← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Ducktail malware spreading through fake clothing job ads
WHITE AlienVault 2023-11-10 Modified: 2023-11-10
27
IOCs
MEDIUM VOLUME
Ducktail is a malware family that has been active since the second half of 2021 and aims to steal Facebook business accounts.
browser pluginsfacebookmalwaretrojantrojan-stealerducktailgoogle chromedelphiphishing
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
Ducktail
Indicators of Compromise (3 / 27 total)
All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 domain
TYPEINDICATORDESCRIPTIONCREATED
FileHash-MD5 017f6cfa19aa01380c32e3ef0ece27bc MD5 of bde696a0ae901864716320e3111d5aa49cba3b1d9375dce2903f7433a287b2f2 2023-11-10
FileHash-MD5 570b64e953bc1263ac2f005f53569ac0 MD5 of 04dd228d0b088c4116b503c31de22c1746054226a533286bec3a3d0606d73119 2023-11-10
FileHash-MD5 c8c598f4a00c442f3bc7ab944fd601df MD5 of 2b3decf08bf9223fb3e3057b5a477d35e62c0b5795a883ceaa9555ca7c28252f 2023-11-10
References (1)
↗ https://securelist.com/ducktail-fashion-week/111017/