← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
AveMaria IOCs
WHITE brazen.fox.thirteen 2022-06-08 Modified: 2022-06-08
15
IOCs
MEDIUM VOLUME
A sample of malware released by the UK-based security firm, Threat Intelligence, has been found at a site in the United States, where it is believed to have been used to distribute malware.
sha1 hashmd5 hashfile namefile sizemime typeno datavendor threatformbookx modiloaderetd mayremcosratdownloadavemariarat
Indicators of Compromise (15)
All hostname FileHash-MD5 FileHash-SHA1 FileHash-SHA256
TYPEINDICATORDESCRIPTIONCREATED
hostname subwayhost2022.ddns.net 2022-06-08
FileHash-MD5 04de96319b54d784ab6eaeb8e04432ad MD5 of a8c584bb4f5b897ab098cbb0eb0e26c07af2b196 2022-06-08
FileHash-MD5 631199566b2cb34fcfb225195314af86 MD5 of 33045481d773c9a644f5aad8532781f01b699b9d 2022-06-08
FileHash-MD5 ad107a6b4ebc14328624a8ea526351c4 MD5 of 861b0476e3c0a81d6688a9aa9b198146aebb34a3 2022-06-08
FileHash-MD5 b1718c776a1f8ed52bf65d4f9f6061fe MD5 of a21ea191e278ac2bf04b2a6b7f8b7ed30908f505 2022-06-08
FileHash-MD5 d3bc99537672e52a7d488f94b36393f9 2022-06-08
FileHash-SHA1 33045481d773c9a644f5aad8532781f01b699b9d 2022-06-08
FileHash-SHA1 861b0476e3c0a81d6688a9aa9b198146aebb34a3 2022-06-08
FileHash-SHA1 a21ea191e278ac2bf04b2a6b7f8b7ed30908f505 2022-06-08
FileHash-SHA1 a8c584bb4f5b897ab098cbb0eb0e26c07af2b196 2022-06-08
FileHash-SHA256 2474a617fc640542b91768bb951972d7cabb24e5b190e30b692bf832becbb9c1 SHA256 of a21ea191e278ac2bf04b2a6b7f8b7ed30908f505 2022-06-08
FileHash-SHA256 8277ded95ca557ee07ed92ce3460f4f9f28aa5e87486837968f4f893efa42e7c SHA256 of 861b0476e3c0a81d6688a9aa9b198146aebb34a3 2022-06-08
FileHash-SHA256 bd59868d882d19d1c1ba6ffc3469b83f91f44feffb14e38a10f675dc3985f3c1 SHA256 of 33045481d773c9a644f5aad8532781f01b699b9d 2022-06-08
FileHash-SHA256 dc9926a30776d5c36c52b7120ee40e03d0f3781e868920fa199032437cdb4280 SHA256 of a8c584bb4f5b897ab098cbb0eb0e26c07af2b196 2022-06-08
hostname moseslogs2022.ddns.net 2022-06-08
References (1)
↗ https://twitter.com/JAMESWT_MHT/status/1534433940521594880