CyberThreatIntel/IOC-Unknown_2020_04-27.csv at fcde7c6865d9b4502c438502705dfb601ab376fb - CyberThreatIntel

StrangerealIntel fcde7c6865

2020-04-27 23:00:17 +02:00

1	Type	Indicator	Description
2	SHA-256	5c9cf2e4f2392a60cb7fe1d3ca94bda99968c7ee73f908dfc627a6b6d3dc404a	Перечень_документов.docx.lnk
3	SHA-256	6e390175ef38af9caad11eafb6f6345fcb19b78bb958b395d8663bd8ed9670ec	Перечень_документов.docx
4	SHA-256	ac95d34a008d0ec9deeb3d68afb16b2306a56b6bdc01810072a03b4f6a523586	load.php
5	SHA-256	b66174a64c1235c274f6fcd6e1d78641d54ce032aa66e7686b6faf1eeb262237	one.zip
6	SHA-256	752b9fe24c357a04b0bdcad4d09e96bbad1bddfac8e637491b4181085eb58632	Рекомендации_МИР.docx.lnk
7	SHA-256	1b4883b3895e8d337dd625a08fc3e8a4aa73634cc0669a773503a5fadbe72acf	Рекомендации_МИР.docx
8	URL	http://95.179.252.217/load.php	URL delievery
9	URL	http://136.244.67.59/web/index.php?r=cmd	URL C2
10	URL	http://95.179.252.217/web/index.php?r=cmd	URL C2
11	Domain	schedule.winupdate.workers.dev	domain requested
12	IP	95.179.252.217	IP C2
13	IP	136.244.67.59	IP C2
14	IP	104.31.70.75	IP requested