← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Operation Buhtrap
WHITE AlienVault 2015-04-09 Modified: 2017-08-24
25
IOCs
MEDIUM VOLUME
Indicators of Compromise (25)
All FileHash-SHA1 URL hostname CVE YARA
TYPEINDICATORDESCRIPTIONCREATED
FileHash-SHA1 9d081716e83c3075b2c80bb8806a257eed35929c 2017-08-24
FileHash-SHA1 cac0b41ef7eedcd3a8a5f83f7424c426ca05925c 2017-08-24
FileHash-SHA1 3a643be0cea73084c6e4e6fe5dd3626e7f54e9ce 2017-08-24
FileHash-SHA1 81b15a774c2fe146aeebaf9c10a5b907e38cdd26 2017-08-24
FileHash-SHA1 b29e9611f081197f273c475c5d185d774b2ca3d2 2017-08-24
FileHash-SHA1 64b79c92388244a8145bb786ba5f6b7d168fe620 2017-08-24
FileHash-SHA1 ba8168c0b69d345098ebc1c3b7c90ca28097e4ff 2017-08-24
URL http://library.source-forge.info/cab/cabinstal.cab 2017-08-24
URL http://playback.savefrom.biz/video/video1.cab 2017-08-24
URL http://playback.savefrom.biz/video/video_1 2017-08-24
URL http://library.source-forge.info/cab/cabinstal3.cab 2017-08-24
URL http://new.pikabu-story.com/file/mega.cab 2017-08-24
URL http://new.pikabu-story.com/file/file1.cab 2017-08-24
URL http://download.sendspace.biz/file/install.cab 2017-08-24
URL http://getdownloadsfile.com/file/new1.cab 2017-08-24
URL http://download.sendspace.biz/file/l.cab 2017-08-24
hostname topic.buhgalter-info.com 2017-08-24
hostname rss.mercurynews.biz 2017-08-24
hostname balans2w.balans2.com 2017-08-24
hostname forum.buhonline.info 2017-08-24
hostname store.kontur-expres.com 2017-08-24
hostname help.b-kontur.org 2017-08-24
CVE CVE-2012-0158 2017-08-24
CVE CVE-2013-3660 2017-08-24
YARA afb1a838b028133de2e69b6b24cc85997e632881 2017-08-24
References (1)
↗ http://www.welivesecurity.com/2015/04/09/operation-buhtrap/