IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

Drokbk Malware Uses GitHub as Dead Drop Resolver

DATE : 2022-12-07T07:00:00
SOURCE : secureworks.com

CVE:
cve-2021-44228
cve-2021-45046

FILE_HASH_MD5:
e26a66bfe0da89405e25a66baad95b05
8c8e184c280db126e6fcfcc507aea925
14a0e5665a95714ff4951bd35eb73606
b90f05b5e705e0b0cb47f51b985f84db

FILE_HASH_SHA1:
372b1946907ab9897737799f3bc8c13100519705
4eb5c832ce940739d6c0eb1b4fc7a78def1dd15e
aefab35127292cbe0e1d8a1a2fa7c39c9d72f2ea
0426f65ea5bcff9e0dc48e236bbec293380ccc43
5bd0690247dc1e446916800af169270f100d089b

FILE_HASH_SHA256:
64f39b858c1d784df1ca8eb895ac7eaf47bf39acf008ed4ae27a796ac90f841b
29dc4cae5f08c215d57893483b5b42cb00a2d0e7d8361cda9feeaf515f8b5d9e
a8e18a84898f46cd88813838f5e69f05240c4853af2aee5917dcee3a3e2a5d5a
28332bdbfaeb8333dad5ada3c10819a1a015db9106d5e8a74beaaf03797511aa

Domain:
universityofmhealth.biz