← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
ZINC weaponizing open-source software | Microsoft Security Blog
WHITE Tr1sa111 2023-09-20 Modified: 2023-10-20
40
IOCs
MEDIUM VOLUME
zincputtymicrosoftsumatra pdfkittydll searchtightvnc viewerlinkedinwhatsappreaderzetanilejunepassdefenderratsfoggybrasstwitteraprildefenseblindingcanthemidavmprotectdailywin64look
Indicators of Compromise (40)
All CVE FileHash-MD5 FileHash-SHA1 FileHash-SHA256 URL domain hostname
TYPEINDICATORDESCRIPTIONCREATED
CVE CVE-2023-23397 2023-09-20
FileHash-MD5 05b6f459be513bf6120e9b2b85f6c844 MD5 of e1ecf0f7bd90553baaa83dcdc177e1d2b20d6ee5520f5d9b44cdf59389432b10 2023-09-20
FileHash-MD5 0ce1241a44557aa438f27bc6d4aca246 2023-09-20
FileHash-MD5 3bec8f7a322d642c4429bdbd7ee790bf MD5 of 63cddab76e9d63e3cbea421b607342735d924e462c40f3917b1b5fbdf8d4a20d 2023-09-20
FileHash-MD5 5874d714fc2c5f32897be9380ff4e937 MD5 of 37e30dc2faaabaf93f0539ffbde032461ab63a2c242fbe6e1f60a22344c8a334 2023-09-20
FileHash-MD5 7dd500334e81a25bd8eb2201f5c24604 MD5 of 14f736b7df6a35c29eaed82a47fc0a248684960aa8f2222b5ab8cdad28ead745 2023-09-20
FileHash-MD5 8368bb5c714202b27d7c493c9c0306d7 MD5 of 1492fa04475b89484b5b0a02e6ba3e52544c264c294b57210404b96b65e63266 2023-09-20
FileHash-MD5 84cd4d896748e2d52e2e22d1a4b9ee46 MD5 of c5a470cdf6f57125a8671f6b8843149cc78ccbc1a7bc615f34b23d9f241312bf 2023-09-20
FileHash-MD5 9a011ba73a8bad6d8dfa91abb9256589 MD5 of 71beb4252e93291c7b14dfcb4cbb5d58144a76181fbe4aab3592121a3dbd9c55 2023-09-20
FileHash-MD5 c3a9b30b6a313f289297c9a36730db6d 2023-09-20
FileHash-MD5 c650b716f9eb0bd6b92b0784719081cd MD5 of aaad412aeb0f98c2c27bb817682f08673902a48b65213091534f96fe6f5494d9 2023-09-20
FileHash-SHA1 04037ff2c6e6b99643f023817f906c791dcb3ef8 SHA1 of c5a470cdf6f57125a8671f6b8843149cc78ccbc1a7bc615f34b23d9f241312bf 2023-09-20
FileHash-SHA1 114d8aa1940d90b9a98f37a10428ffff0d786d64 SHA1 of 63cddab76e9d63e3cbea421b607342735d924e462c40f3917b1b5fbdf8d4a20d 2023-09-20
FileHash-SHA1 165c47c85828a6f987ead5a6a53ff4f175735a1f SHA1 of 1492fa04475b89484b5b0a02e6ba3e52544c264c294b57210404b96b65e63266 2023-09-20
FileHash-SHA1 239f4f33e428fe919be34c7cb090ff6e237e0d49 SHA1 of aaad412aeb0f98c2c27bb817682f08673902a48b65213091534f96fe6f5494d9 2023-09-20
FileHash-SHA1 4d1539edcc25a2a66246799982fb8d4030f7f05b SHA1 of 14f736b7df6a35c29eaed82a47fc0a248684960aa8f2222b5ab8cdad28ead745 2023-09-20
FileHash-SHA1 56dddfda80d3eb6d6cd3f0531719cf9fac5abf4a SHA1 of e1ecf0f7bd90553baaa83dcdc177e1d2b20d6ee5520f5d9b44cdf59389432b10 2023-09-20
FileHash-SHA1 8acd444d5842a28f4c0f77630590f08c448f3131 SHA1 of 71beb4252e93291c7b14dfcb4cbb5d58144a76181fbe4aab3592121a3dbd9c55 2023-09-20
FileHash-SHA1 93563c9411a34502769af9c79181343a6405f928 SHA1 of 37e30dc2faaabaf93f0539ffbde032461ab63a2c242fbe6e1f60a22344c8a334 2023-09-20
FileHash-SHA256 1492fa04475b89484b5b0a02e6ba3e52544c264c294b57210404b96b65e63266 2023-09-20
FileHash-SHA256 14f736b7df6a35c29eaed82a47fc0a248684960aa8f2222b5ab8cdad28ead745 2023-09-20
FileHash-SHA256 37e30dc2faaabaf93f0539ffbde032461ab63a2c242fbe6e1f60a22344c8a334 2023-09-20
FileHash-SHA256 63cddab76e9d63e3cbea421b607342735d924e462c40f3917b1b5fbdf8d4a20d 2023-09-20
FileHash-SHA256 71beb4252e93291c7b14dfcb4cbb5d58144a76181fbe4aab3592121a3dbd9c55 2023-09-20
FileHash-SHA256 aaad412aeb0f98c2c27bb817682f08673902a48b65213091534f96fe6f5494d9 2023-09-20
FileHash-SHA256 c5a470cdf6f57125a8671f6b8843149cc78ccbc1a7bc615f34b23d9f241312bf 2023-09-20
FileHash-SHA256 e1ecf0f7bd90553baaa83dcdc177e1d2b20d6ee5520f5d9b44cdf59389432b10 2023-09-20
URL http://cats.runtimerec.com/db/dbconn.php 2023-09-20
URL http://elite4print.com/support/support.asp 2023-09-20
URL http://hurricanepub.com/include/include.php 2023-09-20
URL http://olidhealth.com/wp-includes/php-compat/compat.php 2023-09-20
URL http://recruitment.raystechserv.com/lib/artichow/BarPlotDashboard.object.php 2023-09-20
URL http://turnscor.com/wp-includes/contacts.php 2023-09-20
domain elite4print.com 2023-09-20
domain hurricanepub.com 2023-09-20
domain olidhealth.com 2023-09-20
domain turnscor.com 2023-09-20
hostname cats.runtimerec.com 2023-09-20
hostname recruitment.raystechserv.com 2023-09-20
hostname www.elite4print.com 2023-09-20
References (1)
↗ https://www.microsoft.com/en-us/security/blog/2022/09/29/zinc-weaponizing-open-source-software/?ranMID=46137&ranEAID=je6NUbpObpQ&ranSiteID=je6NUbpObpQ-c.Fjj4H8riK2h6MbDyvZ3A&epi=je6NUbpObpQ-c.Fjj4H8riK2h6MbDyvZ3A&irgwc=1&OCID=AIDcmm549zy227_aff_7792_1243925&tduid=%28ir__1jzmmrmv2skfd09mw9hoedxrnv2xbzpdmhhcftum00%29%287792%29%281243925%29%28je6NUbpObpQ-c.Fjj4H8riK2h6MbDyvZ3A%29%28%29&irclickid=_1jzmmrmv2skfd09mw9hoedxrnv2xbzpdmhhcftum00