Known malicious kithighphishing
Azure/Tencent Cloud Storage Abuse Kit — chunk-vendors
family: cloud-storage-abuse-72ea
7-host operator abusing free cloud storage to host the SPA: 5 Azure Static Web Apps (*.zNN.web.core.windows.net) + Tencent Cloud Object Storage (*.pichk.myqcloud.com). The cloud-vendor domains lend false legitimacy.
Fingerprint anchors
Provenance
Added by: analyst
Added: 2026-05-26 16:48
7 hosts on Azure + Tencent cloud storage. Cloud-vendor domains lend false legitimacy.
Sightings (18)
| Host | Scan | Script | Match | When |
|---|---|---|---|---|
| zz96.z9.web.core.windows.net | a335adc4… | https://zz96.z9.web.core.windows.net/new_1/static/js/chunk-vendors.1bd9a83b.js | byte | 2026-05-24 20:50 |
| zz96.z9.web.core.windows.net | 736f1f27… | https://zz96.z9.web.core.windows.net/new_1/static/js/chunk-vendors.1bd9a83b.js | byte | 2026-05-24 20:42 |
| nsdk9013-1331325818.pichk.myqcloud.com | a7af8528… | https://nsdk9013-1331325818.pichk.myqcloud.com/static_11_NM68P/static/js/chunk-vendors.1bd9a83b.js | byte | 2026-05-24 13:33 |
| nsdk9013-1331325818.pichk.myqcloud.com | 8e0b79e8… | https://nsdk9013-1331325818.pichk.myqcloud.com/static_11_NM68P/static/js/chunk-vendors.1bd9a83b.js | byte | 2026-05-24 13:30 |
| nsdk9013-1331325818.pichk.myqcloud.com | 52be2ef2… | https://nsdk9013-1331325818.pichk.myqcloud.com/static_11_NM68P/static/js/chunk-vendors.1bd9a83b.js | byte | 2026-05-24 13:16 |
| nsdk9013-1331325818.pichk.myqcloud.com | 662b8b4f… | https://nsdk9013-1331325818.pichk.myqcloud.com/static_11_NM68P/static/js/chunk-vendors.1bd9a83b.js | byte | 2026-05-24 13:09 |
| nsdk9013-1331325818.pichk.myqcloud.com | 64f41729… | https://nsdk9013-1331325818.pichk.myqcloud.com/static_11_NM68P/static/js/chunk-vendors.1bd9a83b.js | byte | 2026-05-24 12:48 |
| zz96.z9.web.core.windows.net | 7bff511c… | https://zz96.z9.web.core.windows.net/new_1/static/js/chunk-vendors.1bd9a83b.js | byte | 2026-05-24 12:03 |
| zz96.z9.web.core.windows.net | 9a498ee9… | https://zz96.z9.web.core.windows.net/new_1/static/js/chunk-vendors.1bd9a83b.js | byte | 2026-05-24 12:00 |
| gt25127.z16.web.core.windows.net | af8a255f… | https://gt25127.z16.web.core.windows.net/7_9_HfHcT/static/js/chunk-vendors.8b7cad44.js | byte | 2026-05-24 11:38 |
| gt25127.z16.web.core.windows.net | bb86eb98… | https://gt25127.z16.web.core.windows.net/7_9_HfHcT/static/js/chunk-vendors.8b7cad44.js | byte | 2026-05-24 11:38 |
| gt25127.z16.web.core.windows.net | 73662930… | https://gt25127.z16.web.core.windows.net/7_9_HfHcT/static/js/chunk-vendors.8b7cad44.js | byte | 2026-05-24 11:29 |
| gt19798.z38.web.core.windows.net | 28c5e4d1… | https://gt19798.z38.web.core.windows.net/webrxyy/static/js/chunk-vendors.1bd9a83b.js | byte | 2026-05-24 11:00 |
| gt19798.z38.web.core.windows.net | 0e60f627… | https://gt19798.z38.web.core.windows.net/webrxyy/static/js/chunk-vendors.1bd9a83b.js | byte | 2026-05-24 10:01 |
| hk30397-secondary.z16.web.core.windows.net | 4d672975… | https://hk30397-secondary.z16.web.core.windows.net/static_4_CtLj2_ibHLW/static/js/chunk-vendors.1bd9a83b.js | byte | 2026-05-24 06:31 |
| gt2512.z29.web.core.windows.net | 66227d12… | https://gt2512.z29.web.core.windows.net/7_9_HfHcT/static/js/chunk-vendors.8b7cad44.js | byte | 2026-05-23 08:10 |
| gt2512.z29.web.core.windows.net | 49da89d0… | https://gt2512.z29.web.core.windows.net/7_9_HfHcT/static/js/chunk-vendors.8b7cad44.js | byte | 2026-05-23 06:56 |
| zzzz9.z41.web.core.windows.net | d50fe6ce… | https://zzzz9.z41.web.core.windows.net/static_4_pEEp4/static/js/chunk-vendors.8b7cad44.js | byte | 2026-05-22 15:50 |