IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

APT41 Likely Breached Taiwanese Government-Linked Research Institute Using ShadowPad and Cobalt Strike

DATE : 2024-08-01T07:00:00
SOURCE : talosintelligence.com

CVE:
cve-2018-0824

FILE_HASH_MD5:
978ece20137baea2bcb364b160eb9678

FILE_HASH_SHA256:
2e46fcadacfe9e2a63cfc18d95d5870de8b3414462bf14ba9e7c517678f235c9
eba3138d0f3d2385b55b08d8886b1018834d194440691d33d612402ba8a11d28
386eb7aa33c76ce671d6685f79512597f1fab28ea46c8ec7d89e58340081e2bd

Domain:
nss.com.tw
system.net
w2.chatgptsfit.com
snort.org

Url:
http://103.56.114.69:8085/p.ps1&8242
https://www.nss.com.tw/p.ps1&8242
https://www.nss.com.tw/1.hta
https://www.nss.com.tw/calc.exe&8217
http://45.85.76.18:443/yPc1&8221