← Back to Pulse Feed
PULSE DETAIL
Researchers observed in early April a Grandoreiro malware campaign targeting bank users from Brazil, Spain, and Mexico. The campaign exploits the tax season in target countries by sending out tax-themed phishing emails.
MITRE ATT&CK & Malware Families
Indicators of Compromise (17)
| TYPE | INDICATOR | DESCRIPTION | CREATED | |
|---|---|---|---|---|
| FileHash-MD5 | 72759c77ca4b837fdc3927372b300f56 | MD5 of be3bebab8db0087d92316b5f54b5aaf5f51fbf46 | 2022-05-27 | |
| FileHash-MD5 | 8d7868c9914191945e5e81ac80c5d4bd | MD5 of 5dd0b062dda3991c09e439f0688ba94004573d6e | 2022-05-27 | |
| FileHash-MD5 | cc2c7c9cdd4d7c1904458fdd944b0bb0 | MD5 of aadc8a089d1288e91e6ba9e095d37d30de3bbb18 | 2022-05-27 | |
| FileHash-SHA1 | 1e81d73ff946560692a01c38649227897339dd5a | — | 2022-05-27 | |
| FileHash-SHA1 | 5dd0b062dda3991c09e439f0688ba94004573d6e | — | 2022-05-27 | |
| FileHash-SHA1 | 7b89ee046f849392a4bf8747ca789f40964ff429 | — | 2022-05-27 | |
| FileHash-SHA1 | aadc8a089d1288e91e6ba9e095d37d30de3bbb18 | — | 2022-05-27 | |
| FileHash-SHA1 | be3bebab8db0087d92316b5f54b5aaf5f51fbf46 | — | 2022-05-27 | |
| FileHash-SHA1 | ff908727cc1b5335e541fbcd80a327565f308bc7 | — | 2022-05-27 | |
| FileHash-SHA256 | 0283eebeda2c6554a39d77ab8b1507a1d6393e5a04f7a4de0d2ed9ab5c63f648 | SHA256 of be3bebab8db0087d92316b5f54b5aaf5f51fbf46 | 2022-05-27 | |
| FileHash-SHA256 | 3f74387ec609daca8ec6a0c5a6986f39853a77ab7c414e6d6f950d285ca51f38 | SHA256 of aadc8a089d1288e91e6ba9e095d37d30de3bbb18 | 2022-05-27 | |
| FileHash-SHA256 | 9428536f635ecadaca9288fa0150e92bdcdac7fe8de03e419e032ab0664c86fa | SHA256 of 5dd0b062dda3991c09e439f0688ba94004573d6e | 2022-05-27 | |
| URL | http://167.114.43.27:4433/mrrrpx2503.zip | — | 2022-05-27 | |
| URL | http://belfaro.com.br/admin/PROCESSO-02028.82655.2019.550.pdf | — | 2022-05-27 | |
| URL | http://belfaro.com.br/admin/nota.php?file=docprocesso27032022.zip | — | 2022-05-27 | |
| domain | belfaro.com.br | — | 2022-05-27 | |
| domain | freedynamicdns.org | — | 2022-05-27 |