API tools faq
paste
ExecuteMalware

2020-09-08 ZLoader IOCs

ExecuteMalware
Sep 8th, 2020
3,020
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 0.72 KB | None | 0 0
raw download clone embed print report
  1. THREAT ATTRIBUTION: ZLOADER
  2.  
  3. SUBJECTS OBSERVED
  4. Agreement No. 1695 information
  5. Receipt number 5455
  6. Full summary of the Invoice 4914
  7.  
  8. SENDERS OBSERVED
  9. margaretwalker35@aol.com
  10. ronaldtaylor175@aol.com
  11. univer257se@aol.com
  12.  
  13. EXCEL FILE NAMES
  14. req5455.xls
  15. ord1695.xls
  16. Qt_4914.xls
  17.  
  18. EXCEL FILE HASHES
  19. 34856b6d798f5d0cc638f4fcf5af1736
  20. e42042ebc33e5714b23b716c3969e954
  21. f8ba3f81834d43b14aa5f7741d80ec1d
  22.  
  23. ZLOADER PAYLOAD URLs
  24. https://jawadsarwary.com/wp-keys.php
  25. https://lavish.hu/wp-keys.php
  26. https://noithatdtwood.com/wp-keys.php
  27. https://placemonster.com/wp-keys.php
  28.  
  29. jawadsarwary.com
  30. lavish.hu
  31. noithatdtwood.com
  32. placemonster.com
  33.  
  34. ZLOADER C2s
  35. https://jggourmet.com.br/wp-parsing.php
  36. https://hepgul.net/wp-parsing.php
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!