GHOSTPULSE Malware IOCs - SEC-1275-1
Tags
| attack-pattern: | Domains - T1583.001 Domains - T1584.001 Malware - T1587.001 Malware - T1588.001 Powershell - T1059.001 Powershell - T1086 |
Common Information
| Type | Value |
|---|---|
| UUID | 52f73f12-b348-4fc0-98da-48ff278a2ade |
| Fingerprint | e086d6ae40fbd57a |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Oct. 31, 2023, midnight |
| Added to db | Oct. 31, 2023, 6:57 a.m. |
| Last updated | Dec. 22, 2024, 8:43 a.m. |
| Headline | GHOSTPULSE Malware IOCs |
| Title | GHOSTPULSE Malware IOCs - SEC-1275-1 |
| Detected Hints/Tags/Attributes | 5/1/8 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://1275.ru/ioc/2784/ghostpulse-malware-iocs/?from=rss |
URL Provider
| Details | Provider | Source level domain |
|---|---|---|
| Details | 1275.ru | 1275.ru |
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 8 | ✔ | Архивы IOC - SEC-1275-1 | https://1275.ru/ioc/feed | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 5 | manojsinghnegi.com |
|
| Details | File | 27 | 2.tar |
|
| Details | sha256 | 2 | 0c01324555494c35c6bbd8babd09527bfc49a2599946f3540bb3380d7bec7a20 |
|
| Details | sha256 | 2 | 4283563324c083f243cf9335662ecc9f1ae102d619302c79095240f969d9d356 |
|
| Details | sha256 | 2 | 49e6a11453786ef9e396a9b84aeb8632f395477abc38f1862e44427982e8c7a9 |
|
| Details | sha256 | 2 | eb2addefd7538cbd6c8eb42b70cafe82ff2a8210e885537cd94d410937681c61 |
|
| Details | sha256 | 2 | ee4c788dd4a173241b60d4830db128206dcfb68e79c68796627c6d6355c1d1b8 |
|
| Details | IPv4 | 4 | 78.24.180.93 |