ioc[.]one - OSINT Cyber Threat Intelligence Database

DarkGate Loader IOCs - Part 8 - SEC-1275-1

Tags

Show in Graph

Common Information

Type	Value
UUID	cff7640d-4c36-41af-8a4f-fdb14000f131
Fingerprint	f2a498ae1363e26b
Analysis status	DONE
Considered CTI value	0
Text language
Published	Nov. 3, 2023, midnight
Added to db	Nov. 3, 2023, 6:59 a.m.
Last updated	Dec. 26, 2024, 12:14 a.m.
Headline	DarkGate Loader IOCs - Part 8
Title	DarkGate Loader IOCs - Part 8 - SEC-1275-1
Detected Hints/Tags/Attributes	7/0/56

Source URLs

	Redirection	Url
Details	Source	https://1275.ru/ioc/2802/darkgate-loader-iocs-part-8/?from=rss

URL Provider

Details	Provider	Source level domain
Details	1275.ru	1275.ru

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	8	✔	Архивы IOC - SEC-1275-1	https://1275.ru/ioc/feed	2024-08-30 22:08

Attributes

Details	Type	#Events	Value
Details	Domain	1	gentle.zip
Details	Domain	1	jeraldsin3dsajdklafdmonk.com
Details	Domain	1	shsukadadyuikmmonk.com
Details	Domain	43	doubleclick.net
Details	Domain	1	spiritodyssey.org
Details	Domain	1	nuriaperaire.com
Details	Domain	1	claim-november-97ahv73.cab
Details	Domain	1	2weekfunnel.com
Details	Domain	1	32ndfilm.com
Details	Domain	1298	gmail.com
Details	Domain	1	cognitivation.com
Details	Domain	1	goalfluential.com
Details	Domain	1	cleanertown.com
Details	Domain	1	gpttor.com
Details	Domain	1	openmindflow.com
Details	Domain	1	syntheticmindset.com
Details	Email	1	cimahlynne@gmail.com
Details	Email	1	complaint@cognitivation.com
Details	Email	1	corporate@goalfluential.com
Details	Email	1	info@cognitivation.com
Details	Email	1	no-reply@cleanertown.com
Details	Email	1	no-reply@cognitivation.com
Details	Email	1	notification@cognitivation.com
Details	Email	1	report@gpttor.com
Details	Email	1	report@openmindflow.com
Details	Email	1	support@syntheticmindset.com
Details	File	1	gentle.zip
Details	File	1	gentle.js
Details	File	1	claim-november-97ahv73.cab
Details	md5	1	172f1ab28458d439a2878982cd7943ce
Details	md5	1	1a145f64835ef788884984eaaabc41cf
Details	md5	1	1a90220564e46444ae235ce3a010871b
Details	md5	1	26e5a6d44b0709b3be3616354cf3e05e
Details	md5	1	3835ea8ca799e304684d111208b9ab62
Details	md5	1	44f951d133fce5921df9bae700e44f3a
Details	md5	1	5e9822b58fd2d35509940ac6c6f0f443
Details	md5	1	61c934070a45ea9ca043b6bc67d1bdb8
Details	md5	1	8980a4c464dc96691027b0cf20676cf3
Details	md5	1	a14371a82f4c8f96715642788551ea87
Details	md5	1	ab81ca75679d34c9580cb5c1b5f2646e
Details	md5	6	c56b5f0201a3b3de53e561fe76912bfd
Details	md5	1	cb64cfe12e6bdaeef11e0a035f940b26
Details	md5	1	cce9aeb56d9d75c2dbef9408ab4becdd
Details	md5	1	f21365c7616d97a9d67752c45543bcb8
Details	md5	1	f480dfbc11756705722e6a0ea3ea957a
Details	md5	1	f9c209431961280cebcdc3883380995d
Details	IPv4	1	5.252.178.251
Details	IPv4	1	5.252.177.226
Details	Url	1	http://5.252.177.226/downloads/gentle.zip/gentle.js
Details	Url	1	http://jeraldsin3dsajdklafdmonk.com:2351/msiaywqlijr
Details	Url	1	http://shsukadadyuikmmonk.com
Details	Url	1	http://shsukadadyuikmmonk.com:2351/msikrxeiths
Details	Url	1	https://adclick.g.doubleclick.net/pcs/click?fj10-30-23-refhhb119kd&&adurl=//spiritodyssey.org
Details	Url	1	https://adclick.g.doubleclick.net/pcs/click?fj2-november-23-refhhb119kd&&adurl=//nuriaperaire.com
Details	Url	1	https://nuriaperaire.com/wp-content/uploads/2023/07/claim-november-97ahv73.cab
Details	Url	1	https://spiritodyssey.org