← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Iranian “Dream Job” campaign
WHITE Korean Lazarus CyberHunter_NL 2024-11-13 Modified: 2024-12-13
14
IOCs
MEDIUM VOLUME
A report on the Iranian "Dream Job" campaign has been published by ClearSky Cyber Security Ltd, a UK-based firm that specialises in cyber security and research into threats to the global aerospace industry.
korean lazaruslazarussnailresinratskimsuky
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
SnailResin RATs Kimsuky
Indicators of Compromise (14)
All CIDR FileHash-MD5 FileHash-SHA1 FileHash-SHA256 URL domain
TYPEINDICATORDESCRIPTIONCREATED
CIDR 77.91.74.0/24 2024-11-13
CIDR 89.221.225.0/24 2024-11-13
FileHash-MD5 bb4c8f42cc624c628e4b98bd43f29fa6 2024-11-13
FileHash-SHA1 1acd34fb6de5c645e03ded9875046979be7893c4 2024-11-13
FileHash-SHA1 21b0327e7ccb36d9ba00359e078acaa9a2320c83 2024-11-13
FileHash-SHA1 2a29ba7302024ec1255811abec2a532136d12fef 2024-11-13
FileHash-SHA1 2e7fc6d63ce16075a3fe3584e03be24a9bc220e1 2024-11-13
FileHash-SHA1 3a0b3426f4a2f85e0c82b2804aab7f5d5bb63fb7 2024-11-13
FileHash-SHA1 aa5fcea406edd406bd6e0a23e83beebe2b3582d1 2024-11-13
FileHash-SHA1 c52beb64f7450fce923d15efaa1e5be4c0e43d2b 2024-11-13
FileHash-SHA256 bf308e5c91bcd04473126de716e3e668cac6cb1ac9c301132d61845a6d4cb362 2024-11-13
URL http://raw.ghubusercontent.com/msdnedgesupport/msdn/main/README.html 2024-11-13
domain careers2find.com 2024-11-13
domain xboxapicenter.com 2024-11-13
References (1)
↗ https://www.clearskysec.com/wp-content/uploads/2024/11/Iranian-Dream-Job-ver1.pdf