← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
CloudScout: Evasive Panda scouting cloud services
WHITE CyberHunter_NL 2024-10-29 Modified: 2024-11-28
11
IOCs
MEDIUM VOLUME
A new toolset used by China-aligned cyber-espionage group Evasive Panda is able to access data stored in public cloud services, according to ESET Research, a security consultancy based in Taiwan.
strongcloudscoutmgbotpandafiguregmckgoogle driveeset researchtaiwannightdoorcodeexecutionrocktipsandroidfebruarytwitterfacebookservicefirstpersistenceweb accesscloudscout gmail
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
Web Access CloudScout Gmail Google Drive
Indicators of Compromise (11)
All FileHash-MD5 FileHash-SHA1 FileHash-SHA256
TYPEINDICATORDESCRIPTIONCREATED
FileHash-MD5 be17d056039267973e36043c678a5d56 MD5 of 84f6b9f13cdcd8d9d15d5820536bc878cd89b3c8 2024-10-29
FileHash-MD5 c02b6a7cc4f4da2d6956049b90ff53ba MD5 of b3556d1052bf5432d39a6068ccf00d8c318af146 2024-10-29
FileHash-SHA1 4a5bcdaac0bc315edd00bb1fccd1322737bcbeeb 2024-10-29
FileHash-SHA1 621e2b50a979d77ba3f271fab94326cccbc009b4 2024-10-29
FileHash-SHA1 67028aeb095189fdf18b2d7b775b62366ef224a9 2024-10-29
FileHash-SHA1 84f6b9f13cdcd8d9d15d5820536bc878cd89b3c8 2024-10-29
FileHash-SHA1 93c1c8ad2af64d0e4c132f067d369ecbebae00b7 2024-10-29
FileHash-SHA1 b3556d1052bf5432d39a6068ccf00d8c318af146 2024-10-29
FileHash-SHA1 c058f9fe91293040c8b0908d3dafc80f89d2e38b 2024-10-29
FileHash-SHA256 73d50eabd0b377e22210490a06ecf2441191558d97ce14ba79517c0e7696318b SHA256 of b3556d1052bf5432d39a6068ccf00d8c318af146 2024-10-29
FileHash-SHA256 d7468510a0123f4ecea9cb7c1636a024d3ab96cc856439a924349b00618b87ae SHA256 of 84f6b9f13cdcd8d9d15d5820536bc878cd89b3c8 2024-10-29
References (1)
↗ https://www.welivesecurity.com/en/eset-research/cloudscout-evasive-panda-scouting-cloud-services/