IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

Turkey’s Attacking APT Groups and Attack Analyses

DATE : 2025-03-02T16:36:21
SOURCE : medium.com

FILE_HASH_MD5:
79c7219ba38c5a1971a32b50e14d4a13
09cc6bebec6db77a401507d33ec3987c
542128ab98bda5ea139b169200a50bce
3d67ce57aab4f7f917cf87c724ed7dab
d4a5d44184333442f5015699c2b8af28
804460a4934947b5131ca79d9bd668cf
b38561661a7164e3bbb04edc3718fe89
fcff642268898fcf65702a214aefbf9e
ac125aea0b703de37980779599438b4a
5a89aac6c8259abbba2fa2ad3fcefc6e
05da32043b1e3a147de634c550f1954d

FILE_HASH_SHA1:
b39b3a778f0c257e58c0e7f851d10c707fbe2666
2a6ddf89a8366a262b56a251b00aafaed5321992
46e2957e699fae6de1a212dd98ba4e2bb969497d
c53930772beb2779d932655d6c3de5548810af3d
057e79801070572be543fdd7111657517827457f

FILE_HASH_SHA256:
26884f872f4fae13da21fa2a24c24e963ee1eb66da47e270246d6d9dc7204c2b
61f83466b512eb12fc82441259a5205f076254546a7726a2e3e983011898e4e2

Domain:
btcfrog.com
rentasyventas.com
beyaz.net
otx.alienvault.com
bloomberght.com
crowdstrike.com
cybereason.com
infinitumit.com.tr
securelist.com
picussecurity.com
blog.polyswarm.io
sentinelone.com
socradar.io
splunk.com
thehackernews.com
threatmon.io
trthaber.com
asiaworldremit.com
joexpediagroup.com
uber-asia.com
advanceorthocenter.com
lalindustries.com
win7-updates.com
drive-accounts.com
yah00.site
instagram-com.site
acconut-verify.com
skynevvs.com
beststreammusic.com
bbcweather.org
protonhardstorage.com
moderntips.org
bulgariatripholidays.com
azuresecuritycenter.onmicrosoft.com
pdf-docs.online
muslimnewsdaily.com
sense4baby.fr
satkas.waw.pl
gov.tr
win10-update.com
s224.win7-update.com
s21.win7-update.com
win10-update.com
eloples.com
ios-certificate-update.com
android-system-update.com

Url:
https://www.btcfrog.com/qr/bitcoinpng.php?addre
https://www.rentasyventas.com/incluir/rk/imagenes.html
https://www.beyaz.net/tr/guvenlik/makaleler/2024_30_week_siber_guvenlik_news.html
https://otx.alienvault.com/pulse/627b7ceef23d9a59956eecb0
https://www.bloomberght.com/kuzey-kore-den-turkiye-ye
https://www.crowdstrike.com/en-us/cybersecurity-101/threat
https://www.crowdstrike.com/en-us/blog/bears-midst
https://www.cybereason.com/blog/research/powerless-trojan-iranian-apt
https://www.infinitumit.com.tr/muddywater-apt-grubu
https://www.infinitumit.com.tr/charming-kitten-apt35
https://www.infinitumit.com.tr/iran-destekli-apt-grubu-apt39-chafer
https://securelist.com/apt
https://www.picussecurity.com/resource/blog/apt29-cozy-bear-evolutio
https://blog.polyswarm.io/muddy-water-uses-sloughrat-in-recent-campaig
https://www.sentinelone.com/cybersecurity-101/threat
https://socradar.io/apt-profile-who-is-lazarus-grou
https://socradar.io/wp-content/uploads/2022/02/2021-Turkey-Threat
https://socradar.io/w
https://www.splunk.com/en_us/blog/learn/ttp-tactics-technique
https://thehackernews.com/2024/07/apt41-infiltrates-networks-in-italy.html
https://threatmon.io/ira
https://www.trthaber.com/haber/bilim-teknoloji/zeytin-dali-harekatini