___          _____  _____    __  ____  ____       _ 
  / _ \        / ____||_   _|  / _||___ \|___ \     | |
 | | | |__  __| (___    | |   | |_   __) | __) |  __| |
 | | | |\ \/ / \___ \   | |   |  _| |__ < |__ <  / _` |
 | |_| | >  <  ____) | _| |_  | |   ___) |___) || (_| |
  \___/ /_/\_\|_____/ |_____| |_|  |____/|____/  \__,_|
                          ______                       
                         |______|                      



$:> Add a new phishing / malware campaign into 0xSI_f33d
$:>  <  The Portuguese Abuse Open Feed >
$:> by seguranca-informatica.pt
$:>
$:> help
$:> This feed compiles phishing and malware campaigns targeting only Portuguese citizens
$:> su root
$root:> Use the hashtag: #0xSI_f33d
$root:> @ VirusTotal official ingestor

- - - - - - - - - - - - - Submit a new campaign - - - - - - - - - - - - -

Add the URL:
Add the category:
Add a tag:


- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -


Friends of 0xSI_F33d

$:> These organizations use data submitted to and verified by 0xSI_f33d.

Are you using 0xSI_f33d data, but not listed here?
Let us know so we can share the good news with the 0xSI_f33d community.


Infographic: Threat Report Portugal Q2 2021

$:> Visit the publication here.

$:> history | grep "infographic"
-Q1 2021 Infographic
-Q4 2020 Infographic
-Q3 2020 Infographic
-Q2 2020 Infographic
-Q1 2020 Infographic



$:> Download the printable version: PDF or PNG
$:> Thanks, by root


API documentation

API is available at https://feed.seguranca-informatica.pt/api.php and will return a CSV or JSON response.
API is free but account creation is required. After that, the API token will be sent to your email.
Please note that running a massive amount of queries in a short time will get you blocked and/or banned.

$:> If you need a API token, please contact us here.


- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

By default, only last year submitions are returned. Examples on how to use the API can be found below.

$:> Parameters highlighted with red color are mandatory.



Example

Key | Value

fromfeed.seguranca-informatica.pt/api.php?token_u=#&token_p=#&from=today

possible values: {today;yesterday;last-3-days;last-week;last-month;last-6-months;last-year}
formatfeed.seguranca-informatica.pt/api.php?token_u=#&token_p=#&from=today&format=csv
feed.seguranca-informatica.pt/api.php?token_u=#&token_p=#&from=today&format=raw

possible values: {csv;json;raw}
tagfeed.seguranca-informatica.pt/api.php?token_u=#&token_p=#&from=today&format=json&tag=malware

possible values: only the available 0xSI_f33d tags
title_or_urlfeed.seguranca-informatica.pt/api.php?token_u=#&token_p=#&from=today&format=json&tag=malware&title_or_url=amazon

example 1: feed.seguranca-informatica.pt/api.php?token_u=#&token_p=#&from=today&format=json&title_or_url=banco
example 2: feed.seguranca-informatica.pt/api.php?token_u=#&token_p=#&from=last-year&format=csv&title_or_url=.pt
example 3: feed.seguranca-informatica.pt/api.php?token_u=#&token_p=#&from=last-year&format=csv&title_or_url=.pt&tag=phishing


Returned list example: {id,url,domain,data,ip,mx,cname,vt_url,img_url,id_user,id_tag,info}


For integration with security appliances, firewalls or spam engines, we recommend using the raw format:

$:> feed.seguranca-informatica.pt/api.php?token_u=#&token_p=#&from=today&format=raw (get domain by line)

$:> Get in touch, or swing by for a cup of coffee.




