IOCs/xlling-in-excel-malicious-add-ins.txt at main · Cisco-Talos/IOCs
Tags
maec-delivery-vectors: Watering Hole
attack-pattern: Add-Ins - T1137.006
Show in Graph
Common Information
Type Value
UUID 1c99c9cf-43f6-4919-a208-c0f1754c462f
Fingerprint ff7d089e6c195655
Analysis status DONE
Considered CTI value 2
Text language
Published Jan. 1, 2023, midnight
Added to db June 1, 2023, 10:54 a.m.
Last updated Nov. 17, 2024, 5:57 p.m.
Headline Name already in use
Title IOCs/xlling-in-excel-malicious-add-ins.txt at main · Cisco-Talos/IOCs
Detected Hints/Tags/Attributes 17/2/13
Source URLs
Redirection Url
Details Source https://github.com/Cisco-Talos/IOCs/blob/main/2022/12/xlling-in-excel-malicious-add-ins.txt
URL Provider
Details Provider Source level domain
Details github.com github.com
Attributes
Details Type #Events CTI Value
Details File 1 
xlling-in-excel-malicious-add-ins.txt
Details sha256 1 
fdfdfc8878f39424920d469bcd05060a6f7c95794aaa2422941913553d3dd01f
Details sha256 1 
a5d46912f0767ae30bc169a85c5bcb309d93c3802a2e32e04165fa25740afac1
Details sha256 1 
9dd2425c1a40b8899b2a4ac0a85b047bede642c5dfd3b5a2a2f066a853b49e2d
Details sha256 1 
d8286133d3d21b7e2b83a6c071147b8ef993e963ad6bdb0f95d665869557a444
Details sha256 1 
7a234d1a2415834290a3a9c7274aadb7253dcfe24edb10b22f1a4a33fd027a08
Details sha256 1 
f2c5327b7bf88c65d0552d8664aca2ac542c8d37ae19582ba56690f1df420b53
Details sha256 1 
55228eec31193a900e8216ab245391f1e40feb742d780caa91fdb1000d8434c2
Details sha256 1 
f5c27b7bdea3861a9414a0dc6b08556ea50423d63297e08eedff69ae9c240cae
Details sha256 1 
d7c3dd8bc55649b2a77dc921e70f5f208946f64aedfdaabd7b02a247669a73aa
Details IPv4 1 
172.245.120.8
Details Threat Actor Identifier - FIN 377 
FIN7
Details Url 1 
http://172.245.120.8/pdfreader.exe