IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

From Contagious to ClickFake Interview: Lazarus leveraging the ClickFix tactic

DATE : 2025-03-31T17:30:10
SOURCE : sekoia.io

FILE_HASH_MD5:
2805e6efa8877f5707d8e6b29610894f
69bf17d2fb810df08180f0d5b7ce4537
d583a05680e83b5b4c7ac2d21920384b
00b7488d87972e9812e94c69385f6839
ce37c75d35c82f933e14b00f32c25373
341ba2e57a0f108be75a1515d32a008a
7978d40bd5ca56021f6c250f564e7e27

FILE_HASH_SHA256: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Domain:
archblock.com
api.smartdriverfix.cloud
vid-crypto-assess.com
assessiohq.com
search.in
driverpackx.app
vid-crypto-assess.comassessiohq.comblockassess.comblockchainjobassessment.comblockchainjobhub.comcandidateinsightinfo.comcoinbase-walet.bizcoinbase-walet.mecompetency-core.comdevchallengehq.comevalassesso.comevalswift.comquickskill-review.comjobinterview360.comlivehirehub.comtalenthiring360.comquickassessio.comquickhire360.comquickinterview360.comeskillprof.comevalvidz.comintervwolf.comvidcruiterinterview.comvidcruitermaster.comvidintermaster.comskillhiretrack.comskillprooflab.comtalentcheck.protalentsnaptest.comtalentview360.comtest-wolf.comtoptalentassess.comugethired360.comvidassess360.comvidassesspro.comvideorecruitpro.comvidhirehub.comzenspiretech.com
api.camdriverhub.cloudapi.camdrivers.cloudapi.camdriverstore.cloudapi.drivercamhub.cloudapi.driversnap.cloudapi.driverstream.cloudapi.provideodrivers.cloudapi.smartdriverfix.cloudapi.vcamdriverupdate.cloudapi.videocarddrivers.cloudapi.videodriverzone.cloudapi.videotechdrivers.cloudapi.vidtechhub.cloudapi.webcamdrivers.cloudapi.webcamwizard.cloudapi.camdriversupport.comapi.camera-drive.orgapi.camtechdrivers.comapi.drivercams.cloudapi.drive-release.cloudapi.nvidia-drive.cloudapi.nvidia-release.orgapi.nvidia-release.usapi.smartdriverfix.cloudapi.web-cam.cloud
content.dropboxapi.com

Url:
https://www.archblock.com
https://api.smartdriverfix.cloud/nvidiadrivers-kp9s.update
https://api.smartdriverfix.cloud/coremedia-kp9s.sh
https://api.smartdriverfix.cloud/nvidiawins-update
http://38.134.148.218:8080http://154.62.226.22:8080http://72.5.42.93:8080