 :$> Found a phishing website? See if it's in the 0xSI_f33d ;)

  
DateURLCategoryTagVirus TotalSubmited by
2021-10-22https://gale.pt/m/?redacted [ ] phishingphishing 0x_bot-si_f33d
2021-10-21montepio-app.com [ ] phishingmontepio 0x_bot-si_f33d
2021-10-21https://gebox.es/CTT/Checkout/portal/parcel-General-delivery_reefeer... [ ] phishingphishing anonymous
2021-10-21http://arrigonegocios.com/ctt [ ] phishingCTT anonymous
2021-10-20novobanco-app.com [ ] phishingnovobanco 0x_bot-si_f33d
2021-10-20https://megasolucoes.pt/fugiatquas/documents.zip [ ] malwaremalware 0x_bot-si_f33d
2021-10-20http://net24online.pl/autoryzacja/mobile/ [ ] phishingphishing 0x_bot-si_f33d
2021-10-20https://app-novobanco.com [ ] phishingphishing anonymous
2021-10-19https://edifup.pt/natusaccusantium/documents.zip [ ] malwaremalware 0x_bot-si_f33d
2021-10-19entrega-cttexpress-movel.com phishingCTT 0x_bot-si_f33d
2021-10-19entrega-cttexpress-online.com phishingCTT 0x_bot-si_f33d
2021-10-19https://modulosegurobradesconet.com/ [ ] phishingbanking 0x_bot-si_f33d
2021-10-19http://appsmsatendimento.com/ [ ] phishingbanking 0x_bot-si_f33d
2021-10-19http://www.atendimentocef.cf/ [ ] phishingbanking 0x_bot-si_f33d
2021-10-18http://compatiblebelieve.top/continente/tb.php?_t=163455860116345594... [ ] phishingphishing anonymous
2021-10-18http://mail.amvr.site/baixar/171121.html [ ] phishingmeo anonymous
2021-10-18http://141.118.125.34.bc.googleusercontent.com/caixa/appWeb/desktop/... [ ] phishingbanking 0x_bot-si_f33d
2021-10-17http://caixa.atendimento.ativarseuapelido.link/sinbc/nb/login/login.... phishingbanking 0x_bot-si_f33d
2021-10-17montepio24.net [ ] phishingmontepio 0x_bot-si_f33d
2021-10-16https://tudineroalinstantebcp.com/ [ ] phishingbanking 0x_bot-si_f33d
2021-10-16montepio24.org [ ] phishingmontepio 0x_bot-si_f33d
2021-10-16http://144.64.234.103:57310/Mozi.m malwaremalware 0x_bot-si_f33d
2021-10-16https://plenia.pt/unbearable.php [ ] malwaremalware 0x_bot-si_f33d
2021-10-16https://totebagcanvas.com/wp-content/maintenance/--/https:/www.novob... [ ] phishingnovobanco anonymous
2021-10-16http://promosms.me/lp51/96*******/Vale_Gasolina [ ] phishingphishing anonymous
2021-10-15https://mestergoodjubiesfrn5.blogspot.com/ [ ] phishingCTT anonymous
2021-10-15https://maloubalouma.com/pt/Codigo_de_envio phishingCTT @sirpedrotavares
2021-10-15https://grupounited.pt/possimusnon/maximeporro-143278522 [ ] phishingphishing 0x_bot-si_f33d
2021-10-15http://85.247.125.87:60308/i [ ] malwaremalware 0x_bot-si_f33d
2021-10-15mbway-portugal.xyz [ ] phishingMB WAY 0x_bot-si_f33d
2021-10-15http://176.79.45.83:55929/Mozi.a malwaremalware 0x_bot-si_f33d
2021-10-15https://vamosacabarcomasolidaoeisolamento.pt/documentoo/traxx/ [ ] phishingphishing 0x_bot-si_f33d
2021-10-14http://85.247.125.87:17174/i [ ] malwaremalware 0x_bot-si_f33d
