IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

The Continued Evolution of the DarkGate Malware-as-a-Service

DATE : 2023-11-20T07:00:00
SOURCE : trellix.com

FILE_HASH_MD5:
83037a444567a6d47b6221288cdad4e9
3f2ae21059230fd9d7e72a1558cd81eb
9bf2ae2da16e9a975146c213abd7cd4f
63f9b76e4bf4983e13eba7e22dd22781

FILE_HASH_SHA1:
7cf2487dc111a590f9db5c041f9f3ad84622e044
b4124a0428b45bf73b97095cc9a453306f0337bf
b4850a42227dc43d4079392eb3a449e8a3f6312d
a25081cf2da611b827f11f653ddcc2f18647ff93

FILE_HASH_SHA256:
6750f31ef5e1fe74c1121b0ab1308f93e09505a63322b6ce16fe04099ce8993e
73c0d0f220a30b541e0855e8039b8050d1332ff03c3e0c8a35671bd5eb9d30be
74729d4569691daf72e23849e91461471411f551639663e11e1091a48790611e
bec37877e3bffa222efb5c5680c7defd2d917317293d7fa70e0882ad45290a40
92372f91137114704b5c7cc10882eced9636997486832c5504551e2ba894cb34
ad36b909721d64a3c32678f4c2ca758d81661088ba1ed57bec50ef0ac4d4a871

Domain:
exploit.in
trellix.sharepoint.com
sharepoint.com
bikeontop.shop
xfirecovery.pro
naserviceebaysmman.shop
reactervnamnat.com
private-edinmarketing.com
msteamseyeappstore.com
sanibroadbandcommunicton.duckdns.org
positivereview.cloud
drkgatevservicceoffice.net