IoC Extractor
This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.
Astaroth, Mekotio & Ousaban abusing Google Cloud Run in LATAM-focused malware campaignsDATE : 2024-02-20T15:00:00
SOURCE : youtube.comFILE_HASH_SHA256:4fa9e718fca1fa299beab1b5fea500a0e63385b5fe6d4eb1b1001f2abd97a828
ed9f268ba7acdcbaeedd40a5c538c6a2637fd41a546363ed7587a6c2e5cdf02b
b8afd6640de8feed1774e8db3d428c0f1bca023324bb7de9a5eb99db2ea84e26
8d912a99076f0bdc4fcd6e76c51a1d598339c1502086a4381f5ef67520a0ddf2
094e722972e6e4d2858dd2447d30c7025e7446f4ca60a7dc5a711f906ab5b1a0
d972675774f28e7f5ad206f420470925c4fdbca681816a19aa91a6d054b8f55a
237d1bca6e056df5bb16a1216a434634109478f882d3b1d58344c801d184f95d
1a9113491deb9f21c590de4f7e9e370594e47431be482b32f8a5234ad7545a0b
5c4a89c81be51e9e048cf3624d4a44fd4355cf6bf56a3c10217d3d3037410b55
05ef393f6e6d3f8e1ba15eec63a1c2121744400d322a03c9c8e26c1ed58cb6a7
6d7148b180367e84763690fc57cbd526433026f50dc0c029b00a714ba1660cd3
b712286d4d36c74fa32127f848b79cfb857fdc2b1c84bbbee285cf34752443a2
b45d8630d54c8d39e3554e0c5a71003d818617e07953520a8638f0935f04dc85
6e1434e0f8cd402f8acb0aade942c86d6b62cd6aa3927053f25fdf57ed384b47
7c7dc2065e295eb7ec60d1f8f552e455468e19e731ad20005833d71fa1371f50
Domain:wae4w.mariomanagement.biz.id
run.app
40appspot.gserviceaccount.com
w3iuwl.nextmax.my.id
1.tcp.sa.ngrok.io
snort.org
arr-wd3463btrq-uc.a.run.appportu-wd3463btrq-uc.a.run.appxwago.creativeplus.my.idwae4w.mariomanagement.biz.idh4aowa.mariostrategy.my.idyaiinr.actiongroup.my.ide0aonr.creativeplus.my.idwiae5.marioadvisory.my.idcaiiaf.businesswise.biz.id2joafm.marioanalytics.my.idnqaa8e.businesswise.biz.idnweow8.mariostrategy.my.idwba0s.produtoeletro.my.id4hawb.produtoeletro.my.idcua3e.mariosolutions.biz.ideeiul.marioadvisory.my.idkka5c.marioanalytics.my.idw8oaa0.mariosolutions.biz.id0tuiwp.mariomanagement.biz.idlwafa.actiongroup.my.idavfa-wd3463btrq-uc.a.run.appfactalia-ofh2cutija-uc.a.run.appgasgas-wd3463btrq-uc.a.run.apphaergsd-wd3463btrq-uc.a.run.appjx-krrdbo6imq-uc.a.run.appptb-wd3463btrq-uc.a.run.appptm-wd3463btrq-uc.a.run.apppto-wd3463btrq-uc.a.run.app1.tcp.sa.ngrok.io