← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Threat actors use copyright infringement phishing lure to deploy infostealers
WHITE CyberHunter_NL 2024-11-08 Modified: 2024-12-08
104
IOCs
HIGH VOLUME
A round-up of the latest research from security firm Cisco Talos, as part of its annual security review, on the subject of copyright infringement and cyber-security, and the threat posed by an unknown threat actor.
threat spotlightthreatsredactedlummac2cisco securerar fileinformationtaiwaneps filelummac2 stealerrhadamanthysgooglefacebookvirustotalumbrellamedusalocker
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
MedusaLocker LummaC2
Indicators of Compromise (104)
All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 URL domain
TYPEINDICATORDESCRIPTIONCREATED
FileHash-MD5 03ed5c2b3a8b34f8c7ef110f78926c42 MD5 of b5f1554f61873bd6777812f7d2578fc8f5c6d48d4901bdea3d07673698d306d2 2024-11-08
FileHash-MD5 10d0760d0abf3c38ad742d34d917748e MD5 of 2175a1f8f798b0daf05965eb860166c65a8d227d1309cd3545dba3174fd2292f 2024-11-08
FileHash-MD5 126fd2677b80abeeba9c1adca08d0659 MD5 of 80231f19168b5f326bd1fbcd7a093aeb0415c84e5036c7991b3eaef2f9be77a2 2024-11-08
FileHash-MD5 16856a5474ce10a2c015b51a11a3f012 MD5 of 1b80e9c51d418ce5ac3a6741e70a6a0235b43bb7548299278865f604d41d7675 2024-11-08
FileHash-MD5 26b6cdc556f3801f3d947a15a28032ba MD5 of 9ef9c88cef51ee0fb77ea9a78dbe60651603ef807ddb6c44d5bda95cc9026527 2024-11-08
FileHash-MD5 27ce5495176bf11a7cd29ecde8924ca0 MD5 of 213c8a51972fdd17d3f8c20a94e76123004d4e8f21a4a06d50f87d2c65379ac0 2024-11-08
FileHash-MD5 39c17d80413faf7cc6a35bf50f918915 MD5 of 76c711c56c95009506347691c44ba9cc61ce0056e47784799f6429642c224d3a 2024-11-08
FileHash-MD5 6150645f8a3bafee79ada821d15e8e13 MD5 of b096f74c64f1acf07bda1bff9f8a0a8372055cdd6573523772b6fc5f63a47c18 2024-11-08
FileHash-MD5 64beb97734256004dfafbb02d02e2c2b MD5 of 51c1e25a546dbf2d9a17ccd1f0e95cff68ead96d4dc77c995fe3d9cb67d4ee17 2024-11-08
FileHash-MD5 9325aff2c1c4e1fb7a2095aa81fd683d MD5 of ba865bacd3de8c261efd9e1a4e9ada62a417e8027a0aafe7c7eac3c69ca82ebd 2024-11-08
FileHash-MD5 99359f0156d781770ad1e23a4781e101 MD5 of e12ca221e597b760c912613b0bd8eff29c25f31c8b4a7687de3690fcfb66ab28 2024-11-08
FileHash-MD5 a0ef6d8305fbd364e87f4d22df14bb33 MD5 of f47589765df2ce3a5476d0b83569876c57e26f9ce2ba19227903396296f8cc22 2024-11-08
FileHash-MD5 a146413fe740273b81332172c44545a5 MD5 of a3c6d66308eced2a2b12c96860b1097b84065730d67308f7b05db4b09b3acf05 2024-11-08
FileHash-MD5 a1831c07a68523f1690d30ee050b1b04 MD5 of bfa188194c91e509262d0924cfd0ae70d120d50e904982d54d1d5a58de72bde4 2024-11-08
