IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

RST TI Report Digest: 17 Feb 2025

DATE : 2025-02-18T01:06:41
SOURCE : medium.com

CVE:
cve-2024-8963
cve-2024-8190
cve-2024-9379
cve-2022-41128
cve-2024-0012

FILE_HASH_MD5:
44b3f46a370faf94cc51386b4ccaab83
83b97826c43808c5caa1b69c9c7cbeb0

FILE_HASH_SHA1:
172d3750e3617526563dd0b24c4ba88f907622b9
e7c52e54622168a737c5592894d85bec3758b0bd
5de4215ba91bd52ae7371a049c23c8239302f3a5

FILE_HASH_SHA256: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Domain:
activationsmicrosoft.com
btdig.com
onedrivepack.com
eveverify.com
findkik.com
sapeconomico.com
eiesoft.com
lynxcm.com
mellittler.com
hardcorelegends.com
fbinter.com
incomputersolutions.com
0x0v1.com
work3.b4a.app
elastic.co
poster.checkponit.com
support.fortineat.com
kalambur.net
agencyhill99.com
kmsupdate2023.com
kms-win11-update.net
windowsupdatesystem.org
ratiborus2023.com
onedrivestandaloneupdater.com
windowsdrivepack.com
akamaitechcdns.com
huguotechltd.com
pengzhoudirading.com
xiwangtechltd.com
winuteachltd.com
diditechltd.com
deeseaulc.com
hisolution.io
hi-devs.com
pengzhoutrading.com
wuxiantechltd.com
digert.ictnsc.com
support.vmphere.com
update.hobiter.com
hobiter.com
vmphere.com
ictnsc.com
ict.ictnsc.com
autodiscovar.com
cloud.autodiscovar.com
d-links.net
vm-clouds.net
pol.vm-clouds.net
checkponit.com
devagroup.com.pl
thiscode.info
hwupdates.com
protonmail.ch
plugins.jetbrians.net
police.tracksyscloud.com

Url:
https://activationsmicrosoft.com/activationsmicrosoft.ph
https://btdig.com/172d3750e3617526563dd0b24c4ba88f907622b9
http://onedrivepack.com/pipe_RequestPollUpdateProcessAuthwordpress.phphash
http://eveverify.com/captcha.html
http://findkik.com/Ray-verify.html
http://sapeconomico.com/captcha.html
https://eiesoft.com/Ray-verify.html
https://lynxcm.com/Ray-verify.html
http://mellittler.com/a/b.png
http://hardcorelegends.com/a/b.png
http://fbinter.com/a/b.png
http://fbinter.com/a/1.png
http://fbinter.com/a/2.png
http://fbinter.com/a/3.png
http://fbinter.com/a/4.png
http://fbinter.com/a/5.png
http://fbinter.com/a/6.png
http://fbinter.com/a/7.png
http://fbinter.com/a/8.png
http://fbinter.com/a/9.png
http://fbinter.com/a/10.png
http://fbinter.com/a/11.png
http://fbinter.com/a/12.png
http://incomputersolutions.com/o/o.png
http://92.255.85.135/fakeurl.htmhash
https://t.me/2AurfGZWxZo0MDgx
http://65.108.20.73/BattleTank.exe
http://65.108.20.73:3000/BattleTank.exehash
https://www.0x0v1.com/targeted-threats-research-south-north-korea
https://work3.b4a.app/download.html?id=88&am
https://www.elastic.co/security-labs/fragile-web-ref7707
https://www.elastic.co/security-labs/finaldraft
https://poster.checkponit.com:443/nzoMeFYgvjyXK3P
https://support.fortineat.com:443/nzoMeFYgvjyXK3P
http://poster.checkponit.com/nzoMeFYgvjyXK3Phash