2021-10-14http://5.206.227.77/mipsel [ ] malwaremalware 0x_bot-si_f33d
2021-10-14http://5.206.227.77/armv4l malwaremalware 0x_bot-si_f33d
2021-10-14ind-millenniumbcp.com [ ] phishingmillennium 0x_bot-si_f33d
2021-10-14moduloprotetivosantander.live [ ] phishingsantander 0x_bot-si_f33d
2021-10-14moduloprotetivosantander.com [ ] phishingsantander 0x_bot-si_f33d
2021-10-14alerta-movil-bbva.com phishingphishing 0x_bot-si_f33d
2021-10-14alertas-movil-bbva.com phishingphishing 0x_bot-si_f33d
2021-10-14dispositivo-alerta.com [ ] phishingphishing 0x_bot-si_f33d
2021-10-14bbva-portal.site phishingbanking 0x_bot-si_f33d
2021-10-14atendimento2021.cloud [ ] phishingphishing 0x_bot-si_f33d
2021-10-14atendimento2021.email [ ] phishingphishing 0x_bot-si_f33d
2021-10-14http://f6d03e45.carpoint.pt/fr [ ] phishingphishing 0x_bot-si_f33d
2021-10-14http://85.247.125.87:17174/mozi.m [ ] malwaremalware 0x_bot-si_f33d
2021-10-13http://141.118.125.34.bc.googleusercontent.com/caixa/appWeb/desktop/... [ ] phishingbanking 0x_bot-si_f33d
2021-10-13http://91.214.124.225/dl/santander/dl/download9.php [ ] malwarebanking 0x_bot-si_f33d
2021-10-13http://85.247.125.87:60308/Mozi.m [ ] malwaremalware 0x_bot-si_f33d
2021-10-13https://swisspost.editorafiel.pt/K [ ] phishingphishing 0x_bot-si_f33d
2021-10-13http://login.ovh.comdesogipe.frdd.padariamorgado.pt/[email protected] phishingphishing 0x_bot-si_f33d
2021-10-13http://www.haddontownespa.com/kickitoutbygreg/xgrehandrishen/hendrei... [ ] phishingphishing 0x_bot-si_f33d
2021-10-13https://paiement-ovh-com-fbb74eb8.heldersa.pt/Z203QjdaaG9DMjNXaVNaZ0... [ ] phishingphishing 0x_bot-si_f33d
2021-10-13https://waszapaczka.eu/ReCleP8zqJCCPqDw/z7JdsdqOX8Dq8opsuJ-millenniu... [ ] phishingmillennium 0x_bot-si_f33d
2021-10-12https://paiement-ovh-com-fbb74eb8.heldersa.pt/Z203QjdaaG9DMjNXaVNaZ0... [ ] phishingphishing 0x_bot-si_f33d
2021-10-12https://vacanciespk.com/wp-admin/css/colors/light/?hash=Y2FybG9zLnNp... [ ] phishingnovobanco anonymous
2021-10-12https://novobanco-cashadvanced.bwnetworkus.com [ ] phishingnovobanco anonymous
2021-10-12https://btcdonatver.site [ ] phishingphishing anonymous
2021-10-12net12empresatendimentol.online phishingbanking 0x_bot-si_f33d
2021-10-12segurancaitau.online phishingbanking 0x_bot-si_f33d
2021-10-12http://85.247.67.171:29286/.i [ ] malwaremalware 0x_bot-si_f33d
2021-10-12http://31.22.199.162:3573/.i malwaremalware 0x_bot-si_f33d
2021-10-12http://santander.net-2021.support/ phishingsantander 0x_bot-si_f33d
2021-10-11https://upgrade-25gb-email.bristolschool.pt/ [ ] phishingphishing 0x_bot-si_f33d
2021-10-11http://caixaeletronicax.blogspot.com/ [ ] phishingbanking 0x_bot-si_f33d
2021-10-11https://modulodeseguranca.cf/home.php [ ] phishingbanking 0x_bot-si_f33d
