IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

Nooope: DarkComet Backdoor Malware Analysis

DATE : 2025-01-30T13:22:09
SOURCE : osintteam.blog

FILE_HASH_SHA1:
a30fa98efc092684e8d1c5cff797bcc613562978

FILE_HASH_SHA256:
437f3ab18f1886045732f150fddaa23db1e97687d4ecb826c7bd128586c19396
9cdb7144d2bc60e045e650cc978647055d63a438a906e5bbf52e5544bb98948b

Domain:
dropbox.com
freedns.afraid.org
synaptics.com
xred.site50.net
xred.mooo.com
xred.moo.com
xred.mooo.comfreedns.afraid.orgxred.site50.net

Url:
http://freedns.afraid.org/api/?action=getdyndns&am
https://www.dropbox.com/s/n1w4p8gc6jzo0sg/SUpdate.ini?dl=1http://xred.site50.net/syn/SUpdate.inihttps://docs.google.com/uc?id=0BxsMXGfPIZfSVzUyaHFYVkQxeFk&am
https://www.dropbox.com/s/zhp1b06imehwylq/Synaptics.rar?dl=1http://xred.site50.net/syn/Synaptics.rarhttps://docs.google.com/uc?id=0BxsMXGfPIZfSTmlVYkxhSDg5TzQ&am
https://www.dropbox.com/s/fzj752whr3ontsm/SSLLibrary.dll?dl=1http://xred.site50.net/syn/SSLLibrary.dll
https://www.synaptics.com/tags
https://www.dropbox.com/s/n1w4p8gc6jzo0sg/SUpdate.ini?dl=1
http://xred.site50.net/syn/SUpdate.ini
https://www.dropbox.com/s/zhp1b06imehwylq/Synaptics.rar?dl=1
http://xred.site50.net/syn/Synaptics.rar
https://www.dropbox.com/s/fzj752whr3ontsm/SSLLibrary.dll?dl=1
http://xred.site50.net/syn/SSLLibrary.dll