___          _____  _____    __  ____  ____       _ 
  / _ \        / ____||_   _|  / _||___ \|___ \     | |
 | | | |__  __| (___    | |   | |_   __) | __) |  __| |
 | | | |\ \/ / \___ \   | |   |  _| |__ < |__ <  / _` |
 | |_| | >  <  ____) | _| |_  | |   ___) |___) || (_| |
  \___/ /_/\_\|_____/ |_____| |_|  |____/|____/  \__,_|
                          ______                       
                         |______|                      

$:> Add a new phishing / malware campaign into 0xSI_f33d
$:>  <  The Portuguese Abuse Open Feed >
$:> by seguranca-informatica.pt
$:>
$:> help
$:> This feed compiles phishing and malware campaigns targeting only Portuguese citizens
$:> su root
$root:> Use the hashtag: #0xSI_f33d

Friends of 0xSI_F33d

$:> These organizations use data submitted to and verified by 0xSI_f33d.

---

Are you using 0xSI_f33d data, but not listed here?
Let us know so we can share the good news with the 0xSI_f33d community.

Infographic: Threat Report Portugal Q1 2021

$:> Visit the publication here.

$:> history | grep "infographic"
-Q4 2020 Infographic
-Q3 2020 Infographic
-Q2 2020 Infographic
-Q1 2020 Infographic

$:> Download the printable version: PDF or PNG
$:> Thanks, by root

API documentation

API is available at https://feed.seguranca-informatica.pt/api.php and will return a CSV or JSON response.
API is free but account creation is required. After that, the API token will be sent to your email.
Please note that running a massive amount of queries in a short time will get you blocked and/or banned.

$:> If you need a API token, please contact us here.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

By default, only last year submitions are returned. Examples on how to use the API can be found below.

$:> Parameters highlighted with red color are mandatory.

Example	Key | Value
from	feed.seguranca-informatica.pt/api.php?token_u=#&token_p=#&from=today possible values: {today;yesterday;last-3-days;last-week;last-month;last-6-months;last-year}
format	feed.seguranca-informatica.pt/api.php?token_u=#&token_p=#&from=today&format=csv feed.seguranca-informatica.pt/api.php?token_u=#&token_p=#&from=today&format=raw possible values: {csv;json;raw}
tag	feed.seguranca-informatica.pt/api.php?token_u=#&token_p=#&from=today&format=json&tag=malware possible values: only the available 0xSI_f33d tags
title_or_url	feed.seguranca-informatica.pt/api.php?token_u=#&token_p=#&from=today&format=json&tag=malware&title_or_url=amazon example 1: feed.seguranca-informatica.pt/api.php?token_u=#&token_p=#&from=today&format=json&title_or_url=banco example 2: feed.seguranca-informatica.pt/api.php?token_u=#&token_p=#&from=last-year&format=csv&title_or_url=.pt example 3: feed.seguranca-informatica.pt/api.php?token_u=#&token_p=#&from=last-year&format=csv&title_or_url=.pt&tag=phishing

Returned list example: {id,url,domain,data,ip,mx,cname,vt_url,img_url,id_user,id_tag,info}

For integration with security appliances, firewalls or spam engines, we recommend using the raw format:

$:> feed.seguranca-informatica.pt/api.php?token_u=#&token_p=#&from=today&format=raw (get domain by line)

$:> Get in touch, or swing by for a cup of coffee.

:$> Found a phishing website? See if it's in the 0xSI_f33d ;)

