← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
BHUNT Stealer
WHITE demoextraa 2022-01-23 Modified: 2022-01-23
13
IOCs
MEDIUM VOLUME
A whitepaper on BHUNT Stealer, an attack on cryptocurrency wallets, has been published by the security firm Bitdefender, which provides security and security software for the Bitcoin and other crypto currencies.
bhuntredline
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
BHUNT Redline
Indicators of Compromise (13)
All URL FileHash-MD5 FileHash-SHA1 FileHash-SHA256 domain hostname
TYPEINDICATORDESCRIPTIONCREATED
URL https://back.engineering/17/05/2021/ 2022-01-23
URL https://back.engineering/21/06/2021/ 2022-01-23
URL https://vmpsoft.com/ 2022-01-23
FileHash-MD5 4d4a0052d093cc743db0776e04f7e449 2022-01-23
FileHash-SHA1 1fb59784d60d0576d4b6b9ef7a92bc12fefe9c0e SHA1 of 4d4a0052d093cc743db0776e04f7e449 2022-01-23
FileHash-SHA256 835f2faeb695e207be02b9d8f840a63e7a085dbdc6fcc0411a900c518048e3b1 SHA256 of 4d4a0052d093cc743db0776e04f7e449 2022-01-23
URL http://hopto.org/ifo.php 2022-01-23
URL http://minecraftsquid.hopto.org/ifo.php 2022-01-23
URL https://redcanary.com/blog/kmspico-cryptbot/ 2022-01-23
domain back.engineering 2022-01-23
domain redcanary.com 2022-01-23
domain vmpsoft.com 2022-01-23
hostname minecraftsquid.hopto.org 2022-01-23
References (1)
↗ https://samples.vx-underground.org/samples/Families/BHUNTStealer/Paper/Bitdefender-PR-Whitepaper-CyberWallet-creat5874-en-EN.pdf