← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
ESET takes part in global operation to disrupt Zloader botnets | WeLiveSecurity
WHITE mohdrennis 2022-04-17 Modified: 2022-04-17
102
IOCs
HIGH VOLUME
Zloader is one of the world’s most dangerous banking trojan families, and ESET researchers have been closely monitoring its activity and evolution since it was announced and advertised in underground forums.
zloaderzbotcobalt strikehodiadinkakyursnifhnlqaophmphladumhognatera agentfigureaitbeset researchcommandesetmicrosoftnovemberrc4 keyjunesilentfebruaryloaderdarksideraccoonaprilteamviewerexecutionandroid
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
Zloader Zbot KY NKA ADI HODI Cobalt Strike HOGN ADUM PHL PHM AO HNLQ Ursnif
Indicators of Compromise (17 / 102 total)
All URL CVE FileHash-MD5 FileHash-SHA1 FileHash-SHA256 domain email hostname
TYPEINDICATORDESCRIPTIONCREATED
FileHash-SHA1 23d38e876772a4e28f1b8b6aaf03e18c7cfe5757 2022-04-17
FileHash-SHA1 30d8ba32daf9e18e9e3ce564fc117a2faf738405 2022-04-17
FileHash-SHA1 33fd41e6fd2ccf3dfb0fcb90eb7f27e5eab2a0b3 2022-04-17
FileHash-SHA1 3a80a49efaac5d839400e4fb8f803243fb39a513 2022-04-17
FileHash-SHA1 462e242ef2e6bad389dab845c68dd41493f91c89 2022-04-17
FileHash-SHA1 4858bc02452a266ea3e1a0dd84a31fa050134fb8 2022-04-17
FileHash-SHA1 5a4e5ee60cb674b2bfcd583ee3641d7825d78221 2022-04-17
FileHash-SHA1 5aa2f377c73a0e73e7e81a606ca35bc07331ef51 2022-04-17
FileHash-SHA1 9d3e6b2f91547d891f0716004358a8952479c14d 2022-04-17
FileHash-SHA1 a187d9c0b4bdb4d0b5c1d2bdbcb65090dcee5d8c 2022-04-17
FileHash-SHA1 bd989516f902c0b4aff7bcf32db511452355d7c5 2022-04-17
FileHash-SHA1 beab91a74563df8049a894d5a2542dd8843553c2 2022-04-17
FileHash-SHA1 e4274681989347fabb22050a5ad14fe66ffdc000 2022-04-17
FileHash-SHA1 e7d7be1f1fe04f6708efb8f0f258471d856f8f8f 2022-04-17
FileHash-SHA1 f3b3cf03801527c24f9059f475a9d87e5392dae9 2022-04-17
FileHash-SHA1 f4879eb2c159c4e73139d1ac5d5c8862af8f1719 2022-04-17
FileHash-SHA1 fa1db6808d4b4d58de6f7798a807dd4bea5b9bf7 2022-04-17
References (1)
↗ https://www.welivesecurity.com/2022/04/13/eset-takes-part-global-operation-disrupt-zloader-botnets/