Date	URL	Category	Tag	Virus Total	Submited by
2021-06-21	https://olxpt.get-order.cyou/order/742359994 [ ]	phishing	phishing		anonymous
2021-06-21	https://olxpt.get-order.cyou/order/ [ ]	phishing	phishing		anonymous
2021-06-21	https://automotivedigitalretail.com/backup/.well-known/outlink/stp_h... [ ]	phishing	phishing		anonymous
2021-06-21	https://rgdrones.pt/commiie [ ]	phishing	phishing		0x_bot-si_f33d
2021-06-21	http://ukotan.com/yUU9fyT [ ]	phishing	CTT		anonymous
2021-06-18	https://olx-pt-security.icu/personal/pl/inteligo?t=0.168577292815484... [ ]	phishing	phishing		0x_bot-si_f33d
2021-06-18	https://facirc.pt/verdie-stoltenberg/OliviaGarcia-68.zip [ ]	malware	QakBot		0x_bot-si_f33d
2021-06-18	http://188.251.77.229:1281/Mozi.a [ ]	malware	Satori/Mirai		0x_bot-si_f33d
2021-06-18	https://mapasminecraft.jonasefonfon.com/dqyjk4o.zip [ ]	malware	malware		0x_bot-si_f33d
2021-06-18	https://sarditemp.com/jordyn-walker/WilliamGarcia-1.zip [ ]	malware	QakBot		0x_bot-si_f33d
2021-06-18	http://2.83.216.149:2607/Mozi.m [ ]	malware	Satori/Mirai		0x_bot-si_f33d
2021-06-18	http://77.54.59.77:31387/.i [ ]	malware	malware		0x_bot-si_f33d
2021-06-18	http://85.241.39.182:34098/bin.sh	malware	malware		0x_bot-si_f33d
2021-06-18	http://85.241.39.182:34098/i	malware	Satori/Mirai		0x_bot-si_f33d
2021-06-18	http://awunej.me/sMwTexi [ ]	phishing	CTT		anonymous
2021-06-18	https://santander.paymentidentify.com/ [ ]	phishing	santander		0x_bot-si_f33d
2021-06-18	https://dirsil.tech/FOEnNWlCpq4H.php [ ]	malware	malware		0x_bot-si_f33d
2021-06-18	http://icekaz.me/KSQ3jqM [ ]	phishing	CTT	N/A	anonymous
2021-06-18	http://icekaz.me/KSQ3jqM [ ]	phishing	CTT		anonymous
2021-06-18	http://icekaz.me/KSQ3jqM [ ]	phishing	CTT		anonymous
2021-06-18	http://icekaz.me/KSQ3jqM [ ]	phishing	CTT		anonymous
2021-06-18	http://icekaz.me/KSQ3jqM [ ]	phishing	CTT	N/A	anonymous
2021-06-18	http://icekaz.me/KSQ3jqM [ ]	phishing	CTT	N/A	anonymous
2021-06-18	http://icekaz.me/KSQ3jqM [ ]	phishing	CTT	N/A	anonymous
2021-06-18	http://icekaz.me/KSQ3jqM [ ]	phishing	CTT		anonymous
2021-06-17	https://lifetarget.com.pt/hWNJhFYiJ.php [ ]	phishing	phishing		0x_bot-si_f33d
2021-06-17	https://puialdeldouro.lojadointerior.pt/zzz/outlook02/?email=a.ascar... [ ]	phishing	Microsoft		0x_bot-si_f33d
2021-06-17	http://ukojan.com/ZkSKdzJ [ ]	phishing	CTT		anonymous
2021-06-17	http://46.50.92.37:3573/.i [ ]	malware	malware		0x_bot-si_f33d
2021-06-16	https://portugaltheman.net/neha-kozey/Olivia.Jones-36.zip [ ]	malware	QakBot		0x_bot-si_f33d
2021-06-16	https://portugaltheman.net/neha-kozey/OliverWilliams-36.zip [ ]	malware	QakBot		0x_bot-si_f33d
2021-06-16	http://ozinox.me [ ]	malware	malware		anonymous
2021-06-16	pizza-hut-portugal.site [ ]	phishing	phishing		0x_bot-si_f33d
2021-06-15	https://portugaltheman.net/mrs--marielle-feest/NoahWilliams-60.zip [ ]	malware	QakBot		0x_bot-si_f33d
2021-06-15	http://148.69.99.5:59709/.i [ ]	malware	Satori/Mirai		0x_bot-si_f33d
2021-06-15	https://millennium.8736-bcp.com/site/ [ ]	phishing	millennium		@sirpedrotavares
2021-06-15	https://invalid.researchdivine.com/ [ ]	phishing	phishing		anonymous
2021-06-15	https://login.microsoftonline.us/common/oauth2/authorize?client_id=8... [ ]	phishing	Microsoft		0x_bot-si_f33d
2021-06-15	http://8736-bcp.com	phishing	millennium		anonymous
2021-06-15	https://www.padstow-lifeboat.org.uk/wp-content/--/https:/ind.millenn... [ ]	phishing	millennium		@sirpedrotavares
