IoC Extractor

This IoC extractor identifies Indicators of Compromise (IoCs) by matching patterns, without analyzing the context of the surrounding text. Manual Review and Validation of the extracted IoCs are essential before any action is used.

Trojanized Windows 10 Operating System Installers Targeted Ukrainian Government | Mandiant

DATE : 2022-12-15T22:00:00
SOURCE : mandiant.com

FILE_HASH_MD5:
b7a0cd867ae0cbaf0f3f874b26d3f4a4
ed7ab9c74aad08b938b320765b5c380d
1433dd88edfc9e4b25df370c0d8612cf
84B54D2D022D3DF9340708B992BF6669
67C4B2C45D4C5FD71F6B86FA0C71BDD3
5AF96E2E31A021C3311DFDA200184A3B
66da9976c96803996fc5465decf87630
a0d668eec4aebaddece795addda5420d
f9cd5b145e372553dded92628db038d8
59a3129b73ba4756582ab67939a2fe3c
529388109f4d69ce5314423242947c31
0f06afbb4a2a389e82de6214590b312b
a8e7d8ec0f450037441ee43f593ffc7c
16b21091e5c541d3a92fb697e4512c6d

Domain:
rutracker.net
cdnworld.org
ip-api.com
torprojects.org

Url:
https://toloka.to/t6570161873175
https://rutracker.net/forum/viewtopic.php?t=6271208
https://ufowdauczwpa4enmzj2yyf7m4cbsjcaxxoyeebc2wdgzwnhvwhjf7iid.onion.moe
https://ufowdauczwpa4enmzj2yyf7m4cbsjcaxxoyeebc2wdgzwnhvwhjf7iid.onion.w
https://ufowdauczwpa4enmzj2yyf7m4cbsjcaxxoyeebc2wdgzwnhvwhjf7iid.onion.moe/bundle.zi
https://cdnworld.org/34192
https://cdnworld.org/34702
http://ip-api.com/jso