.236.18/32
@@ -115,6 +121,7 @@
 47.90.161.114/32
 47.90.228.106/32
 47.90.248.150/32
+49.12.106.231/32
 49.51.180.156/32
 49.51.184.146/32
 49.51.186.193/32
@@ -128,7 +135,9 @@
 5.182.210.39/32
 51.222.104.17/32
 61.28.233.21/32
+62.60.226.191/32
 69.49.234.138/32
+77.83.207.69/32
 79.137.197.154/32
 8.221.101.91
 8.221.106.55/32
diff --git a/IP-addr.in-addr.arpa b/IP-addr.in-addr.arpa
@@ -34,6 +34,7 @@
 150.5.153.43
 154.197.137.79
 156.180.51.49
+157.96.254.185
 157.99.153.43
 16.215.131.45
 16.40.130.43
@@ -54,15 +55,18 @@
 183.121.253.47
 186.60.153.43
 188.87.153.43
+191.226.60.62
 191.251.119.160
 192.3.55.217
 193.186.51.49
 194.13.130.43
 195.250.61.49
 195.41.244.156
+196.72.156.185
 197.44.252.47
 197.7.252.47
 198.72.153.43
+2.72.156.185
 20.8.153.43
 202.190.137.45
 205.98.253.47
@@ -78,7 +82,9 @@
 224.120.251.47
 225.3.181.5
 229.95.3.192
+231.106.12.49
 231.139.205.154
+231.226.41.193
 231.51.76.80
 235.139.34.188
 236.187.106.170
@@ -127,9 +133,11 @@
 67.138.166.43
 67.26.252.47
 68.97.174.184
+69.207.83.77
 70.121.148.45
 70.186.51.49
 72.80.153.43
+8.72.156.185
 81.83.252.47
 85.59.153.43
 86.76.153.43
diff --git a/IP-addr.list b/IP-addr.list
@@ -23,6 +23,10 @@
 181.215.205.242
 184.174.97.59
 184.174.97.68
+185.156.72.196
+185.156.72.2
+185.156.72.8
+185.254.96.157
 185.80.128.14
 185.81.115.28
 188.34.139.235
@@ -32,6 +36,7 @@
 193.143.1.160
 193.143.1.54
 193.233.72.58
+193.41.226.231
 198.11.175.44
 198.11.183.177
 198.244.236.18
@@ -114,6 +119,7 @@
 47.90.161.114
 47.90.228.106
 47.90.248.150
+49.12.106.231
 49.51.180.156
 49.51.184.146
 49.51.186.193
@@ -127,7 +133,9 @@
 5.182.210.39
 51.222.104.17
 61.28.233.21
+62.60.226.191
 69.49.234.138
+77.83.207.69
 79.137.197.154
 8.221.101.91
 8.221.106.55
diff --git a/add-domain b/add-domain
@@ -59,6 +59,7 @@ discord.lossantossanto1.repl.co
 socialearn.co
 t.co
 3dmegastructures.com
+16.16.4t.com
 5399-coinbase.com
 8vjejn.com
 8vpro.com
diff --git a/add-link b/add-link
diff --git a/add-wildcard-domain b/add-wildcard-domain
