IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

From IcedID to Dagon Locker Ransomware in 29 Days – The DFIR Report

DATE : 2024-05-01T08:42:02
SOURCE : thedfirreport.com

FILE_HASH_MD5:
06a2e2d6dd645defdac0b2dd719ea441
0d8a41ec847391807acbd55cbd69338b
bff696bb76ea1db900c694a9b57a954b
a144aa7a0b98de3974c547e3a09f4fb2
7e9ef45d19332c22f1f3a316035dcb1b
b3495023a3a664850e1e5e174c4b1b08
628685be0f42072d2b5150d4809e63fc

FILE_HASH_SHA1:
5066e67f22bc342971b8958113696e6c838f6c58
ca10c09416a16416e510406a323bb97b0b0703ef
34c9702c66faadb4ce90980315b666be8ce35a13
4e0222fd381d878650c9ebeb1bcbbfdfc34cabc5
38cd9f715584463b4fdecfbac421d24077e90243
437fe3b6fdc837b9ee47d74eb1956def2350ed7e

FILE_HASH_SHA256:
f415c7d1b6a19975f2bb09e79f4416975375490fc645865dd63478c8aa605d97
f6e5dbff14ef272ce07743887a16decbee2607f512ff2a9045415c8e0c05dbb4
332afc80371187881ef9a6f80e5c244b44af746b20342b8722f7b56b61604953
9da84133ed36960523e3c332189eca71ca42d847e2e79b78d182da8da4546830
839cf7905dc3337bebe7f8ba127961e6cd40c52ec3a1e09084c9c1ccd202418e
65edf9bc2c15ef125ff58ac597125b040c487640860d84eea93b9ef6b5bb8ca6
a0191a300263167506b9b5d99575c4049a778d1a8ded71dcb8072e87f5f0bbcf

Domain:
moashraya.com
file.io
ipecho.net
helgeklein.com
ewacootili.com
ultrascihictur.com
magiraptoy.com
system.net
tutanota.com
rpgmagglader.com
oopscokir.com
restohalto.site
fraktomaam.com
patricammote.com
sigmasearchengine.com

Url:
https://moashraya.com/out/t.ph
https://file.io/OUXPza4b4uxZ
http://127.0.0.1:50916
http://ipecho.net/plai
http://127.0.0.1:33333
https://helgeklein.com/setacl