2021-10-11https://8bj.b97.myftpupload.com/caixa-client-support/home/ [ ] phishingbanking 0x_bot-si_f33d
2021-10-11http://94.132.183.84:49903/Mozi.m malwaremalware 0x_bot-si_f33d
2021-10-11http://188.80.147.96:1035/bin.sh malwaremalware 0x_bot-si_f33d
2021-10-11https://modulodeseguranca.cf/home.php [ ] phishingbanking 0x_bot-si_f33d
2021-10-11centralatendimentomed.online phishingphishing 0x_bot-si_f33d
2021-10-11https://ricardopiresfotografia.com/RpuaNlWy/host.html [ ] malwaremalware 0x_bot-si_f33d
2021-10-11http://opural.com/H2Wizms [ ] phishingphishing anonymous
2021-10-11https://cld.pt/dl/download/0bdd64a1-ed86-473a-95b6-cff1e06e0431/sapo... [ ] malwaremalware anonymous
2021-10-11http://opural.com [ ] phishingphishing anonymous
2021-10-10http://188.82.221.240:57891/Mozi.m malwaremalware 0x_bot-si_f33d
2021-10-10net12atendimentosempresas.online phishingbanking 0x_bot-si_f33d
2021-10-10net2atendimentosempresas.online phishingbanking 0x_bot-si_f33d
2021-10-10love-portugal.site phishingphishing 0x_bot-si_f33d
2021-10-09http://sejavisto.prp.pt/soap.php [ ] malwaremalware 0x_bot-si_f33d
2021-10-09http://89.152.144.81:48285/.i [ ] malwaremalware 0x_bot-si_f33d
2021-10-09http://144.64.234.103:57310/i malwaremalware 0x_bot-si_f33d
2021-10-09http://188.251.82.254:4955/Mozi.m malwaremalware 0x_bot-si_f33d
2021-10-08http://kutt.it/caixahomepage [ ] phishingbanking 0x_bot-si_f33d
2021-10-08https://clientealertabc.com/ [ ] phishingbanking 0x_bot-si_f33d
2021-10-08https://pichinchabanco.websites.co.in [ ] phishingphishing 0x_bot-si_f33d
2021-10-08http://144.64.234.103:57310/bin.sh malwaremalware 0x_bot-si_f33d
2021-10-08http://opural.com/IO5zWRB phishingphishing anonymous
2021-10-08caixacliente.info phishingbanking 0x_bot-si_f33d
2021-10-08alerta-dispostivo.info phishingphishing 0x_bot-si_f33d
2021-10-07https://drive.google.com/file/d/1MsIJ1qoTbC8Q16h4dpgP0f22jKm6XdWQ/vi... [ ] malwaremalware anonymous
2021-10-07https://operacaocaixa.blob.core.windows.net/caixa/pingado.html [ ] phishingphishing 0x_bot-si_f33d
2021-10-07https://www.appnovobanco.com/ [ ] phishingnovobanco anonymous
2021-10-07https://autoq.in/voluptatem-nobis/documents.zip [ ] malwaremalware 0x_bot-si_f33d
2021-10-07http://144.64.234.103:57310/Mozi.a malwaremalware 0x_bot-si_f33d
2021-10-07http://melectronics.pt/admin/mod/SFEpress/New/login.php?l=_JeHFUq_VJ... [ ] phishingphishing 0x_bot-si_f33d
2021-10-07https://noiselab.pt/youapp/ [ ] phishingphishing 0x_bot-si_f33d
2021-10-07http://www.edg-eg.com/md/webmail-portal-RD337 [ ] phishingphishing 0x_bot-si_f33d
2021-10-07http://elodomum.pt/js/101.exe [ ] malwaremalware 0x_bot-si_f33d
2021-10-06adm-ctt-portugal1.com phishingCTT 0x_bot-si_f33d
2021-10-06atendimentocaixa.org [ ] phishingbanking 0x_bot-si_f33d
2021-10-06trparticulare-ctt.com [ ] phishingCTT 0x_bot-si_f33d
