Fakebat Loader IOCs - SEC-1275-1
Tags
attack-pattern: Domains - T1583.001 Domains - T1584.001 Msbuild - T1127.001 Powershell - T1059.001 Powershell - T1086
Show in Graph
Common Information
Type Value
UUID 33ccbcb9-e6af-4756-9505-cb646a0a08bc
Fingerprint fb5e2eb8169f9adb
Analysis status DONE
Considered CTI value 0
Text language
Published Nov. 11, 2024, midnight
Added to db Nov. 11, 2024, 9:18 a.m.
Last updated Nov. 17, 2024, 6:55 p.m.
Headline Fakebat Loader IOCs
Title Fakebat Loader IOCs - SEC-1275-1
Detected Hints/Tags/Attributes 8/1/21
Source URLs
Redirection Url
Details Source https://1275.ru/ioc/7955/fakebat-loader-iocs/?mtm_campaign=rss
URL Provider
Details Provider Source level domain
Details 1275.ru 1275.ru
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 8 Архивы IOC - SEC-1275-1 https://1275.ru/ioc/feed 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 3 
notion.ramchhaya.com
Details Domain 3 
furliumalerer.site
Details Domain 10 
pastebin.pl
Details Domain 3 
brownieyuz.sbs
Details Domain 3 
ducksringjk.sbs
Details Domain 3 
explainvees.sbs
Details Domain 3 
ghf-gopp1rip.com
Details Domain 3 
relalingj.sbs
Details Domain 3 
repostebhu.sbs
Details Domain 3 
rottieud.sbs
Details Domain 3 
slippyhost.cfd
Details Domain 4 
solomonegbe.com
Details Domain 3 
tamedgeesy.sbs
Details Domain 3 
thinkyyokej.sbs
Details File 149 
msbuild.exe
Details File 16 
1.jar
Details File 8 
pastebin.pl
Details sha256 1 
2de8a18814cd66704edec08ae4b37e466c9986540da94cd61b2ca512d495b91a
Details sha256 3 
34c46b358a139f1a472b0120a95b4f21d32be5c93bc2d1a5608efb557aa0b9de
Details sha256 1 
6341d1b4858830ad691344a7b88316c49445754a98e7fd4a39a190c590e8a4db
Details sha256 1 
de64c6a881be736aeecbf665709baa89e92acf48c34f9071b8a29a5e53802019