IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

OODA: X-Ops Takes On Burgeoning SQL Server Attacks

DATE : 2022-07-15T07:00:00
SOURCE : sophos.com

CVE:
cve-2019-1068
cve-2020-0618

FILE_HASH_MD5:
572275BEEA6ECA3A6089848060C1A26D

FILE_HASH_SHA256:
7d0687911ea9423310b7b83ebec9f52944ac022795c3b796aca5f0d2d15954b1
8bb03cb1d5faf00b93612a10f24fb3afe025f59c0226a4b20b1a61fe06cd2077
5d0e4ef9ee1f3a319faa45c572b5e7097865ddbda3840d138ae65a7d829cfddf

Domain:
system.net
tutanota.com
aol.com

Url:
http://91.243.44.105/Lvmsrqz_Phdvabki.jpg
http://91.243.44.142/arx-Ikrbwika.exe
http://91.243.44.142/pl-Ukxamliyg.exe
http://91.243.44.42/G-865-nMSamgr.exe
http://91.243.44.30/G-865-nMSamgr.exe