Pastebin
API
tools
faq
paste
Login
Sign up
Malware_traffic's Pastebin
333,107
1,763,519
0
9 years ago
Name / Title
Added
Expires
Hits
Comments
Syntax
2020-12-09 (Wednesday) - TA551 (Shathak) Word docs with English template push IcedID
Dec 9th, 2020
Never
15,197
0
None
-
2020-12-07 (Monday) - TA551 (Shathak) Word docs with English template push IcedID
Dec 7th, 2020
Never
12,978
0
None
-
2020-12-02 (Wednesday) through 2020-12-03 (Thursday) - Qakbot (Qbot) infection with Cobalt Strike
Dec 4th, 2020
Never
14,640
0
None
-
2020-11-30 (Monday) TA551 (Shathak) Word docs with English template push IcedID
Nov 30th, 2020
Never
13,652
0
None
-
2020-11-25 (Wednesday) TA551 (Shathak) Word docs with English template push IcedID
Nov 25th, 2020
Never
12,577
0
None
-
2020-11-24 (Tuesday) - TA551 (Shathak) Word docs with English template push IcedID
Nov 24th, 2020
Never
14,539
0
None
-
2020-11-23 (Monday) - ZLoader infection with follow-up malwrae
Nov 23rd, 2020
Never
13,401
0
None
-
2020-11-16 - Fake FedEx email
Nov 16th, 2020
Never
13,232
0
None
-
2020-11-11 (Wednesday) - IcedID from myResume.xlsb
Nov 11th, 2020
Never
13,946
0
None
-
2020-11-11 (Wed) - Qakbot-style spreadsheets with macros that retrieved Trickbot gtag rob3
Nov 11th, 2020
Never
13,513
0
None
-
Attachment passwords from TA551 (Shathak) malspam
Nov 10th, 2020
Never
12,633
0
None
-
2020-11-06 (Friday) - malspam pushing Formbook
Nov 6th, 2020
Never
12,319
0
None
-
2020-11-05 (Thursday) - TA551 (Shathak) Japanese-template Word docs pushing IcedID
Nov 4th, 2020
Never
13,491
0
None
-
2020-11-04 (Wednesday) - TA551 (Shathak) Japanese-template Word docs pushing IcedID
Nov 4th, 2020
Never
12,955
0
None
-
2020-11-03 (Tuesday) - TA551 (Shathak) Japanese-template Word docs pushing IcedID
Nov 3rd, 2020
Never
12,877
0
None
-
2020-10-29 (Thursday) - TA551 (Shathak) Japanese language Word docs with macros for IcedID
Oct 29th, 2020
Never
12,714
0
None
-
2020-10-28 (Wednesday) - TA551 (Shathak) Japanese language Word docs with macros for IcedID
Oct 29th, 2020
Never
13,112
0
None
-
2020-10-27 (Tuesday) - TA551 (Shathak) Japanese-language Word docs with macros for IcedID
Oct 27th, 2020
Never
13,139
0
None
-
2020-10-27 (Tuesday) - Hancitor with Cobalt Strike and unidentified info-stealer
Oct 27th, 2020
Never
15,465
0
None
-
2020-10-20 (Tuesday) - TA551 (shathak) Word docs push IcedID
Oct 21st, 2020
Never
12,421
0
None
-
2020-10-15 (Thursday) - BazaLoader from Google Docs links
Oct 15th, 2020
Never
12,632
0
None
-
2020-10-14 (Wednesday) - TA551 (Shathak) Word docs push IcedID
Oct 14th, 2020
Never
13,397
0
None
-
2020-10-14 (Wednesday) - Emotet malspam example
Oct 14th, 2020
Never
12,334
0
None
-
2020-10-07 (Wednesday) - TA551 (shathak) Word docs push IcedID
Oct 7th, 2020
Never
14,179
0
None
-
2020-10-07 (Wednesday) - Malspam with XLSX attachments pushes Dridex
Oct 7th, 2020
Never
13,553
0
None
-
2020-10-05 (Monday) - Qakbot (Qbot) abc013
Oct 5th, 2020
Never
13,192
0
None
-
2020-10-05 (Monday) DHL-themed malspam pushes Dridex
Oct 5th, 2020
Never
13,414
0
None
-
2020-09-30 - Qakbot malspam example
Sep 30th, 2020
Never
12,541
0
None
-
2020-09-23 (Wednesday) TA551 (Shathak) Word docs pushing IcedID
Sep 23rd, 2020
Never
12,907
0
None
-
2020-09-21 (Monday) TA551 (Shathak) Word docs pushing IcedID
Sep 21st, 2020
Never
12,259
0
None
-
2020-09-17 (Thursday) TA551 (Shathak) Word docs pushing IcedID
Sep 17th, 2020
Never
13,684
0
None
-
2020-09-16 (Wednesday) TA551 (Shathak) Word docs pushing IcedID
