IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

Mustang Panda’s Hodur: Old tricks, new Korplug variant

DATE : 2022-03-14T07:00:00
SOURCE : welivesecurity.com

FILE_HASH_SHA1:
69AB6B9906F8DCE03B43BEBB7A07189A69DC507B
10AE4784D0FFBC9CD5FD85B150830AEA3334A1DE
4EBFC035179CD72D323F0AB357537C094A276E6D
FDBB16B8BA7724659BAB5B2E1385CFD476F10607
7E059258CF963B95BDE479D1C374A4C300624986
7992729769760ECAB37F2AA32DE4E61E77828547
F05E89D031D051159778A79D81685B62AFF4E3F9
AB01E099872A094DC779890171A11764DE8B4360
CDB15B1ED97985D944F883AF05483990E02A49F7
908F55D21CCC2E14D4FF65A7A38E26593A0D9A70
477A1CE31353E8C26A8F4E02C1D378295B302C9E
52288C2CDB5926ECC970B2166943C9D4453F5E92
CBD875EE456C84F9E87EC392750D69A75FB6B23A
2CF4BAFE062D38FAF4772A7D1067B80339C2CE82
97C92ADD7145CF9386ABD5527A8BCD6FABF9A148
39863CECA1B0F54F5C063B3015B776CDB05971F3
0D5348B5C9A66C743615E819AEF152FB5B0DAB97
C8F5825499315EAF4B5046FF79AC9553E71AD1C0
D4FFE4A4F2BD2C19FF26139800C18339087E39CD
65898ACA030DCEFDA7C970D3A311E8EA7FFC844A
7DDB61872830F4A0E6BF96FAF665337D01F164FC
C13D0D669365DFAFF9C472E615A611E058EBF596
062473912692F7A3FAB8485101D4FCF6D704ED23
2B5D6BB5188895DA4928DD310C7C897F51AAA050
511DA645A7282FB84FF18C33398E67D7661FD663
59002E1A58065D7248CD9D7DD62C3F865813EEE6
F67C553678B7857D1BBC488040EA90E6C52946B3
58B6B5FD3F2BFD182622F547A93222A4AFDF4E76

Domain:
eset.com
korplug.th
upespr.com
urmsec.com
zyber-i.com
locvnpt.com