← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Hackers Exploits CrowdStrike Issues to Attack Windows System With RemCos Malware
WHITE CyberHunter_NL 2024-07-22 Modified: 2024-08-21
40
IOCs
MEDIUM VOLUME
Security firm CrowdStrike has reported that hackers have exploited a content update for its Falcon sensor to attack Windows operating systems with RemCos malware from July 20, 2024. the first such attack in the world.
crowdstrikewindowslatamzip archivefalconhijackloaderremcos payloadjulyfalcon sensorremcosphishing
MITRE ATT&CK & Malware Families
MALWARE FAMILIES
HijackLoader RemCos
Indicators of Compromise (3 / 40 total)
All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 domain hostname
TYPEINDICATORDESCRIPTIONCREATED
FileHash-MD5 1e84736efce206dc973acbc16540d3e5 MD5 of c44506fe6e1ede5a104008755abf5b6ace51f1a84ad656a2dccc7f2c39c0eca2 2024-07-22
FileHash-MD5 371c165e3e3c1a000051b78d7b0e7e79 MD5 of 5ae3838d77c2102766538f783d0a4b4205e7d2cdba4e0ad2ab332dc8ab32fea9 2024-07-22
FileHash-MD5 da03ebd2a8448f53d1bd9e16fc903168 MD5 of d6d5ff8e9dc6d2b195a6715280c2f1ba471048a7ce68d256040672b801fda0ea 2024-07-22
References (1)
↗ https://cybersecuritynews.com/threat-actor-exploits-crowdstrike-falcon-sensor-issues/