Date: 08/23/2024
Severity: High
Summary
Fans of the new action RPG 'Black Myth: Wukong' are increasingly being targeted through newly registered domains (NRDs).
- There has been a rise in phishing, cryptocurrency scams, and illegal gambling associated with Wukong-themed NRDs.
- We observed a surge in NRDs following the game's trailer release at The Game Awards in December 2023.
- With the official launch of the game earlier this week, we anticipate a new wave of cyber threats.
Indicators of Compromise (IOC) List
Domains\Urls | 91wukong.fun blackmythwukong.vip warungwukongbet77.com wukong666.org wukongofficial.com |
Gurucul Threat Detection and Incident Response (TDIR) Queries for Detection
Domains\Urls | userdomainname like "91wukong.fun" or url like "91wukong.fun" or userdomainname like "blackmythwukong.vip" or url like "blackmythwukong.vip" or userdomainname like "warungwukongbet77.com" or url like "warungwukongbet77.com" or userdomainname like "wukong666.org" or url like "wukong666.org" or userdomainname like "wukongofficial.com" or url like "wukongofficial.com" |
Reference:
https://github.com/PaloAltoNetworks/Unit42-timely-threat-intel/blob/main/2024-08-22-Black-Myth-Wukong-themed-phishing-and-scam-domains.txt