Sep 16th, 2020
Never
14,754
0
None
-
2020-09-15 - BazarLoader malware from Google Docs page
Sep 15th, 2020
Never
13,623
0
None
-
2020-09-11 (Friday) - myResume.xls pushes ZLoader (Silent Night)
Sep 11th, 2020
Never
12,945
0
None
-
2020-09-11 (Friday) TA551 (Shathak) Word docs pushing IcedID
Sep 11th, 2020
Never
14,897
0
None
-
2020-09-10 (Thursday) TA551 (Shathak) Word docs pushing IcedID
Sep 10th, 2020
Never
14,988
0
None
-
2020-09-08 (Tuesday) TA551 (Shathak) Word docs pushing IcedID
Sep 8th, 2020
Never
14,377
0
None
-
2020-08-20 - Notes on recent TA551 (shathak) activity
Aug 20th, 2020
Never
12,509
0
None
-
2020-08-20 (Thursday) - TA551 (Shathak) word docs push IcedID
Aug 20th, 2020
Never
13,144
0
None
-
2020-08-18 (Tuesday) - Emotet malspam example
Aug 18th, 2020
Never
11,410
0
None
-
2020-08-17 (Monday) - TA551 (shathak) Word docs with macros for IcedID
Aug 17th, 2020
Never
15,422
0
None
-
2020-08-11 (Tuesday) - TA551 (shathak) Word docs with macros for IcedID
Aug 11th, 2020
Never
15,681
0
None
-
2020-08-10 (Monday) TA551 (shathak) Word docs with macros for IcedID
Aug 10th, 2020
Never
17,256
0
None
-
2020-08-05 - "Campaign 56" on amazonaws
Aug 5th, 2020
Never
18,034
0
None
-
2020-07-30 (Thursday) - TA551 (Shathak) Word docs push IcedID (Bokbot)
Jul 30th, 2020
Never
21,544
0
None
-
2020-07-28 - Password-protected XLS pushes ZLoader
Jul 28th, 2020
Never
18,609
0
None
-
2020-07-28 (Tuesday) - TA551 word docs pushing IcedID (Bokbot)
Jul 28th, 2020
Never
21,640
0
None
-
2020-07-27 (Monday) - TA551 Word docs push IcedID (Bokbot)
Jul 27th, 2020
Never
19,973
0
None
-
2020-07-24 (Friday) TA551 word docs with macros for IcedID
Jul 24th, 2020
Never
24,397
0
None
-
2020-07-23 (Thursday) - TA551 word docs with macros for IcedID
Jul 23rd, 2020
Never
24,697
0
None
-
2020-07-22 (Wed) - Password-protected XLS files push ZLoader
Jul 22nd, 2020
Never
18,184
0
None
-
2020-07-21 (Tuesday) - Word docs pushing IcedID (Bokbot)
Jul 21st, 2020
Never
16,707
0
None
-
2020-07-21 (Tuesday) - Emotet infection with Qakbot
Jul 21st, 2020
Never
17,818
0
None
-
2020-07-20 (Monday) Word docs with macros for IcedID
Jul 20th, 2020
Never
16,364
0
None
-
2020-07-17 (Friday) - Word docs with macros for IcedID
Jul 20th, 2020
Never
15,317
0
None
-
2020-07-17 - Password-protected XLS files
Jul 17th, 2020
Never
15,187
0
None
-
2020-07-16 (Thursday) - Word docs with macros for IcedID
Jul 16th, 2020
Never
14,428
0
None
-
2020-07-16 - Hancitor infection with an info-stealer
Jul 16th, 2020
Never
12,011
0
None
-
2020-07-15 (Wednesday) - Word docs pushing IcedID
Jul 16th, 2020
Never
14,176
0
None
-
2020-07-15 - XLS files for Hancitor
Jul 15th, 2020
Never
13,070
0
None
-
2020-07-08 - Trickbot gtag chil61 from XLS macros
Jul 8th, 2020
Never
12,499
0
None
-
2020-06-30 (Tues) - Valak (soft_sig: mas37) info
Jun 30th, 2020
Never
13,340
0
None
-
2020-06-24 (Wednesday): Valak activity - Soft_sig: mad35
Jun 24th, 2020
Never
13,718
0
None
-
2020-06-23 - Valak (soft_sig: mad34) activity
Jun 23rd, 2020
Never
14,898
0
None
-
2020-06-22 - Valak (mad33) infection with IcedID (Bokbot)
Jun 23rd, 2020
Never
11,908
0
None
-
Trickbot propagation URLs on Tuesday 2020-06-23
Jun 23rd, 2020
Never
12,125
0
None
-
Trickbot propagation URLs on Friday 2020-06-19
Jun 19th, 2020
Never
12,460
0
None
-
2020-06-09 - Recent resume-themed malspam attachments
Jun 9th, 2020
Never
11,438
0
None
-
2020-06-03 - Valak (Soft_sig: mad29)
Jun 4th, 2020
Never
13,027
0
None
-
