Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- THREAT ATTRIBUTION: KEYBASE KEYLOGGER
- (Attribution is not 100% certain)
- SUBJECTS OBSERVED
- Invoice
- SENDERS OBSERVED
- i.garmash@phc.org.ua
- MALDOC FILE HASHES
- Invoice.xls
- e6958b4fa1ed6a4bc6cc1438b8e68cfe
- PAYLOAD DOWNLOAD URLS
- https://cutt.ly/7gCl9lW
- https://cape-eye.co.za/Iv3.exe
- PAYLOAD FILE HASHES
- Iv3.exe
- c55700728fbd6d7d1e9f1c1420c48530
- ADDITIONAL PAYLOAD FILE HASHES
- Important.exe
- adf76f395d5a0ecbbf005390b73c3fd2
- (VT=0/72)
- KEYBASE C2
- http://shopphongtinh.com/keybase/image/upload.php
- SUPPORTING EVIDENCE
- https://app.any.run/tasks/65c075cc-9b98-4fc8-98c8-e71c40d0353d/
- https://urlhaus.abuse.ch/browse.php?search=shopphongtinh.com
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement