← Back to Pulse Feed
PULSE DETAIL
In our second report on Cobalt Strike, a Defender’s Guide, we look at some of the most common ways that threat actors use the malware to launch their attacks on the networks.
MITRE ATT&CK & Malware Families
Indicators of Compromise (22)
| TYPE | INDICATOR | DESCRIPTION | CREATED | |
|---|---|---|---|---|
| FileHash-MD5 | 51c64c77e60f3980eea90869b68c58a8 | — | 2022-01-25 | |
| FileHash-MD5 | 6734f37431670b3ab4292b8f60f29984 | — | 2022-01-25 | |
| FileHash-MD5 | 72a589da586844d7f0818ce684948eea | — | 2022-01-25 | |
| FileHash-MD5 | a0e9f5d64349fb13191bc781f81f42e1 | — | 2022-01-25 | |
| FileHash-MD5 | b742b407517bac9536a77a7b0fee28e9 | — | 2022-01-25 | |
| FileHash-MD5 | db42e3017c8b6d160751ef3a04f695e7 | — | 2022-01-25 | |
| FileHash-MD5 | e7d705a3286e19ea42f587b344ee6865 | — | 2022-01-25 | |
| FileHash-MD5 | fc54e0d16d9764783542f0146a98b300 | — | 2022-01-25 | |
| domain | checkauj.com | — | 2022-01-25 | |
| domain | cobaltstrike.com | — | 2022-01-25 | |
| domain | defenderupdateav.com | — | 2022-01-25 | |
| domain | gawocag.com | — | 2022-01-25 | |
| domain | infosecppl.store | — | 2022-01-25 | |
| domain | kaslose.com | — | 2022-01-25 | |
| domain | local.org | — | 2022-01-25 | |
| domain | onlineworkercz.com | — | 2022-01-25 | |
| domain | sammitng.com | — | 2022-01-25 | |
| domain | sazoya.com | — | 2022-01-25 | |
| domain | securityupdateav.com | — | 2022-01-25 | |
| domain | whatever.com | — | 2022-01-25 | |
| domain | windowsupdatesc.com | — | 2022-01-25 | |
| domain | yawero.com | — | 2022-01-25 |