Trickbot propagation URLs (and EXEs) on Thursday 2020-05-28
May 28th, 2020
Never
13,179
0
None
-
2020-05-22 - malspam with zip files pushes Valak with IcedID
May 22nd, 2020
Never
15,191
0
None
-
2020-05-19 - Qakbot (Qbot) spx122 zip archive URLs
May 19th, 2020
Never
13,444
0
None
-
2020-05-18 - Qakbot (Qbot) zip archive URLs
May 18th, 2020
Never
13,970
0
None
-
2020-05-12 - Word docs with macros for Valak
May 13th, 2020
Never
12,920
0
None
-
2020-05-06 (Wednesday) - Qakbot (Qbot) spx114 info
May 6th, 2020
Never
14,388
0
None
-
2020-05-06 - XLS attachments from malspam pushing Dridex
May 6th, 2020
Never
13,355
0
None
-
2020-05-05: Links to zip files for Qakbot spx112 & spx113
May 5th, 2020
Never
13,004
0
None
-
2020-05-04 (Monday) - malspam with XLS file pushing Dridex
May 4th, 2020
Never
12,965
0
None
-
2020-05-01 - XLS file w/ macros pushes Loader EXE --> IcedID
May 1st, 2020
Never
12,419
0
None
-
2020-04-30 - Link-based malspam pushing Dridex - 2 examples
Apr 30th, 2020
Never
12,820
0
None
-
2020-04-27 - Malspam with password-protected zip archives
Apr 28th, 2020
Never
12,759
0
None
-
2020-04-23 - URLs/hashes for Qakbot (Qbot) spx103 files
Apr 23rd, 2020
Never
13,653
0
None
-
2020-04-22 - URLs/hashes for Qakbot (Qbot) spx102 files
Apr 22nd, 2020
Never
13,338
0
None
-
2020-04-21 - URLs/hashes for Qakbot (Qbot) spx101 files
Apr 21st, 2020
Never
12,791
0
None
-
Trickbot EXE files from ".png" URLs on Monday 2020-04-20
Apr 20th, 2020
Never
14,014
0
None
-
2020-04-20 - URLs/hashes for Qakbot (Qbot) spx100 files
Apr 20th, 2020
Never
14,210
0
None
-
2020-04-17 - URLs/hashes for Qakbot (Qbot) spx99 files
Apr 17th, 2020
Never
13,197
0
None
-
2020-04-16 - URLs/hashes for Qakbot (Qbot) spx98 files
Apr 16th, 2020
Never
15,046
0
None
-
2020-04-15 - URLs/hashes for Qakbot (Qbot) spx97 files
Apr 15th, 2020
Never
12,600
0
None
-
2020-04-14 - URLs/hashes for Qakbot (Qbot) spx96 zip files
Apr 14th, 2020
Never
12,877
0
None
-
2020-04-13 - URLs/hashes for Qakbot (Qbot) spx95 zip files
Apr 13th, 2020
Never
13,581
0
None
-
Trickbot EXE files from ".png" URLs on Friday 2020-04-10
Apr 10th, 2020
Never
12,230
0
None
-
2020-04-10 - Qakbot (Qbot) spx94 - 30 URLs for zip archives
Apr 10th, 2020
Never
12,068
0
None
-
2020-04-10 - malpsam pushes GuLodader/NanoCore RAT
Apr 10th, 2020
Never
15,201
0
None
-
URLs with "/extend/" for Qakbot (Qbot) starting 2020-04-09
Apr 10th, 2020
Never
12,689
0
None
-
2020-04-08: OneDrive links to zip archives for Qakbot (Qbot)
Apr 9th, 2020
Never
14,671
0
None
-
URLs from VT on 2020-04-08 for Qakbot/Qbot zip archives
Apr 8th, 2020
Never
14,326
0
None
-
Trickbot EXE files from ".png" URLs on Wednesday 2020-04-01
Apr 1st, 2020
Never
12,820
0
None
-
2020-03-30 - malspam pushing kpot stealer
Mar 30th, 2020
Never
7,260
0
None
-
2020-03-17 - FedEx themed malspam pushes Dridex
Mar 18th, 2020
Never
4,586
0
None
-
1
2
3
Oldest
Public Pastes
WEB-SCRAPING-ALL-ELEMENTS2.py
Python | 8 min ago | 6.45 KB
π€ G2A.com Free Gift Card Guide Mar 2024 FIX π€
GetText | 17 min ago | 0.39 KB
Eventbrite Spam
HTML | 28 min ago | 25.93 KB
ιζ¨δΈθ΅·ηοΌδΊε£δ»€
JavaScript | 34 min ago | 0.81 KB
SpeakFriend Hub
Lua | 50 min ago | 1.00 KB
SpeakFriend Mobile
Lua | 50 min ago | 1.11 KB
RegExps. Simple Python
Python | 57 min ago | 1.40 KB
Pastes.io - #1 Pastebin Alternative
PHP | 60 min ago | 0.84 KB
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the
Cookies Policy
.
OK, I Understand
Not a member of Pastebin yet?
Sign Up
, it unlocks many cool features!