IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

Financially motivated threat actors misusing App Installer | Microsoft Security Blog

DATE : 2023-12-27T07:00:00
SOURCE : microsoft.com

FILE_HASH_SHA256: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Domain:
scheta.site
api.store
teannviewer.ithr.org
tab1eu.ithr.org
amydeks.ithr.org
zoonn.ithr.org
tnetworkslicense.ru
1204knos.ru
1204networks.ru
abobe.ithr.org
gertefin.com
septcntr.com
info-zoomapp.com
zoonn.meetlng.group
storageplace.pro
sun1.space
nixonpeabody.tech-department.us
amgreetings.tech-department.us
cbre.tech-department.us
tech-department.us
kellyservices-hr.com
hubergroup.tech-department.us
formeld.tech-department.us
kellyhrservices-my.sharepoint.com
kellyserviceshr-my.sharepoint.com
kellyservicesrecruitmentdep-my.sharepoint.com
kellyservicesheadhunter-my.sharepoint.com
mckinseyhrcompany-my.sharepoint.com
webmicrosoftservicesystem.com
perimeter81support-my.sharepoint.com
cabotcorpsupport-my.sharepoint.com