API tools faq
paste
ExecuteMalware

2020-09-30 Zloader IOCs

ExecuteMalware
Sep 30th, 2020
2,956
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 0.63 KB | None | 0 0
raw download clone embed print report
  1. THREAT ATTRIBUTION: ZLOADER
  2.  
  3. SUBJECTS OBSERVED
  4. Details about Invoice Number 1856
  5. Information regarding Invoice ID 2470
  6. Invoice 9903 information
  7.  
  8. SENDERS OBSERVED
  9. ar515tificial@aol.com
  10. gavno.jann@aol.com
  11. sollers_1966@aol.com
  12.  
  13. EXCEL FILE NAMES
  14. in-9903.xls
  15. ord2470.xls
  16. PQ-1856.xls
  17.  
  18. EXCEL FILE HASHES
  19. 5026b968321946721f085536cdf43236
  20. 52d6f1f0ed2fe989985990cbae6a1d45
  21. afe44d0d18616d1b2080c9d1078f4c8e
  22.  
  23. ZLOADER PAYLOAD HASHES
  24. None
  25.  
  26. ZLOADER PAYLOAD URLs
  27. https://eshelmet.com/wp-touch.php
  28. https://ezs.com.au/wp-touch.php
  29. https://jonescustombuilds.com/wp-touch.php
  30. https://laspanofashion.com/wp-touch.php
  31.  
  32. ZLOADER C2s
  33. UNKNOWN
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!