2021-06-15	http://www.ctm-menuiserie.be/CTM/santander/sms.html [ ]	phishing	santander		0x_bot-si_f33d
2021-06-15	http://2.83.216.145:1215/Mozi.m	malware	Satori/Mirai		0x_bot-si_f33d
2021-06-14	https://millennium.2533-bcp.com [ ]	phishing	millennium		0x_bot-si_f33d
2021-06-14	http://85.243.65.13:39616/Mozi.m	malware	malware		0x_bot-si_f33d
2021-06-14	http://188.251.70.79:3987/Mozi.m	malware	malware		0x_bot-si_f33d
2021-06-14	http://ovayil.me/i8kjJM4 [ ]	phishing	phishing		anonymous
2021-06-14	https://olxpt.get-cash.icu/order/642775738 [ ]	phishing	phishing		anonymous
2021-06-14	https://ieldanalysisdu.com/ctt/particulares/receber/Codigo_de_envio=... [ ]	phishing	CTT		anonymous
2021-06-13	uber-portugal.com	phishing	phishing		0x_bot-si_f33d
2021-06-13	http://89.109.125.147:44251/.i	malware	malware		0x_bot-si_f33d
2021-06-13	uberportugal.us	phishing	phishing		0x_bot-si_f33d
2021-06-13	atendimentoaocliente3.com	phishing	santander		0x_bot-si_f33d
2021-06-13	https://olx.pt.paygrunhe.pw/cash40052919 [ ]	phishing	phishing		anonymous
2021-06-13	https://cgd.services/caixadirecta/clients/nvqjLj.php?verification#_ [ ]	phishing	cgd		anonymous
2021-06-13	http://ozinox.me/1niHfwg [ ]	phishing	phishing		anonymous
2021-06-12	https://uber-pt.safe-order.icu/track.php?id=832319580 [ ]	phishing	phishing		anonymous
2021-06-12	https://delivery.intelligentscanningsystem.top/pt/ips/ [ ]	phishing	phishing		anonymous
2021-06-12	support-uberportugal.com	phishing	phishing		0x_bot-si_f33d
2021-06-12	indmillenniumbcp.com [ ]	phishing	millennium		0x_bot-si_f33d
2021-06-12	particulares-bancosantander20.com [ ]	phishing	santander		0x_bot-si_f33d
2021-06-12	pt-ctt.online	phishing	CTT		0x_bot-si_f33d
2021-06-11	http://87.196.102.31:60863/Mozi.m	malware	Satori/Mirai		0x_bot-si_f33d
2021-06-11	https://cld.pt/dl/download/daa0996f-0d3f-4314-9889-8010d6957622/saaw... [ ]	malware	malware		0x_bot-si_f33d
2021-06-11	https://cld.pt/dl/download/e760a82c-b30f-4e6b-b189-0f7425bf5a99/clea... [ ]	malware	malware		0x_bot-si_f33d
2021-06-11	https://cld.pt/dl/download/f59dfc70-3c96-45b4-ad82-9f6aee801296/ASDF... [ ]	malware	malware		0x_bot-si_f33d
2021-06-11	http://cm-seguros.pt/bancosanta [ ]	phishing	santander		anonymous
2021-06-11	http://cm-seguros.pt/bancosanta/?logon=set&e02bad58 [ ]	phishing	santander		0x_bot-si_f33d
2021-06-11	http://mandrill.moip.com.br/track/click/14443671/www.premierbuilder.... [ ]	phishing	Netflix		anonymous
2021-06-11	https://r20.rs6.net/tn.jsp?f=001DeigQhVvQuzG9CAFFL4VwFubEJutg8CWBnvD... [ ]	phishing	CTT		anonymous
2021-06-11	https://safwahpublications.com/wizink/ [ ]	phishing	phishing		anonymous
2021-06-11	millenniumbcplive.com	phishing	millennium		0x_bot-si_f33d
2021-06-10	novobancopt.com [ ]	phishing	novobanco		0x_bot-si_f33d
2021-06-09	http://pt-bisi.com/dhl/DHL/portal/index.php [ ]	phishing	phishing		0x_bot-si_f33d
2021-06-09	http://particulares.bancosantand.com/	phishing	santander		0x_bot-si_f33d
2021-06-09	http://laresumeservice.com/josh-cruickshank/super_portugal-43.zip [ ]	malware	malware		0x_bot-si_f33d
2021-06-09	https://www.mt5apps.com/pay5/F2A88E15 [ ]	phishing	phishing		anonymous
2021-06-09	https://sysitemff.customeronline.top [ ]	phishing	phishing		anonymous
2021-06-09	https://mesterdinosaurking5eff.blogspot.com/ [ ]	phishing	CTT		anonymous
2021-06-09	https://guestpostprovider.com/X8EO.html [ ]	phishing	Netflix		anonymous
