IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

OneNote: A Growing Threat for Malware Distribution

DATE : 2023-02-23T07:00:00
SOURCE : zscaler.com

FILE_HASH_MD5:
e9f0dbbd19ef972dd2fc163a4b34eae1
19905a73840430e28c484b97546225c6
146f4f1c9b29e7505f275772378bfec9
1d9aa7c9aa3f8dc9dd58a38176ea36fe
5139af509129641b1d29edd19c436b54
6b1e64957316e65198e3a1f747402bd6
6b500ad29c39f72cd77c150a47df64ea
4c6a40f40dcd0af8d5c41d0fcc8e4521
3c7c265f618912d81856bf460bf19f61
fa49fd13fc49ab38b97d2d019cc04b39
973e87ec99502aac9a12f987748a812a
39f3c510f46d605202844e35c07db84b
558da264c83bfe58c1fc56171c90c093
C6ba1a7b2b90e18b6c25382453370169
d3713110654dc546bd5edc306a6e7efd

Domain:
helthbrotthersg.com
ehonlionetodo.com
thefirstupd.com
myvigyan.com
starcomputadoras.com
wi-protect.com

Url:
https://oiartzunirratia.eus/install/clean/Lcovlccdxd.exe
http://helthbrotthersg.com/view.png
https://transfer.sh/get/vpiHmi/invoice.pdf
http://ehonlionetodo.com
http://167.172.154.189/36.ps1
http://167.172.154.189/360702.dll
https://thefirstupd.com
https://myvigyan.com/m1YPt/300123.gif
https://starcomputadoras.com/lt2eLM6/01.gif
https://somosnutrisalud.cl/installs/clean/payroll.exe
https://wi-protect.com/install/Eulsm.exe