IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

Tales From the Honeypot: WatchDog Evolves With a New Multi-Stage Cryptojacking Attack

DATE : 2022-05-25T07:00:00
SOURCE : cadosecurity.com

FILE_HASH_SHA256:
3724b0555d0c8d0d0eb3856d84fc29317a1e8c4a8f4725344cb7336d97be80cb
2391e6c61fe2228b057199d0a3c8b9763cd2d24ba9e56c48e96aafdf615253ea
3331f1a753a3cd9f15234ccc221725ed8cfca9039f3e9ede624971d173042ce0
5d7d95b5e51db0ac8800ffdd0ea5e87859bc119ebfc590af48cfc4e90e7b3822
54760c42d932de7feb0bfacc49126e67f4a019f222ad2e9d3e3d28e9b7a20b5e
3a43288cfdee3cc2f5c305990d81986c7190702711edf985951bb44f4a587a9e

Domain:
oracle.zzhreceive.top

Url:
http://oracle.zzhreceive.top/s3f815/s/avg.tar.gz
http://oracle.zzhreceive.top/s3f815/s/avg4.tar.gz
http://oracle.zzhreceive.top/s3f815/s/1.0.4.tar.gz
http://oracle.zzhreceive.top/s3f815/s/p.tar
http://oracle.zzhreceive.top/s3f815/d/ar.sh
http://oracle.zzhreceive.top/s3f815/d/ai.sh
http://oracle.zzhreceive.top/b2f628/b.sh
http://oracle.zzhreceive.top/s3f815/d/c.sh
http://oracle.zzhreceive.top/s3f815/d/d.sh
http://oracle.zzhreceive.top/b2f628/cronb.sh