IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

AcidRain | A Modem Wiper Rains Down on Europe

DATE : 2022-03-22T07:00:00
SOURCE : sentinelone.com

FILE_HASH_MD5:
ecbe1b1e30a1f4bffaf1d374014c877f
20ea405d79b4de1b90de54a442952a45

FILE_HASH_SHA1:
86906b140b019fdedaaba73948d0c8f96a6b1b42
261d012caa96d3e3b059a98388f743fb8d39fbd5

FILE_HASH_SHA256:
9b4dfaca873961174ba935fddaf696145afe7bbf5734509f95feb54f3584fd9a
47f521bd6be19f823bfd3a72d851d6f3440a6c4cc3d940190bdc9b6dd53a83d6

Domain:
wired.com
nps.edu
viasat.com
blog.talosintelligence.com
media.defense.gov
airforcemag.com
reuters.com
ncsc.gov.uk

Url:
https://www.wired.com/story/viasat-internet-hack-ukraine-russia/https://www.cisa.gov/uscert/ncas/alerts/aa22-076ahttps://media.defense.gov/2022/Jan/25/2002927101/-1/-1/0/CSA_PROTECTING_VSAT_COMMUNICATIONS_01252022.PDFhttps://www.airforcemag.com/hackers-attacked-satellite-terminals-through-management-network-viasat-officials-say/https://nps.edu/documents/104517539/104522593/RELIEF12-4_QLR.pdf/9cc03d09-9af4-410e-b601-a8bffdae0c30https://www.reuters.com/business/media-telecom/exclusive-hackers-who-crippled-viasat-modems-ukraine-are-still-active-company-2022-03-30/https://www.viasat.com/about/newsroom/blog/ka-sat-network-cyber-attack-overview/https://blog.talosintelligence.com/2018/05/VPNFilter.htmlhttps://blog.talosintelligence.com/2018/06/vpnfilter-update.html?m=1https://blog.talosintelligence.com/2018/09/vpnfilter-part-3.htmlhttps://www.ncsc.gov.uk/files/Cyclops-Blink-Malware-Analysis-Report.pdfhttps://www.trendmicro.com/en_us/research/21/a/vpnfilter-two-years-later-routers-still-compromised-.htmlhttps://www.cisa.gov/uscert/ncas/alerts/aa22-054a