Vidar Stealer IOCs - Part 12 - SEC-1275-1
Tags
attack-pattern: Domains - T1583.001 Domains - T1584.001 Powershell - T1059.001 Powershell - T1086
Show in Graph
Common Information
Type Value
UUID 3150af0b-090f-4bef-b160-8ff4c3064293
Fingerprint 3c19d883f39b7719
Analysis status DONE
Considered CTI value 0
Text language
Published Nov. 11, 2024, midnight
Added to db Nov. 11, 2024, 8:20 a.m.
Last updated Nov. 12, 2024, 6:58 a.m.
Headline Vidar Stealer IOCs - Part 12
Title Vidar Stealer IOCs - Part 12 - SEC-1275-1
Detected Hints/Tags/Attributes 7/1/20
Source URLs
Redirection Url
Details Source https://1275.ru/ioc/7946/vidar-stealer-iocs-part-12/?mtm_campaign=rss
URL Provider
Details Provider Source level domain
Details 1275.ru 1275.ru
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 8 Архивы IOC - SEC-1275-1 https://1275.ru/ioc/feed 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 1 
gibuzuy37v2v.top
Details Domain 1 
jcgijjkddehkfli.top
Details Domain 1 
marchatti.com
Details Domain 1 
mjjagccfegadkej.top
Details Domain 1 
q6cdmo8n7h2qp446fdbimy40fgyiuy59p.marchatti.com
Details File 37 
1.php
Details File 1 
o96tdp7x8shtr.php
Details File 1 
u94six0k2phtr.php
Details md5 1 
04dd6e18696948c81ebee69aa706557f
Details md5 1 
900728aa8935e1c237d057bc47a26dbd
Details sha1 1 
e99ab19dccdad0c566189fcf366be5674a90709a
Details sha1 1 
f5e8a9add5b0b0b6c435557dd38349cb12bef9cb
Details sha256 1 
5eba3e4538cffbde5d39ba81eb4ed85e9c9cc6065e036503073a43a9478f405d
Details sha256 1 
75341b24e7cbb26e63265647822e824f0574591755a589ceef2a91c4a72877c7
Details Url 1 
http://gibuzuy37v2v.top
Details Url 1 
http://gibuzuy37v2v.top/1.php?s=mints13
Details Url 1 
http://jcgijjkddehkfli.top/o96tdp7x8shtr.php
Details Url 1 
http://mjjagccfegadkej.top
Details Url 1 
http://mjjagccfegadkej.top/u94six0k2phtr.php
Details Url 1 
https://q6cdmo8n7h2qp446fdbimy40fgyiuy59p.marchatti.com/20ubbsimp4