2021-10-06https://millennium.mybank.sbs [ ] phishingmillennium 0x_bot-si_f33d
2021-10-06http://seguro.instagramautenticacao.com/ [ ] phishingphishing 0x_bot-si_f33d
2021-10-06https://btcdonatver.site/ [ ] phishingphishing anonymous
2021-10-05http://dreamhomebend.com/wp-admin/includes/--/https:/NbSmart/?client... [ ] phishingnovobanco anonymous
2021-10-05ctt-pt.email [ ] phishingCTT 0x_bot-si_f33d
2021-10-05atualizar-pt.email [ ] phishingphishing 0x_bot-si_f33d
2021-10-05netbanco-pt.email [ ] phishingbanking 0x_bot-si_f33d
2021-10-05alerta-dispositvo.info [ ] phishingbanking 0x_bot-si_f33d
2021-10-05admin-ctt-pt.com [ ] phishingCTT 0x_bot-si_f33d
2021-10-05https://www.houserstorescatoncat.pt/edsheeran/Photograph.mp3 [ ] malwaremalware anonymous
2021-10-05http://santander-clientarea.info phishingsantander 0x_bot-si_f33d
2021-10-05https://payment-script-report.s3.us-east-2.amazonaws.com/XLS126index... [ ] phishingMicrosoft 0x_bot-si_f33d
2021-10-05http://162.0.216.116/novobanco [ ] phishingnovobanco anonymous
2021-10-05https://cutt.ly/sEKTMgV [ ] phishingnovobanco anonymous
2021-10-05http://162.0.216.116/novobanco/app/?hash=16f2ea9367d1a5de3e4437ef073... [ ] phishingnovobanco anonymous
2021-10-04https://segurosaguiar.uy/dolorem-deleniti/documents.zip [ ] malwaremalware 0x_bot-si_f33d
2021-10-04santander-clients.online phishingsantander 0x_bot-si_f33d
2021-10-04http://www.pt632aa.cn/fWIZE0kL/dbs-wa/ [ ] phishingphishing 0x_bot-si_f33d
2021-10-03caixabank-cliente.info [ ] phishingbanking 0x_bot-si_f33d
2021-10-03bancosantander.systems [ ] phishingsantander 0x_bot-si_f33d
2021-10-03cadastroonline.site [ ] phishingbanking 0x_bot-si_f33d
2021-10-03netbanco-pt.com phishingbanking 0x_bot-si_f33d
2021-10-03http://santanderclient.com/ [ ] phishingsantander 0x_bot-si_f33d
2021-10-02http://santander.net-manager.support/ phishingsantander 0x_bot-si_f33d
2021-10-02https://plenia.pt/unbearable.php [ ] malwaremalware 0x_bot-si_f33d
2021-10-02http://144.64.234.103:57310/Mozi.m malwaremalware 0x_bot-si_f33d
2021-10-02santander-alerta.info phishingsantander 0x_bot-si_f33d
2021-10-02nov0banco.sbs phishingnovobanco 0x_bot-si_f33d
2021-10-02bbva-alerta.net phishingbanking 0x_bot-si_f33d
2021-10-02https://huikit.agard.com.sg/Es/caixa/particular/home/ [ ] phishingbanking 0x_bot-si_f33d
2021-10-01https://coolbuyph.com/webmail.pt.lu/pt.lu [ ] phishingphishing 0x_bot-si_f33d
2021-10-01http://176.79.45.83:55929/Mozi.a malwaremalware 0x_bot-si_f33d
2021-10-01http://mfk-cpm.com/cash.php?id=11866 [ ] phishingphishing anonymous
2021-09-30http://ctt-correiosentrega.sytes.net/ phishingCTT anonymous
2021-09-30santadar-pt.com [ ] phishingsantander 0x_bot-si_f33d
2021-09-30https://appmercadopago.cf/mercadopago.com/codigo-sms2.php [ ] phishingbanking 0x_bot-si_f33d
2021-09-30http://85.247.125.87:17174/i [ ] malwaremalware 0x_bot-si_f33d
