API tools faq
paste
Advertisement
ExecuteMalware

2021-07-28 Nanocore IOCs

ExecuteMalware
Jul 28th, 2021
11,575
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 0.96 KB | None | 0 0
raw download clone embed print report
  1. THREAT IDENTIFICATION: NANOCORE
  2.  
  3. SUBJECTS OBSERVED
  4. RE: New Order
  5.  
  6. SENDERS OBSERVED
  7. ufo@myjetkpress.com
  8. Reply-To: shafy.espi@gmail.com
  9.  
  10. EMAIL BODY
  11. Dear Sir/Ma'am,
  12.  
  13. We are interested in your product, We are Metallurgical Industries
  14. company (E.JS.C) from Saudi Arabia , also we buy in large quantities,
  15.  
  16. Kindly send me your best price of the attached Order and provide me with
  17. your product catalogs, so that we can select more items for our company.
  18.  
  19. We have provided some of the products we buy in the attached file.
  20.  
  21. Indicate your minimum order quantity for our reference?
  22.  
  23. Waiting for your reply
  24.  
  25. Thanks.
  26.  
  27. Sabri Tahir Al Asmakh
  28. Sales Manager, Saudi Arabia
  29.  
  30. MALDOC FILE HASHES
  31. Order No.916754.gz
  32. 65a94caa7ec24ca10c22792ee762a42c
  33.  
  34. NANOCORE PAYLOAD FILE HASHES
  35. Order No.916754.exe
  36. 4a4d763bca1ebc9e0986c1bc3e8bd7bd
  37.  
  38. NANOCORE C2
  39. https://79.134.225.100:1985
  40.  
  41. SUPPORTING EVIDENCE
  42. https://app.any.run/tasks/4a17112f-71b9-4eea-aa37-793d609f4732/
  43.  
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!