API tools faq
paste
ExecuteMalware

2020-09-25 Bazar IOCs

ExecuteMalware
Sep 25th, 2020
3,580
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 1.93 KB | None | 0 0
raw download clone embed print report
  1. THREAT ATTRIBUTION: BAZAR
  2.  
  3. SUBJECTS OBSERVED
  4. RE: Firstname, our meeting
  5.  
  6. SENDERS OBSERVED
  7. Zhanatan Cook <[email protected]>
  8.  
  9. EMAIL BODY
  10. Good morning, First Last
  11. You can find the list of important questions that need to be highlighted at this meeting in a form in PDF:
  12. https://files.constantcontact.com/6426e42d701/6ab40cd7-edf1-46db-a0c4-aa2adf360a3a.pdf
  13. Company Name
  14.  
  15. Please, be informed that our company`s CEO has planned to hold a meeting at the end of day to be acquainted with performance data of all departments of our company.
  16. Please, contact me ASAP if you have any questions because this is urgent!
  17.  
  18. Best regards,
  19. Zhanatan Cook
  20. Head Office Secretary
  21.  
  22. BAZAR PAYLOAD FILE HASHES
  23. Document-Print.exe
  24. eaad7777d588deef9db962f2863f8b9b
  25.  
  26. LANDING PAGE PDF FILE HASHES
  27. 4Employee
  28. 9b94c44d3022533137501d99e16f3022
  29.  
  30. MALDOC DISTRIBUTION URLS
  31. https://u12056208.ct.sendgrid.net/ls/click?upn=uWsEeQFQD9ViDqyTUu544F8bLk4jEL1y-2FIYaqwYxKAXSnQ7gJ-2FbYZyx-2BDzzEf4znAhym2-2BX8IyyWEzh2tvz7KXD8g10oEXhyX-2FAnl8PSd-2FGr33ndbXwBwCSkNnp63Qxg4IRs_ZAK9SMimQo8C4l8KF-2FsIS-2F36aJpqfKhkX2vgHHewwugFmFLVJD2UY0PiwLqCYtjx4SSb-2FxfYLq8NJoal27-2Bh3dRMMG26t3xuKNZzkRzrX3EJQbywsC3G41gdk7lMe-2BLivNZHuNBA4EJyFau6XlwVm5o2TXsPn4kDbmGQJnNjvE2Y-2FlSAKNcxRxKvFsjlN3bchzlAh3ZniJucpK5fpRSWtr5A-2BYtyafAzXI2wrgPi12EzzzibxUxPLcIjzdanzny8
  32.  
  33. https://drive.google.com/uc?export=download&confirm=no_antivirus&id=1Sc8L7HqsC8_pkQc7xASsIab0QOUoFtOO
  34.  
  35. LANDING PAGE
  36. https://files.constantcontact.com/6426e42d701/6695676c-0be4-42dc-b0bb-b16e01ddaeaf.pdf
  37. https://files.constantcontact.com/6426e42d701/6ab40cd7-edf1-46db-a0c4-aa2adf360a3a.pdf
  38.  
  39. BAZAR PAYLOAD URLS
  40. https://doc-0g-6o-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/icl8fbmn9oiii6m8pk1nr50rjm9bmeva/1601050800000/16947237457384943505/*/1Sc8L7HqsC8_pkQc7xASsIab0QOUoFtOO?e=download
  41.  
  42. BAZAR C2
  43. https://185.142.99.8/api/v202
  44. https://185.142.99.8/api/v202
  45. https://185.142.99.8/api/v204
  46.  
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!