IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

ToddyCat is making holes in your infrastructure

DATE : 2024-04-22T23:08:03
SOURCE : securelist.com

FILE_HASH_MD5:
1D2B32910B500368EF0933CDC43FDE0B
5C2870F18E64A14A64ABF9A56F5B6E6B
AFEA0827779025C92CAB86F685D6429A
C7D8266C63F8AECA8D5F5BDCD433E72A
750EF49AFB88DDD52F6B0C500BE9B717
853A75364D76E9726474335BCD17E225
BA3EF3D0947031FB9FFBC2401BA82D79
4A79A8B1F6978862ECFA71B55066AADD
1F514121162865A9E664C919E71A6F62
6F32D6CFAAD3A956AACEA4C5A5C4FBFE
9DC7237AC63D552270C5CA27960168C3
34985FAE5FA8E9EBAA872DE8D0105005

Domain:
netportal.or.kr
etracking.nso.go.th
bangmod.co.th
ha.bbmouseme.com
1.tcp.ap.ngrok.io
system.io
ha.bbmouseme.com

Url:
http://www.netportal.or.kr/common/css/main.j
http://www.netportal.or.kr/common/css/ham.j