IOC pivotioc · domain
w8510[.]com
CN · ChinaFlax Typhoonconfidence · high
Tier-2 C2 root domain for the `Oriole` campaign of the Raptor Train IoT botnet operated by Flax Typhoon - linked by DOJ/FBI to Beijing-based Integrity Technology Group. Active June 2023 through the FBI takedown announced September 2024; documented by Lumen Black Lotus Labs.
- first seen
- May 31, 2023
- publisher
- Lumen Black Lotus Labs