IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

Gootloader inside out

DATE : 2025-01-17T05:16:00
SOURCE : sophos.com

FILE_HASH_SHA256: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Domain:
my-game.biz
powerstick.com
malwaredecoder.com
online.de

Url:
http://my-game.biz/index.php?a=
http://my-game.biz/index.php?a=YWFkZTVlZQ&am
https://powerstick.com/main/?ad94610=1174868
http://5.8.18.7/filezzz.ph
http://www.my-game.biz