API tools faq
paste
Advertisement
G0dR4p3

Pony_Malware_IOCs_21-01-2019

G0dR4p3
Jan 21st, 2019
393
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 0.72 KB | None | 0 0
raw download clone embed print report
  1. #Pony #Stealer #Malware
  2. ----------------------------------
  3. 21-01-2019 IOC's
  4. ----------------------------------
  5. Main object- "163c3af91c2b350b437717cb16f3d050e1caf9dd24de9208bf49ed304d3bf57f.bin.gz"
  6. sha256 a25280ea60f81d926b9118977789be18f14d62f4ea89d309d94856cd301a381e
  7. sha1 c841ba6521199e6b1393873c1df71ff2a2499889
  8. md5 406d1ea159c98c3660a725685740743d
  9. Dropped executable file
  10. sha256 C:\Users\admin\Desktop\Payment Slip.exe 53baa1bcf35b69a0266576f425a9dd17f24c2b7bb83dc64a2e8d06bd7733c182
  11. DNS requests
  12. domain registrofiscal.com.br
  13. Connections
  14. ip 104.238.96.144
  15. HTTP/HTTPS requests
  16. url http://registrofiscal.com.br/chris/pony/gate.php [OPENDIR]
  17. url http://registrofiscal.com.br/chris/pony/shit.exe [OPENDIR]
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!