2026-03-14 PhishHuntMY] Phishing Campaign Analysis “Laptop Percuma / Bantuan E-Wallet” Scam| Threat Intelligence Malaysia

📃Title: PhishHuntMY] Phishing Campaign Analysis: “Laptop Percuma / Bantuan E-Wallet” Scam
📅Date: 2026-03-14
🔗References:

https://myos-esc.gitbook.io/myos-esc./blogs/phishing-campaign-analysis-laptop-percuma-bantuan-e-wallet-scam

🔖Rectifyq Taxonomies:

relevancy: 🔴 Highly Relevant
category: ⚔Threat
sub-category: campaign-analysis
target: broad-based
MY-relevancy: relevant

🔖MISP Galaxies:

target-information=“Malaysia”
country=“indonesia”
online-service=“b0c71d51-34fd-47b5-9eb4-dd406ffc607f”
mitre-attack-pattern=[‘T1041’, ‘T1056’, ‘T1036’, ‘T1566’, ‘T1090’]

MISP event uuid: 2e75d0d3-61e8-431e-8aaa-b047eaa87b52

Indicator of Compromise (IoCs)

type,value,comment
url, http://bantuan-malay.biz.id/66/, 'Main phishing landing page'
hostname, bantuan-malay.biz.id, 'Phishing domain'
domain, xwasq.com, 'Backend data collection server'
ip-dst, 104.21.78.24, 'Cloudflare proxy IP'
ip-dst, 172.67.215.26, 'Cloudflare proxy IP'
ip-dst, 103.163.138.21, 'Backend phishing infrastructure'
url, https://xwasq.com/terkini6/send_otp, ''
email-src, lhepakbudak@gmail.com, 'Registrant Email'

Full IOCs available in Rectifyq’s MISP

Rectifyq

Explorer

2026-03-14 PhishHuntMY] Phishing Campaign Analysis “Laptop Percuma / Bantuan E-Wallet” Scam

Indicator of Compromise (IoCs)

🔴 Latest Relevant 🇲🇾 Threat Articles

2026-04-30 Inside Shadow-Earth-053 A China-Aligned Cyberespionage Campaign Against Government and Defense Sectors in Asia

2026-04-29 Phoenix Rising Exposing the PhaaS Kit Behind Global Mass Phishing Campaigns

2026-04-21 GhostCargo, a 5-years campaign

Graph View