IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

MQsTTang: Mustang Panda’s latest backdoor treads new ground with Qt and MQTT

DATE : 2023-02-27T07:00:00
SOURCE : welivesecurity.com

FILE_HASH_SHA1:
02D95E0C369B08248BFFAAC8607BBA119D83B95B
A1C660D31518C8AFAA6973714DE30F3D576B68FC
430C2EF474C7710345B410F49DF853BDEAFBDD78
F1A8BF83A410B99EF0E7FDF7BA02B543B9F0E66C
0EA5D10399524C189A197A847B8108AA8070F1B1
982CCAF1CB84F6E44E9296C7A1DDE2CE6A09D7BB
740C8492DDA786E2231A46BFC422A2720DB0279A
AB01E099872A094DC779890171A11764DE8B4360
61A2D34625706F17221C1110D36A435438BC0665
30277F3284BCEEF0ADC5E9D45B66897FA8828BFD
BEE0B741142A9C392E05E0443AAE1FA41EF512D6
F6F3343F64536BF98DE7E287A7419352BF94EB93
F848C4F3B9D7F3FE1DB3847370F8EEFAA9BF60F1

Domain:
korplug.th
broker.emqx.io