← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Hackers Exploits CrowdStrike Issues to Attack Windows System With RemCos Malware
WHITE CyberHunter_NL 2024-07-22 Modified: 2024-08-21
40
IOCs
MEDIUM VOLUME
Security firm CrowdStrike has reported that hackers have exploited a content update for its Falcon sensor to attack Windows operating systems with RemCos malware from July 20, 2024. the first such attack in the world.
crowdstrikewindowslatamzip archivefalconhijackloaderremcos payloadjulyfalcon sensorremcosphishing
MITRE ATT&CK & Malware Families
MALWARE FAMILIES
HijackLoader RemCos
Indicators of Compromise (3 / 40 total)
All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 domain hostname
TYPEINDICATORDESCRIPTIONCREATED
FileHash-SHA1 2a2ecbbd4840c486b3507a18307369336ec5a1aa SHA1 of 5ae3838d77c2102766538f783d0a4b4205e7d2cdba4e0ad2ab332dc8ab32fea9 2024-07-22
FileHash-SHA1 889b4f487d8bba6af6ff6eb7f5afd74957586c49 SHA1 of d6d5ff8e9dc6d2b195a6715280c2f1ba471048a7ce68d256040672b801fda0ea 2024-07-22
FileHash-SHA1 fef212ec979f2fe2f48641160aadeb86b83f7b35 SHA1 of c44506fe6e1ede5a104008755abf5b6ace51f1a84ad656a2dccc7f2c39c0eca2 2024-07-22
References (1)
↗ https://cybersecuritynews.com/threat-actor-exploits-crowdstrike-falcon-sensor-issues/