2021-09-30https://youdrone.pt/BAN8474783KI48848A838/acceso-clientes/?6s2d-fmRY... [ ] phishingbanking 0x_bot-si_f33d
2021-09-30https://segfortecorretoradeseguros.com/kindex.php [ ] phishingphishing 0x_bot-si_f33d
2021-09-29https://www.drmartensportugallisboa.com/ [ ] phishingphishing 0x_bot-si_f33d
2021-09-29http://5.206.227.77/mipsel [ ] malwaremalware 0x_bot-si_f33d
2021-09-29http://5.206.227.77/armv4l malwaremalware 0x_bot-si_f33d
2021-09-29https://cadastroo-clientess.sytes.net/ [ ] phishingphishing 0x_bot-si_f33d
2021-09-29http://109.51.166.231:25122/.i malwaremalware 0x_bot-si_f33d
2021-09-29http://85.247.125.87:17174/mozi.m [ ] malwaremalware 0x_bot-si_f33d
2021-09-28sapo-pt.com [ ] phishingphishing 0x_bot-si_f33d
2021-09-28https://saloniranighady.com/Pt/Expresso/Codigo_de_envio=PT15****239-... [ ] phishingCTT anonymous
2021-09-28https://mesterdramaislandpcr3.blogspot.com/ [ ] phishingCTT anonymous
2021-09-28https://dpdpoland.pl/jLHQx6HIe8XTxFpD/VMiODAF1Cc0VvrET-millennium/lo... [ ] phishingmillennium 0x_bot-si_f33d
2021-09-28milenniiumbcp-online.com phishingmillennium 0x_bot-si_f33d
2021-09-28milleniumbcp-pt.com phishingmillennium 0x_bot-si_f33d
2021-09-28pt-millenlumbcp.com phishingmillennium 0x_bot-si_f33d
2021-09-28http://admin-hostpoint-ch-11770450.atsoclis.pt/R0dUL1VLZ2tSNWJGOXZKc... [ ] phishingphishing 0x_bot-si_f33d
2021-09-28https://ssparceltt.techsupvv.xyz/pt/ipsv2/?p=195&cep=BaWSsbTOEDHD-a3... [ ] phishingphishing anonymous
2021-09-28https://www.www-interbank-pe.aulavirtual.click/bpi/logn.php [ ] phishingbpi 0x_bot-si_f33d
2021-09-28https://www.google.com/webhp?hl=uk&sa=X&ved=0ahUKEwjA5qvwoJzzAhVZ_rs... [ ] phishingphishing anonymous
2021-09-28http://opural.com/COQNArp [ ] phishingphishing anonymous
2021-09-28https://arefol.xyz/0cPSdl9 phishingphishing @sirpedrotavares
2021-09-28https://ssparceltt.techsupvv.xyz/ [ ] phishingphishing anonymous
2021-09-28https://cutt.ly/fEccSCx [ ] phishingnovobanco anonymous
2021-09-28https://novo-nbnet.site/login?1 [ ] phishingnovobanco anonymous
2021-09-24https://terpelsicumple.com/ [ ] phishingphishing anonymous
2021-09-23http://85.247.67.171:29286/.i [ ] malwaremalware 0x_bot-si_f33d
2021-09-23http://31.22.199.162:3573/.i malwaremalware 0x_bot-si_f33d
2021-09-23https://www.appcaixaassinatura.com/ [ ] phishingbanking 0x_bot-si_f33d
2021-09-23https://www.fotomotion.com.co/wp-content/languages/--/https:/www.nov... [ ] phishingnovobanco anonymous
2021-09-23http://admin-h0stp0int-ch-4af378bd.show-on.pt/SnNteHpQSjM4NnFjREZHUV... [ ] phishingphishing 0x_bot-si_f33d
2021-09-23https://nha12.samatcha.org/public/css/--/https:/www.novobanco.pt/?cl... [ ] phishingphishing anonymous

$:> history
-- (Only the last 30 days are presented here. For more details and IoCs please use the search field or the 0xSI_f33d API) --