Known malicious kitcriticalphishing
CME/AMEX/NYSE/Schwab Multi-Broker Impersonation — chunk-vendors
family: multi-broker-impersonation-195a
6-host operator running MULTIPLE major financial-brand impersonations from a single template: cmeamex.com, cmeamexs.com, cmenyse.com (CME+AMEX, CME+NYSE), schwabvs.com (Charles Schwab), tradesoksca.com, tradesokscs.com. Single SPA deployed under each broker's name.
Fingerprint anchors
Provenance
Added by: analyst
Added: 2026-05-26 18:58
6 hosts. CME, AMEX, NYSE, Schwab — all real broker brands.
Sightings (8)
| Host | Scan | Script | Match | When |
|---|---|---|---|---|
| cmeamex.com | 7c10dff4… | https://cmeamex.com/static/js/chunk-vendors.f4bebd86.js | byte | 2026-05-24 20:31 |
| cmenyse.com | 86fbd376… | https://cmenyse.com/static/js/chunk-vendors.f4bebd86.js | byte | 2026-05-24 19:41 |
| cmeamexs.com | 444ec693… | https://cmeamexs.com/static/js/chunk-vendors.f4bebd86.js | byte | 2026-05-24 19:38 |
| schwabvs.com | f6ef645f… | https://schwabvs.com/static/js/chunk-vendors.f4bebd86.js | byte | 2026-05-24 14:52 |
| tradesokscs.com | 567dda6d… | https://tradesokscs.com/static/js/chunk-vendors.f4bebd86.js | byte | 2026-05-24 02:43 |
| tradesoksca.com | c1b9254a… | https://tradesoksca.com/static/js/chunk-vendors.f4bebd86.js | byte | 2026-05-23 23:10 |
| tradesoksca.com | 468e327e… | https://tradesoksca.com/static/js/chunk-vendors.f4bebd86.js | byte | 2026-05-23 21:44 |
| tradesoksca.com | 468e327e… | https://tradesoksca.com/static/js/chunk-vendors.f4bebd86.js | byte | 2026-05-23 21:44 |