IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

Operation Diplomatic Specter: An Active Chinese Cyberespionage Campaign Leverages Rare Tool Set to Target Governmental Entities in the Middle East, Africa and Asia

DATE : 2024-05-23T22:00:28
SOURCE : paloaltonetworks.com

CVE:
cve-2021-26855
cve-2021-34473

FILE_HASH_SHA256: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Domain:
microsoft-ns1.com
home.microsoft-ns1.com
cloud.microsoft-ns1.com
static.microsoft-ns1.com
api.microsoft-ns1.com
update.microsoft-ns1.com
poer.whoamis.info
safer.ddns.us