← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Facebook Advertising Spreads Novel Malware Variant
WHITE CyberHunter_NL 2024-02-08 Modified: 2024-03-09
150
IOCs
HIGH VOLUME
A report by Trustwave SpiderLabs on a novel type of malware discovered during an investigation into a Facebook job advertisement, and how the malware is used to steal credentials and crypto wallets, is published.
uncovers ov3r_stealercobalt strikenovelphemedronespreads novel
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
UNCOVERS OV3R_STEALER Cobalt Strike Novel Phemedrone Spreads Novel
Indicators of Compromise (52 / 150 total)
All CVE FileHash-MD5 FileHash-SHA1 FileHash-SHA256 URL domain email
TYPEINDICATORDESCRIPTIONCREATED
FileHash-MD5 010fb68e7589b24c1da35f9533f84bf8 MD5 of e6020d7212bb1661019c6bcb57118a244af81f6473187551b20c9436462402fe 2024-02-08
FileHash-MD5 02bc92c06bd8bef8d15c410fa457b89d 2024-02-08
FileHash-MD5 060d92492f06174c81d1707bb5961c35 MD5 of ad513d2cba6cc82a50ee6531b275e937480d8fee20af2b4f41da5f88e408a4e9 2024-02-08
FileHash-MD5 08c16f5196aaeacdcc46f10e82e7c47b 2024-02-08
FileHash-MD5 092566470d8f8ffd8e0e70c34229882e 2024-02-08
FileHash-MD5 0c33eafc7d9cb3abf6048ca98a5d2db9 2024-02-08
FileHash-MD5 1006ad7046f065da16102c3cb5e6bcb9 MD5 of ff44e502bd5ea36e17b3fc39b480e65971b36002f27fb441e4acadd6bf604a20 2024-02-08
FileHash-MD5 1210c904bb5986a63605a29cc54c47d9 MD5 of 22236e50b5f700f5606788dcd5ab1fb69ee092e8dffdd783ac3cab47f1f445ab 2024-02-08
FileHash-MD5 15a38db72e97b9f5b5a5737dd23571bd 2024-02-08
FileHash-MD5 24da08be82f439c3230d0b16b275902f MD5 of f2814a4b3796fb44045c33b9d0d9972bf40478e5bc74b587486900c6cfa02f3d 2024-02-08
FileHash-MD5 3b33cead1847d254bb4d0e614c32a9b8 MD5 of b37ec923451dd15a0f68df0b392b0f1b243fe50c709de9e574ac14cf6fabdd53 2024-02-08
FileHash-MD5 3c490e342c30710834f21cbdadf80897 2024-02-08
FileHash-MD5 43412a035847649c4fb2daa6de336d86 MD5 of 1d0f042818c521d5606501ebd47a048c8de07f2e9c705c4e1e0e3e39728d286f 2024-02-08
FileHash-MD5 477c0ed261ad6db5eb250b0efccf963a MD5 of a841cd16062702462fdffdd7eef9fc3d88cde65d19c8d5a384e33066d65f9424 2024-02-08
FileHash-MD5 48a2fca4599cd29531cb62cfb5534478 MD5 of 6bd8449de1e1bdd62a86284ed17266949654f758e00e10d8cd59ec4d233c32e5 2024-02-08
FileHash-MD5 4a328bdd8568261a14ebfff4eb6ffd2f 2024-02-08
FileHash-MD5 4afa1df89ec91d1e81020b9f42da43dc 2024-02-08
FileHash-MD5 534f90adf294faf90a293abfc4ac2f26 MD5 of 0df85ed4877940f4a6987790901734f8eb74cb97672773ec232cbb0ea76db681 2024-02-08
FileHash-MD5 58c966c06d908017264506dbe2dd7e45 MD5 of 69941417f26c207f7cbbbe36ce8b4d976640a3d7f407d316932428e427f1980b 2024-02-08
FileHash-MD5 5c2dc3e1af236cafc798c517414be70d MD5 of 5ecad303475e180f8879871d8571d1a7eeb99e0b3c63cc77fdd02cb9b8c51211 2024-02-08
FileHash-MD5 5d39a9e99b58faf99cae275723c9168e MD5 of 7c0a1e11610805bd187ef6e395c8fa31c1ae756962e26cdbff704ce54b9e678a 2024-02-08
FileHash-MD5 65367d9e4f93700cdeab9af35559220e MD5 of 1433efd142007ce809aff5b057810f5a1919ea1e3ff740ff0fcc2fc729226be5 2024-02-08
FileHash-MD5 739ede4370b88e60a1d872a1735f3923 2024-02-08
FileHash-MD5 7f6fff7a288e53c8d2400140eb88d0b7 2024-02-08
