IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

Unmasking SparkRAT: Detection & macOS Campaign Insights

DATE : 2025-01-30T20:19:31
SOURCE : hunt.io

CVE:
cve-2024-27198

FILE_HASH_SHA256:
cd313c9b706c2ba9f50d338305c456ad3392572efe387a83093b09d2cb6f1b56
52277d43d2f5e8fa8c856e1c098a1ff260a956f0598e16c8fb1b38e3a9374d15
ffe4cfde23a1ef557f7dc56f53b3713d8faa9e47ae6562b61ffa1887e5d2d56e

IPv4:
152.32.138.108
15.235.130.160
118.194.249.38
51.79.218.159
15.32.138.108

Domain:
gmcomamz.site
updatetiker.site
one68.top
gsoonmann.sitegmnormails.sitegmoonsom.sitenasanecesoi.sitegmoocsoom.sitegmcomamz.sitenamerowem.sitegmoosomnoem.sitemncomgom.site
ggnmcomas.site
remote.henh247.net
updatetiker.net
gomncomow.site
gooczmmnc.site
gnmoommle.space
henho247.net
remote.henho247.net

Url:
https://gmcomamz.site:443
http://updatetiker.site/dev/client.bi
http://one68.top/client