IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

“Exploring the SLOW#TEMPEST Campaign: A Deep Dive into Cobalt Strike and Mimikatz Targeting Chinese Users”

DATE : 2024-08-30T02:01:58
SOURCE : securonix.com

FILE_HASH_SHA256:
8e77101d3f615a58b8d759e8b82ca3dffd4823b9f72dc5c6989bb4311bdffa86
3a9b64a61f6373ee427f27726460e7047b21ddcfd1d0d45ee4145192327a0408
28030E8CF4C9C39665A0552E82DA86781B00F099E240DB83F1D1A3AE0E990AB6
1BA77DD1F5BF31D45FDB160C52EBE5829EC373350CDE35818FB90D45352B3601
1189D34E983A6FC9D2DC37AD591287C9E3E4D4BA83F66C7EDE692C36274BA648
706BD7E05F275814C3B86EEC1A87148662029D91D0CE9B80386AAFFE7AA3753B
C6CF82919B809967D9D90EA73772A8AA1C1EB3BC59252D977500F64F1A0D6731
0BD048E0BCE956EDFBCEE6EDF32B8B67E08275BD38125B40A98665FAB4926C9D
97C5CD06B543B0BDB270666092348EFBA0A9670AF05B11F3B56BF4B418DEC43A
7DC0E13A5F1A70C4E41F4B92372259B050A395104650D57385ECAA148481AE5C
1F510DED0D181B4636E83C69B66C92465DC0E64F6DB946FA4C246E7741F66141
9F650117288B26312E84F32E23783FE3C81FCBA771C8AE58119BE92344C006CC
EFE53F18D282516149BC6FEAC44C17DDE9F0704D95598AECBA3E7D734727B07E
33A910162EAFE750316ADFAD4AB0955BE24C1BA048C2EC236C95E4A795C42932

Domain:
myip.ipip.net
360-1305242994.cos.ap-nanjing.myqcloud.com
book.hacktricks.xyz
sentinelone.com

Url:
https://book.hacktricks.xyz/windows-hardening/windows-local-privilege-escalation/dll-hijacking
https://www.sentinelone.com/blog/geacon-brings-cobalt-strike-capabilities-to-macos-threat-actor