Shopify phishing kit c546c6a9

Shopify phishing kit containing a high-entropy device identifier which should be a high quality indicator.

References

Recent Detections

  • hxxps://docs-upload-tld[.]ml/frame_html%253fsid=bUHB3bgDCyNf438d...
  • hxxps://feedbacktetjeysrgsd[.]azureedge[.]net/
  • hxxp://feedbacktetjeysrgsd[.]azureedge[.]net
  • hxxp://www[.]sylabs-dz[.]com/shopify/verification/E28A381C756M60...
  • hxxps://dhttertrertygh[.]azureedge[.]net/

IOK Rule (edit)

title: Shopify phishing kit c546c6a9
description: |
  Shopify phishing kit containing a high-entropy device identifier which should be a high quality indicator.
references:
  - https://urlscan.io/result/401d6161-cb5d-4e15-a9ac-20cf0a3ba857

detection:
  deviceID:
    html|contains: 'data-trekkie-device-id="c546c6a9-c197-40d4-817c-9fc681c519e9"'

  condition: deviceID

tags:
  - kit
  - target.shopify