Pulse Detail — Threat Intelligence

PULSE NAME

TI Advisory No-ESAF-SOC-TI-427

WHITE TI Advisory No-ESAF-SOC-TI-427 ESFBSOCTCR 2024-12-04 Modified: 2024-12-04

IOCs

MEDIUM VOLUME

↓ CSV ↓ JSON

New Cyberattack Uses NetSupport and BurnsRAT

Indicators of Compromise (35)

All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 domain URL

TYPE	INDICATOR	DESCRIPTION	CREATED
FileHash-MD5	1b41e64c60ca9dfadeb063cd822ab089	MD5 of abfcd51bb120a7eae5bbd9a99624e4abe0c9139d	2024-12-04
FileHash-MD5	20014b80a139ed256621b9c0ac4d7076	MD5 of 6e26e7ec76c94aea95e4a07bcc256a15b85d9514	2024-12-04
FileHash-MD5	3e86f6fc7ed037f3c9560cc59aa7aacc	—	2024-12-04
FileHash-MD5	50dc5faa02227c0aefa8b54c8e5b2b0d	—	2024-12-04
FileHash-MD5	ae4d6812f5638d95a82b3fa3d4f92861	—	2024-12-04
FileHash-MD5	b9956282a0fed076ed083892e498ac69	—	2024-12-04
FileHash-MD5	e760a5ce807c756451072376f88760d7	—	2024-12-04
FileHash-MD5	edfb8d26fa34436f2e92d5be1cb5901b	—	2024-12-04
FileHash-SHA1	27fe39b6b053685d4c781a7fa809840ebaab15d7	—	2024-12-04
FileHash-SHA1	6e26e7ec76c94aea95e4a07bcc256a15b85d9514	—	2024-12-04
FileHash-SHA1	79bffe330575dcb9d0fe746325bc42e48da397f4	—	2024-12-04
FileHash-SHA1	90840b3feaf876f01e12cab4824bfaa730c18c6a	—	2024-12-04
FileHash-SHA1	abfcd51bb120a7eae5bbd9a99624e4abe0c9139d	—	2024-12-04
FileHash-SHA1	cdbb5a4ffcd22d3b875380e863bbfb67d1393af5	—	2024-12-04
FileHash-SHA1	d14a665438385203283030a189ff6c5e7c4bf518	—	2024-12-04
FileHash-SHA1	d32efd8faf1ff563dc49c1ff5f337257ef2008c7	—	2024-12-04
FileHash-SHA256	2b8fcbb905bd0a948a924a0f09534bac65ca444e023e5de301f4d4f83bc840e5	—	2024-12-04
FileHash-SHA256	58eb9f211ddbb5a6a3bfec345431c40ac61090241b865dbe26bbf958afc685ed	SHA256 of 6e26e7ec76c94aea95e4a07bcc256a15b85d9514	2024-12-04
FileHash-SHA256	aafc02e9f9c6ce1e9ff7aff753e5656d3d26041e06b78a9fd60ca6fe5127e09b	—	2024-12-04
FileHash-SHA256	c129b288bd401e07df9a21524213fc4d8d12aeae85a414d9bea9c787a72c15b5	—	2024-12-04
FileHash-SHA256	cf7a4b976bcaf3a588a0ca0edb25a541db4dad8f812c812d1b22d2104f1f8b2b	—	2024-12-04
FileHash-SHA256	d9804b094eb0b772c633f10d56e622fffa74922989108500f5d924787681c8db	—	2024-12-04
FileHash-SHA256	f4e2f28169e0c88b2551b6f1d63f8ba513feb15beacc43a82f626b93d673f56d	SHA256 of abfcd51bb120a7eae5bbd9a99624e4abe0c9139d	2024-12-04
FileHash-SHA256	fcc6afd664a8045bd61c398be3c37a97536a199a48d277e11977f93868ae1acc	—	2024-12-04
domain	gribidi1.com	—	2024-12-04
domain	gribidi2.com	—	2024-12-04
domain	labudanka1.com	—	2024-12-04
domain	labudanka2.com	—	2024-12-04
domain	shetrn1.com	—	2024-12-04
domain	shetrn2.com	—	2024-12-04
domain	xoomep1.com	—	2024-12-04
domain	xoomep2.com	—	2024-12-04
URL	http://golden-scalen.com/ngg_cl.zip	faf9b23508c4445bf9017cacb3b4f08f39d0cd0cd48cc17156320abb6083d9c7	2024-12-04
URL	https://golden-scalen.com/files/*	—	2024-12-04
domain	golden-scalen.com	—	2024-12-04