indicatordomain
sfrclak[[.]]com
- First seen
- 2026-05-13
- Last seen
- 2026-05-13
- Sightings
- 8
Posts referencing this indicator
- Supply Chain Compromise Impacts Axios Node Package Manager
Command and Control (C2) domain used to download multi-stage payloads and the Remote Access Trojan (RAT).
- Intelligence Center
Malicious domain associated with the campaign infrastructure.
- Supply Chain Attack on Axios Pulls Malicious Dependency from npm
Command and Control (C2) domain for the multi-stage RAT.
- STARDUST CHOLLIMA Likely Compromises Axios npm Package
Command-and-control (C2) address used by the updated ZshBucket malware.
- Mitigating the Axios npm supply chain compromise
C2 domain owned by Sapphire Sleet used to serve second-stage payloads.
- Inside the Axios supply chain compromise - one RAT to rule them all
C2 domain used for stage-2 payload delivery and RAT communications.
- Elastic releases detections for the Axios supply chain compromise
Primary Command and Control (C2) domain for all cross-platform payloads.
- North Korea-Nexus Threat Actor Compromises Widely Used Axios NPM Package in Supply Chain Attack
WAVESHAPER.V2 C2 server domain