{
  "website": "*.linodeobjects.com",
  "tags": [
    "Phishing",
    "Exfiltration",
    "Download"
  ],
  "service_provider": "Linode",
  "phishing": "Attackers can use a customized subdomain of linodeobjects.com to host their phishing landing page.",
  "command_and_control": "None",
  "exfiltration": "Attackers can exfiltrate files to their Linode Objects storage",
  "download": "Attackers can keep their tools stored on Linode Objects storage and when required, download the tools.",
  "sample_url": "https://www.joesandbox.com/analysis/352148/0/html",
  "created": "2022-07-28",
  "last_update": "2022-07-28",
  "credits": "@InfoSPECtre",
  "detail_path": "/site/2a2e6c696e6f64656f626a656374732e636f6d",
  "detail_slug": "2a2e6c696e6f64656f626a656374732e636f6d",
  "detail_url": "https://lots-project.com/site/2a2e6c696e6f64656f626a656374732e636f6d",
  "scraped_at": "2026-06-16T11:58:39Z"
}