FileHash-MD5 b284233d522698f762c1b2fa93d3a101 MD5 of 33aaf3109c1c8a477cbcdd942a9b60acc236fe56ddd8d0262d7ad63d9434e12f 2024-11-08
FileHash-MD5 baed25327435936f235a3bb732090e3a MD5 of 8d782d769de826212ae7519aae41877acf2a4f35d97067cc996b06c148cc218e 2024-11-08
FileHash-MD5 c6d9c8c2073da75b16218878be82b117 MD5 of cd217bbd68146c9c95a94f2cb810d7d87c397b1f290b7659e395ba86b4d96adb 2024-11-08
FileHash-MD5 ca152e821671f1a0d11ffe2d0d48003a MD5 of 96f672a9fffb168fb7bf40b8acff4d827388ee2825a32e7aecdf63182cb23d8e 2024-11-08
FileHash-MD5 d664174d28e4b3a1b45b38971e30c852 MD5 of feb8e3dcb8631b13643b95b4d84d936183742a7b333857463656a5523dfbba3d 2024-11-08
FileHash-MD5 d787e2baa41d0be20810731cab1a4742 MD5 of 1ccf7f8b3a9b20bb87bc18a3fcfb41948f65dfb43b2fad1440a0eaef2656f414 2024-11-08
FileHash-MD5 e05e87e3900a6b6407fad5ed63b7b382 MD5 of b9c100b9739aab1db7263c68bf55270eb65971f71e1ce38c89a3078164ff97bb 2024-11-08
FileHash-MD5 fc74620af37b84709f8cdda65165384e MD5 of df9fdb0fcefa0255fd41405f57e7950fa736eff1fd12fed63cd337b8752c3766 2024-11-08
FileHash-SHA1 0552fcbafa152c7c2728dc34b21699ed2aed6543 SHA1 of b096f74c64f1acf07bda1bff9f8a0a8372055cdd6573523772b6fc5f63a47c18 2024-11-08
FileHash-SHA1 0d46caa11f43e2ef355b015ef31e4e74a447d1e9 SHA1 of df9fdb0fcefa0255fd41405f57e7950fa736eff1fd12fed63cd337b8752c3766 2024-11-08
FileHash-SHA1 1ee6fee18c39a9aa147bda2677483e516a3474e2 SHA1 of b9c100b9739aab1db7263c68bf55270eb65971f71e1ce38c89a3078164ff97bb 2024-11-08
FileHash-SHA1 20875c05d210ad6ca6b3250a33783632e7164ded SHA1 of e12ca221e597b760c912613b0bd8eff29c25f31c8b4a7687de3690fcfb66ab28 2024-11-08
FileHash-SHA1 2d081d832e1c60cb305b2cadeb89c519adf7c2ef SHA1 of 1b80e9c51d418ce5ac3a6741e70a6a0235b43bb7548299278865f604d41d7675 2024-11-08
FileHash-SHA1 3cf495dbf535793cf10defb880c0e7d0c963fafd SHA1 of a3c6d66308eced2a2b12c96860b1097b84065730d67308f7b05db4b09b3acf05 2024-11-08
FileHash-SHA1 4470a7ec7877aa0d8c48ba3e65ebd6de47fd5e8c SHA1 of ba865bacd3de8c261efd9e1a4e9ada62a417e8027a0aafe7c7eac3c69ca82ebd 2024-11-08
FileHash-SHA1 462c8ef17de04f84ffed95875fcbcb7a8d334228 SHA1 of 9ef9c88cef51ee0fb77ea9a78dbe60651603ef807ddb6c44d5bda95cc9026527 2024-11-08
FileHash-SHA1 51c939ab02d61e2b1bfa99ea2736506146e0dde2 SHA1 of 1ccf7f8b3a9b20bb87bc18a3fcfb41948f65dfb43b2fad1440a0eaef2656f414 2024-11-08
FileHash-SHA1 5651dce8c7108094966b88157f1eb3adf1692229 SHA1 of feb8e3dcb8631b13643b95b4d84d936183742a7b333857463656a5523dfbba3d 2024-11-08
FileHash-SHA1 637fd3768739e2c1ccd41799fd466d93b08a17e9 SHA1 of 33aaf3109c1c8a477cbcdd942a9b60acc236fe56ddd8d0262d7ad63d9434e12f 2024-11-08
FileHash-SHA1 652222c1a01fb6a57716c8d1064b2c0a72129b21 SHA1 of f47589765df2ce3a5476d0b83569876c57e26f9ce2ba19227903396296f8cc22 2024-11-08
