IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

From the Front Lines | Hive Ransomware Deploys Novel IPfuscation Technique To Avoid Detection

DATE : 2022-03-22T07:00:00
SOURCE : sentinelone.com

FILE_HASH_SHA1:
4fcc141c13a4a67e74b9f1372cfb8b722426513a
d83df37d263fc9201aa4d98ace9ab57efbb90922
3a743e2f63097aa15cec5132ad076b87a9133274
49fa346b81f5470e730219e9ed8ec9db8dd3a7fa
fa8795e9a9eb5040842f616119c5ab3153ad71c8
6b5036bd273d9bd4353905107755416e7a37c441
8a4408e4d78851bd6ee8d0249768c4d75c5c5f48
6e91cea0ec671cde7316df3d39ba6ea6464e60d9
24c862dc2f67383719460f692722ac91a4ed5a3b
415dc50927f9cb3dcd9256aef91152bf43b59072
2ded066d20c6d64bdaf4919d42a9ac27a8e6f174
27b5d056a789bcc85788dc2e0cc338ff82c57133

FILE_HASH_SHA256:
065de95947fac84003fd1fb9a74123238fdbe37d81ff4bd2bff6e9594aad6d8b
0809e0be008cb54964e4e7bda42a845a4c618868a1e09cb0250210125c453e65
12d2d3242dab3deca29e5b31e8a8998f2a62cea29592e3d2ab952fcc61b02088
130c062e45d3c35ae801eb1140cbf765f350ea91f3d884b8a77ca0059d2a3c54
39629dc6dc52135cad1d9d6e70e257aa0e55bd0d12da01338306fbef9a738e6b
5086cc3e871cf99066421010add9d59d321d76ca5a406860497faedbb4453c28
56c5403e2afe4df8e7f98fd89b0099d0e2f869386759f571de9a807538bad027
60cfce921a457063569553d9d43c2618f0b1a9ab364deb7e2408a325e3af2f6f
6240193f7c84723278b9b5e682b0928d4faf22d222a7aa84556c8ee692b954b0
6a222453b7b3725dcf5a98e746f809e02af3a1bd42215b8a0d606c7ce34b6b2b
6bdd253f408a09225dee60cc1d92498dac026793fdf2c5c332163c68d0b44efd
9c90c72367526c798815a9b8d58520704dc5e9052c41d30992a3eb13b6c3dd94
9cd407ea116da2cda99f7f081c9d39de0252ecd8426e6a4c41481d9113aa523e
a586efbe8c627f9bb618341e5a1e1cb119a6feb7768be076d056abb21cc3db66
c384021f8a68462348d89f3f7251e3483a58343577e15907b5146cbd4fa4bd53
c76671a06fd6dd386af102cf2563386060f870aa8730df0b51b72e79650e5071
e452371750be3b7c88804ea5320bd6a2ac0a7d2c424b53a39a2da3169e2069e9
e9bb47f5587b68cd725ab4482ad7538e1a046dd41409661b60acc3e3f177e8c4
e9da9b5e8ebf0b5d2ea74480e2cdbd591d82cd0bdccbdbe953a57bb5612379b0
efbdb34f208faeaebf62ef11c026ff877fda4ab8ab31e99b29ff877beb4d4d2b
f248488eedafbeeb91a6cfcc11f022d8c476bd53083ac26180ec5833e719b844
e61ecd6f2f8c4ba8c6f135505005cc867e1eea7478a1cbb1b2daf22de25f36ce
f07a3c6d9ec3aeae5d51638a1067dda23642f702a7ba86fc3df23f0397047f69
7667d0e90b583da8c2964ba6ca2d3f44dd46b75a434dc2b467249cd16bf439a0
75244059f912d6d35ddda061a704ef3274aaa7fae41fdea2efc149eba2b742b3
7e8dd90b84b06fabd9e5290af04c4432da86e631ab6678a8726361fb45bece58

Domain:
s1.ai
service-5inxpk6g-1304905614.gz.apigw.tencentcs.com
service-kibkxcw1-1305343709.bj.apigw.tencentcs.com

Url:
https://s1.ai/ipfuscatio