IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

ROADSWEEP Ransomware – Likely Iranian Threat Actor Conducts Politically Motivated Disruptive Activity Against Albanian Government Organizations

DATE : 2022-07-27T07:00:00
SOURCE : mandiant.com

FILE_HASH_MD5:
7b71764236f244ae971742ee1bc6b098
df9ab47726001883b5fcf58b56b34b41
8c8bbe3a4a23cd4cc96c12af5fb1199b
19068e8228b6b8f5528489fa70779b2b
f3c977830bf616b9061d7aee5ce0b2f2
7f6db4493c6a76eb44534306291ea85f
3a1033cb1eb06c2cd5e91c539cf8a519
23643b7bd48a200889a4613a0e0a86e4
49d72f9212d5653f5be9f764d8c9df24
9c09d147dfbc98d5e6e051fe1ed0033d
38e0fa41e9519d4783766992c203e794
5cc183702fae8cc23a55037c1efab5e5
92c61e3047297136701c25deb658b35a
77a369e5e49e7e62d8eef2c00cd02950
779940f675ff4ab4e8cab7a1b7cf5d3c
3633b3d69060a5882656b69f81655f0a
7a77c2930f0457ed2dd622e9739c7d3d

Domain:
telegram-update.com
windowsupadates.com
cloud-avira.com
pgp.eu.com
server-avira.com
skype.se.net
uk2privat.com
update-pgp.com