IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

AgentTesla Spreads Through CHM And PDF Files In Recent Attacks – Cyble

DATE : 2023-10-07T07:00:00
SOURCE : cyble.com

FILE_HASH_MD5:
a4de9d739162b9840c6cfd684ea8d791
c7ebda0095926643110fc359e747ffb3
6665f9392350bfa49a2cdee6afcc297b
0bcc3c271ee55c5da266c8bbc22f3208
cf87fd3ac04ab84401009808e0c1662a
0431f491949e0462e1eb13bf4f3b2191
0cadf56216e663ff2a8f3882ed0fb681
3a8ac8048d42bcd3b15c44b2836cc634

FILE_HASH_SHA1:
bb43ced4c734844119ebeffba5ff960692061e0b
c59402e8f69f25cf89d10df772796671ed96da2a
358e396e8291d6d92691c60791f474573a8adc18
9f71ed6953196b2c1e70bb86df3c9773567c0bea
78f25cc19b474922c372552fa5fc2ea4a1c5a01b
1d1b203bba63b1393a45f4ed5c3fccaf222b2aa2
1cc259aa315090a50237144dc0926be0abea4190
ec52ae1ec9e84a57d346425e12d9582efa75ad55

FILE_HASH_SHA256:
5df434b86519a9cda49dacc6dd625d8b8fc70c1479004669ed09b35d37816fce
00dc35f39503924bff98f40ac52100ab2882ed22cdf8a3e4a9ec2f1797736aaa
6555ac945d8010dc3e77d037298fffaf506826bb0ecaa12880de18ad04435b7f
a56f11445182406c82a5448a978ab72faf540591e94dbecbb13237413e687bd4
d0c65ad64661320b438d940cb46019a3a282d4b5040d593bcbb5c21616116813
dcdc5377b6fa7bf42731c95f23b04072123053910b120da943ba183fbc511665
f34400e75903275789e15209840fe4d425744ad7ffe8e7c86f5545bb5bfdff72
da0ff5afc0fe3bb6fd769c501c4e5c07820f411005565c53b80f41c6bd679f72
92533be6c7fdd0cb591fa4a9d760b49f441703545404f5ce780403092056341f
118a2cbcf9272be3651fd0781da7e609e6b5972a341a187f1a20d7269b2a6dc6

Domain:
booking-comdetails.blogspot.com
htlbook.blogspot.com