FileHash-SHA1 893adff1a544195bc3a350f8e1a8cd6388dc38a4 SHA1 of 76c711c56c95009506347691c44ba9cc61ce0056e47784799f6429642c224d3a 2024-11-08
FileHash-SHA1 aeb981ee38539841b0c558ae54c369a771efc0a8 SHA1 of 96f672a9fffb168fb7bf40b8acff4d827388ee2825a32e7aecdf63182cb23d8e 2024-11-08
FileHash-SHA1 b4ee26136d12288f873fea5e93e2dff2e2be8f0b SHA1 of 8d782d769de826212ae7519aae41877acf2a4f35d97067cc996b06c148cc218e 2024-11-08
FileHash-SHA1 ba886a44e05075e7883f9880462efff0a2ea2c3f SHA1 of cd217bbd68146c9c95a94f2cb810d7d87c397b1f290b7659e395ba86b4d96adb 2024-11-08
FileHash-SHA1 cc5a8899deeede5147beaf418e4c367bb20ffed6 SHA1 of 51c1e25a546dbf2d9a17ccd1f0e95cff68ead96d4dc77c995fe3d9cb67d4ee17 2024-11-08
FileHash-SHA1 cd3887916e9464553858b126de449a77504e0160 SHA1 of 213c8a51972fdd17d3f8c20a94e76123004d4e8f21a4a06d50f87d2c65379ac0 2024-11-08
FileHash-SHA1 d50868d1dd091a57938b41324431b67542aa9810 SHA1 of 80231f19168b5f326bd1fbcd7a093aeb0415c84e5036c7991b3eaef2f9be77a2 2024-11-08
FileHash-SHA1 d52e86309119fe54b509234434e4f208865426a9 SHA1 of bfa188194c91e509262d0924cfd0ae70d120d50e904982d54d1d5a58de72bde4 2024-11-08
FileHash-SHA1 f09db0f84290c18db84a420a77350f5a4271d8c6 SHA1 of 2175a1f8f798b0daf05965eb860166c65a8d227d1309cd3545dba3174fd2292f 2024-11-08
FileHash-SHA1 ff1156ab3a8226f8ac89bae78c990ebb85f3138b SHA1 of b5f1554f61873bd6777812f7d2578fc8f5c6d48d4901bdea3d07673698d306d2 2024-11-08
FileHash-SHA256 1b80e9c51d418ce5ac3a6741e70a6a0235b43bb7548299278865f604d41d7675 2024-11-08
FileHash-SHA256 1ccf7f8b3a9b20bb87bc18a3fcfb41948f65dfb43b2fad1440a0eaef2656f414 2024-11-08
FileHash-SHA256 213c8a51972fdd17d3f8c20a94e76123004d4e8f21a4a06d50f87d2c65379ac0 2024-11-08
FileHash-SHA256 2175a1f8f798b0daf05965eb860166c65a8d227d1309cd3545dba3174fd2292f 2024-11-08
FileHash-SHA256 33aaf3109c1c8a477cbcdd942a9b60acc236fe56ddd8d0262d7ad63d9434e12f 2024-11-08
FileHash-SHA256 51c1e25a546dbf2d9a17ccd1f0e95cff68ead96d4dc77c995fe3d9cb67d4ee17 2024-11-08
FileHash-SHA256 76c711c56c95009506347691c44ba9cc61ce0056e47784799f6429642c224d3a 2024-11-08
FileHash-SHA256 80231f19168b5f326bd1fbcd7a093aeb0415c84e5036c7991b3eaef2f9be77a2 2024-11-08
FileHash-SHA256 86bef968254fc4288b9f481878fc46b1e236cefa93a1c9374a234573ad25d051 2024-11-08
FileHash-SHA256 8d782d769de826212ae7519aae41877acf2a4f35d97067cc996b06c148cc218e 2024-11-08
FileHash-SHA256 96f672a9fffb168fb7bf40b8acff4d827388ee2825a32e7aecdf63182cb23d8e 2024-11-08
FileHash-SHA256 9ef9c88cef51ee0fb77ea9a78dbe60651603ef807ddb6c44d5bda95cc9026527 2024-11-08
FileHash-SHA256 a3c6d66308eced2a2b12c96860b1097b84065730d67308f7b05db4b09b3acf05 2024-11-08
FileHash-SHA256 b096f74c64f1acf07bda1bff9f8a0a8372055cdd6573523772b6fc5f63a47c18 2024-11-08
