Malware IOC 20201230

1. Malware IOC 20201230
2. Golang worm Miner
3. HASH
4. 236d7925cfafc1f643babdb8e48966bf
5. ead2cf8ab7aef63706b40eb57d668d0a
6. f4c90b41126fc17848bd0d131288bd36
7. 301a0a58dd98ecbbe12c6acbd0c7bbdc
8. 9c2aa65235a939b2811f281a45ecdab0
9. 078b2a96f45b493e82b44f8c5344e7e5
10. 030231d96234f06ae09ca18d621241e5
11. 642d73c85e6e79720a5ae7b82fc427c5
12. 97d89d25e9589f995d374cb7d89b4433
13. 569fcf95f3889cefd87c1b425fa37b03
14. 644f20b5a6e03aa054ba62d32f983adc
15.  
16. C&C
17. 185[.]239[.]242[.]71
18.  
19. njRAT
20. HASH
21. a849f7aa800ecfef376fd5889d7720989112dcd365209ef8e1bf164bf3123de3
22.  
23. C&C
24. tcp://0[.]tcp[.]ngrok[.]io:19736
25.  
26. Evilnum APT
27. HASH
28. b530f07a762f1564b8e9b03119cd819b
29.  
30. C&C
31. api-pixtools[.]com
32.  
33. SunRise Locker勒索病毒
34. HASH
35. 4BBC0A270FFED12A6F7A2357FCB73C30
36.  
37. READMEV1勒索病毒
38. HASH
39. D3715AB62BB922B56FB64B38C3FEAE8F
40.  
41. BlackHat_Reverse_TCP_Shell
42. HASH
43. 464f9180731266ccc5401f51eaa8f623f9f5fc0ab9bcb5ac4cfba55489a73372
44.  
45. C&C
46. microsoftserv[.]servehttp[.]com:21
47.  
48. Konni APT
49. HASH
50. a316a26ceb59ea5a682f5d8687e06ca7
51.  
52. URL
53. hxxp://naversecurity[.]us/haw/files/To_xxxxxxxxxxxxxxxxx.txt
54. hxxp://naversecurity[.]us/haw/up.php
55.  
56. VoidRAT
57. HASH
58. 0294e192621b21d5c8f2288496930fe5e947fd66cdff1a119ca2f8bbdd8a537e
59.  
60. C&C
61. Stremtyyt-36284[.]portmap[.]host:36284
62.  
63. AsyncRAT
64. HASH
65. 82e765d576749be75f8eec64ab5cb4c934b494e30a74fc9a4f70b1c8d3cb25ef
66.  
67. C&C
68. 212[.]125[.]28[.]114:4096
69. 212[.]125[.]28[.]114:80
70.  
71. Revenge RAT
72. HASH
73. ce33e156cf93f70c1e265b51a623a040c42d54c90af89d701c55c4ecdb33e203
74.  
75. C&C
76. tcp://185[.]204[.]1[.]236:3312