FileHash-MD5 84ecef7410ea267b103f21ad14bc7fb0 MD5 of b7f53c507a1aa4254b66a883285e27b42d65ea4ea4206fe674e0d03738f52141 2024-02-08
FileHash-MD5 8791b4003e5ae1cab92600667b2a761b MD5 of e2d19a23b19a07d35d16990e78c5cfaa3dd97b9ce92201f4db18a7da95fe6ff8 2024-02-08
FileHash-MD5 88e38e212591ffaf3c3400b22b8988d6 2024-02-08
FileHash-MD5 8904d6ad569095ef6fb1dab561edc420 2024-02-08
FileHash-MD5 8ab90b8cb6e7b2f04e132cc58a2f5b99 MD5 of c3bfaa1f52abdbb673d83af67090112dfdfe9ea8ff7a613f62bd48bace205f75 2024-02-08
FileHash-MD5 905430fd2cba63713c5d5f625bc6fe5f 2024-02-08
FileHash-MD5 906509861bd74330c15f3c669b0a4c04 MD5 of 4da33c7fe62f71962913d7b40ff76aff9f1586e57db707b3d6b88162c051f402 2024-02-08
FileHash-MD5 9cbed436d083dd76efcdfee8cbb4bafa MD5 of 61cb5bd49e06374fc7e741b3bea2f0753f46b8ac3e1af2c9d3fd97f76452713d 2024-02-08
FileHash-MD5 a7de3969e3f09f2b076d67a3daf9edad MD5 of fdebccc2249b080b79dbee888df1a1fa4c34b8947d8d70efbfe6dc3464b26777 2024-02-08
FileHash-MD5 a8fd240af0ab05e5496afb0d6df0223c MD5 of 70c23213096457df852b66443d9a632e66816e023fdf05a93b9087ffb753d916 2024-02-08
FileHash-MD5 af0ce315ea226f4b07d7e3fac1b69846 2024-02-08
FileHash-MD5 b042b2a8981a94b7afe680d94808e9f8 MD5 of c6765d92e540af845b3cbc4caa4f9e9d00d5003a36c9cb548ea79bb14c7e8f66 2024-02-08
FileHash-MD5 b6627a1ba0ff5b3352990518bda0f2d5 MD5 of 4ae28a44c38edc516e449ddd269b5aa9924d549d763773dcd312b48fe6bb91ab 2024-02-08
FileHash-MD5 b8e3dbe739e9f09ebb5fd20740c0b7ca MD5 of c9743e7ffb6f6978f08f86e970ddb82e24920d266b32bd242254fbf51abfe6ce 2024-02-08
FileHash-MD5 bcbce22d8b56f857429a83c40551c8bf 2024-02-08
FileHash-MD5 be4374488e218bf1915395b84d6c07b5 MD5 of 9a96406ae06b703d827fffd1f1ced0781f89ca2af6d5041721e9fbd2647c8430 2024-02-08
FileHash-MD5 c6bfdeed6ebec0917e665349ba4cc83b MD5 of ea9b0dee3b7583ce60bba277e2189acb660284abf6b3b9273b6a60c85b0a5ce3 2024-02-08
FileHash-MD5 c86f71dafb6589dc711dd2bc27373f5a MD5 of 5f1a027f1c1468f93671a4c7fc7b5da00a3c559a9116f5417baa6c1f89550d9f 2024-02-08
FileHash-MD5 c90b04b9184f91575d4f12320b4a65ab MD5 of 568b4b868b225f06bb34da0dc23603c9dedccc2b319353407c814983d5322563 2024-02-08
FileHash-MD5 d06e91a847f4303ca417ec131ac8c038 MD5 of 89caa1568fcff162086dae91e6bd34fd04facba50166ebff800d45a999d0be8b 2024-02-08
FileHash-MD5 e07a3cd4e1d663e2f94baa5d4ff1b28b MD5 of 815b2125d6f0a5d99750614731aaad2c6936a1dc107a969408a88973f35064c0 2024-02-08
FileHash-MD5 eaa6f5129a23cb51029615b68a9ca792 MD5 of 4a36cc607ca5c2acc536510fd1b0ddd43a9403dac168d2420d474611909ed9e6 2024-02-08
FileHash-MD5 ee463be74f3ae743f11a97fd009eef63 MD5 of 4446d5b475ce8aed5244da917ae42b6cb9744ffc4efd766af8e4dee7dd5a3e19 2024-02-08
FileHash-MD5 f424e8b32ca6ad7153f706ed1a0bc0af 2024-02-08
FileHash-MD5 f52c10457c584f1b136fd7922a565c32 2024-02-08
FileHash-MD5 fbf7e29cb108587f5abbf6b7f91a1ddd MD5 of 0c2ccf98694849f898a4170cb46add3cd60b93e568dc300f6c868e38e64a3ba0 2024-02-08
FileHash-MD5 fe7b790b033aa60212249a2c47891041 2024-02-08
FileHash-MD5 ff5ca0f3559c69326ac32d191c4e2380 MD5 of ccd19ef6e81e936fc944ebafaefd2ad99ccd11dd15fbc7d3460726bb38237595 2024-02-08
References (1)
↗ https://www.trustwave.com/hubfs/Web/Library/Documents_pdf/FaceBook_Ad_Spreads_Novel_Malware.pdf