FileHash-SHA256 b5f1554f61873bd6777812f7d2578fc8f5c6d48d4901bdea3d07673698d306d2 2024-11-08
FileHash-SHA256 b9c100b9739aab1db7263c68bf55270eb65971f71e1ce38c89a3078164ff97bb 2024-11-08
FileHash-SHA256 ba865bacd3de8c261efd9e1a4e9ada62a417e8027a0aafe7c7eac3c69ca82ebd 2024-11-08
FileHash-SHA256 bfa188194c91e509262d0924cfd0ae70d120d50e904982d54d1d5a58de72bde4 2024-11-08
FileHash-SHA256 cd217bbd68146c9c95a94f2cb810d7d87c397b1f290b7659e395ba86b4d96adb 2024-11-08
FileHash-SHA256 df9fdb0fcefa0255fd41405f57e7950fa736eff1fd12fed63cd337b8752c3766 2024-11-08
FileHash-SHA256 e12ca221e597b760c912613b0bd8eff29c25f31c8b4a7687de3690fcfb66ab28 2024-11-08
FileHash-SHA256 f47589765df2ce3a5476d0b83569876c57e26f9ce2ba19227903396296f8cc22 2024-11-08
FileHash-SHA256 feb8e3dcb8631b13643b95b4d84d936183742a7b333857463656a5523dfbba3d 2024-11-08
URL http://139.99.82.239:443 2024-11-08
URL http://139.99.82.239:6658 2024-11-08
domain applyzxcksdia.shop 2024-11-08
domain arriveoxpzxo.shop 2024-11-08
domain barebrilliancedkoso.shop 2024-11-08
domain bindceasdiwozx.shop 2024-11-08
domain catchddkxozvp.shop 2024-11-08
domain conferencefreckewl.shop 2024-11-08
domain conformfucdioz.shop 2024-11-08
domain considerrycurrentyws.shop 2024-11-08
domain contemplateodszsv.shop 2024-11-08
domain declaredczxi.shop 2024-11-08
domain deprivedrinkyfaiir.shop 2024-11-08
domain detailbaconroollyws.shop 2024-11-08
domain falseaudiencekd.shop 2024-11-08
domain feighminoritsjda.shop 2024-11-08
domain flourhishdiscovrw.shop 2024-11-08
domain freezetdopzx.shop 2024-11-08
domain horsedwollfedrwos.shop 2024-11-08
domain justifycanddidatewd.shop 2024-11-08
domain landdumpycolorwskfw.shop 2024-11-08
domain liabiliytshareodlkv.shop 2024-11-08
domain marathonbeedksow.shop 2024-11-08
domain messtimetabledkolvk.shop 2024-11-08
domain notoriousdcellkw.shop 2024-11-08
domain ohfantasyproclaiwlo.shop 2024-11-08
domain parallelmercywksoffw.shop 2024-11-08
domain patternapplauderw.shop 2024-11-08
domain pleasurenarrowsdla.shop 2024-11-08
domain raiseboltskdlwpow.shop 2024-11-08
domain relaxtionflouwerwi.shop 2024-11-08
domain replacedoxcjzp.shop 2024-11-08
domain richardflorespoew.shop 2024-11-08
domain strwawrunnygjwu.shop 2024-11-08
domain tribepresentaitsi.shop 2024-11-08
domain understanndtytonyguw.shop 2024-11-08
domain varianntyfeecterd.shop 2024-11-08
References (2)
↗ https://blog.talosintelligence.com/threat-actors-use-copyright-infringement-phishing-lure-to-deploy-infostealers/ ↗ https://raw.githubusercontent.com/Cisco-Talos/IOCs/refs/heads/main/2024/10/threat-actors-use-copyright-infringement-phishing-lure-to-deploy-infostealers.txt