IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

Vidar distributed through backdoored Windows 11 downloads and abusing Telegram

DATE : 2022-05-11T07:00:00
SOURCE : zscaler.com

FILE_HASH_MD5:
52c47fdda399b011b163812c46ea94a6
6352540cf679dfec21aff6bd9dee3770
6ae17cb76cdf097d4dc4fcccfb5abd8a
66cf4ebdceedecd9214caab7ca87908d
ef2834ac4ee7d6724f255beaf527e635
8f73c08a9660691143661bf7332c3c27
109f0f02fd37c84bfc7508d4227d7ed5
bfac4e3c5908856ba17d41edcd455a51
a2ee53de9167bf0d6c019303b7ca84e5
e477a96c8f2b18d6b5c27bde49c990bf
7587bf9cb4147022cd5681b015183046
da82d43043c101f25633c258f527c9d5
e9a3562f3851dd2dba27f90b5b2d15c0

Domain:
ieji.de
koyu.space
ms-win11.com
ms-win11.midlandscancer.com
win11-serv4.com
win11-serv.com
win11install.com
ms-teams-app.net
files.getsnyper.com
api.faceit.com

Url:
https://t.me/btc20220425
https://ieji.de/ronxik213
https://koyu.space/ronxik123
https://t.me/mm20220428