IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

The Rising Threat of OneNote Malware | Proofpoint US

DATE : 2023-01-28T07:00:00
SOURCE : proofpoint.com

FILE_HASH_SHA256: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Domain:
ftp.mgcpakistan.com
stnicholaschurch.ca
direct-trojan.com
onenotegem.com
winery.nsupdate.info
plax.duckdns.org
ghcc.duckdns.org
barricks.org
kanaskanas.com
codezian.com
myvigyan.com