Qwins Ltd Bulletproof Hosting Provider Powering Global Malware Campaigns
Security researchers may have discovered a reliable hosting company run by Qwins Ltd. that supports a broad range of international malware operations in a recent analysis resulting from standard follow-up on Lumma infostealer infections.
Lumma, consistently ranking among the top five malware families according to platforms like abuse.ch and ANY.RUN, provided an abundant source of samples for analysis.
By querying the abuse.ch API for samples from July 15-22, researchers retrieved 100 recent hashes, which were then scrutinized using VirusTotal’s API to extract 292 communicating IP addresses.
To read the complete article see:
Qwins Ltd: Bulletproof Hosting Provider Powering Global Malware Campaigns
This post is licensed under CC BY 4.0 by the author.