2021-06-08	http://tlsports.net/brad-koepp-i/proteccion_hsbc_seguros-42.zip [ ]	malware	malware		0x_bot-si_f33d
2021-06-08	https://2na.io/actualizar [ ]	phishing	phishing		anonymous
2021-06-07	http://pt-bisi.com/dhl/DHL/portal/[email protected] [ ]	phishing	phishing		0x_bot-si_f33d
2021-06-07	https://olx.pt.cashgets.info [ ]	phishing	phishing		0x_bot-si_f33d
2021-06-07	https://www.setindiaprize.com/Santander.pt/ [ ]	phishing	santander		0x_bot-si_f33d
2021-06-06	pt-entrega.online	phishing	phishing		0x_bot-si_f33d
2021-06-06	seg-social.online	phishing	phishing		0x_bot-si_f33d
2021-06-06	https://payment-pays.site/ctt.pt/cash25587332 [ ]	phishing	CTT		0x_bot-si_f33d
2021-06-05	montepio24.net	phishing	montepio		0x_bot-si_f33d
2021-06-05	http://176.78.65.29:27813/Mozi.m [ ]	malware	Satori/Mirai		0x_bot-si_f33d
2021-06-05	http://ezifec.link/9fppued [ ]	phishing	phishing		anonymous
2021-06-05	https://sysitemff.customeronline.top/pt/ips/?p=200&cep=aFGNm_KRiQGt1... [ ]	phishing	phishing		anonymous
2021-06-05	http://anabaj.me/eugZXsH	phishing	phishing		anonymous
2021-06-04	http://176.78.65.29:27813/i	malware	Satori/Mirai		0x_bot-si_f33d
2021-06-04	https://thewood.pt/ajHRUBdyXik.php [ ]	phishing	phishing		0x_bot-si_f33d
2021-06-03	caixa-particulares.com [ ]	phishing	cgd		0x_bot-si_f33d
2021-06-03	pt-ctt.site [ ]	phishing	CTT		0x_bot-si_f33d
2021-06-02	3rdmillenniummedia.com	phishing	millennium		0x_bot-si_f33d
2021-06-02	https://dhl.pt:[email protected]/assets/img/payment/2230942/ [ ]	phishing	phishing		anonymous
2021-06-02	https://alphanegotiate.com/wizink/ [ ]	phishing	banking		anonymous
2021-06-02	https://www.hmveiculos.com.br/TO/[email protected] [ ]	phishing	Microsoft		anonymous
2021-06-02	http://peaceandfuture.org/wizink/ [ ]	phishing	banking		anonymous
2021-05-30	millenniumbcq.com	phishing	millennium		0x_bot-si_f33d
2021-05-30	idealistapt-casasdistritoconcelhos899.xyz	phishing	phishing		0x_bot-si_f33d
2021-05-29	http://customer.preciousdecks.com/mw/5a7db0ea75f34fee86e5030e2052178... [ ]	phishing	Worten		anonymous
2021-05-29	https://www.milestoparis.com/survey/oworen/source=17066 [ ]	phishing	Worten		anonymous
2021-05-27	https://gestaumdigital.com.br/WP#[email protected] [ ]	phishing	cgd		anonymous
2021-05-27	http://icukig.me/ZmQ4Do9 [ ]	phishing	phishing		anonymous
2021-05-27	http://customer.preciousdecks.com/mw/5a7db0ea75f34fee86e5030e2052178... [ ]	phishing	Worten		anonymous
2021-05-26	https://badaboomcapital.com/Millenniumbcp/ [ ]	phishing	millennium		0x_bot-si_f33d
2021-05-26	https://young-dementia-guide.pt/wp-admin/lip/view/[email protected] [ ]	phishing	phishing		0x_bot-si_f33d
2021-05-26	https://courierpp.giveawaypacks.top/pt/ips/?p=200&cep=FqEhXtA-qPcoPk... [ ]	phishing	phishing		anonymous
2021-05-26	http://agesal.co/ [ ]	phishing	phishing		anonymous
2021-05-25	http://46.50.62.97:53095/Mozi.m [ ]	malware	Satori/Mirai		0x_bot-si_f33d
2021-05-25	http://idakal.com/KHoSJpq [ ]	phishing	phishing		anonymous
2021-05-25	http://85.241.39.182:34098/i [ ]	malware	Satori/Mirai		0x_bot-si_f33d
2021-05-25	http://85.241.39.182:34098/bin.sh [ ]	malware	Satori/Mirai		0x_bot-si_f33d
2021-05-24	http://sms-i.in/ZW8U [ ]	phishing	phishing		anonymous
2021-05-24	https://salvus.co.id/b2b/bah/page/ [ ]	phishing	CTT		anonymous

$:> history -- (Only the last 30 days are presented here. For more details and IoCs please use the search field or the 0xSI_f33d API) --