Pulse Detail — Threat Intelligence

PULSE NAME

Horns&Hooves Campaign Delivers NetSupport RAT and BurnsRAT

WHITE cryptocti 2024-12-05 Modified: 2025-01-06

IOCs

HIGH VOLUME

↓ CSV ↓ JSON

http

Indicators of Compromise (51)

All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 URL domain

TYPE	INDICATOR	DESCRIPTION	CREATED
FileHash-MD5	051552b4da740a3af5bd5643b1dc239a	—	2024-12-05
FileHash-MD5	0fea857a35b972899e8f1f60ee58e450	—	2024-12-05
FileHash-MD5	12ab1bc0989b32c55743df9b8c46af5a	—	2024-12-05
FileHash-MD5	17a78f50e32679f228c43823faabedfd	—	2024-12-05
FileHash-MD5	1b41e64c60ca9dfadeb063cd822ab089	—	2024-12-05
FileHash-MD5	20014b80a139ed256621b9c0ac4d7076	—	2024-12-05
FileHash-MD5	29362dcdb6c57dde0c112e25c9706dcf	—	2024-12-05
FileHash-MD5	327a1f32572b4606ae19085769042e51	—	2024-12-05
FileHash-MD5	34eb579dc89e1dc0507ad646a8dce8be	—	2024-12-05
FileHash-MD5	3e86f6fc7ed037f3c9560cc59aa7aacc	—	2024-12-05
FileHash-MD5	50dc5faa02227c0aefa8b54c8e5b2b0d	—	2024-12-05
FileHash-MD5	5f4284115ab9641f1532bb64b650aad6	—	2024-12-05
FileHash-MD5	63647520b36144e31fb8ad7dd10e3d21	—	2024-12-05
FileHash-MD5	67677c815070ca2e3ebd57a6adb58d2e	—	2024-12-05
FileHash-MD5	7f0ee078c8902f12d6d9e300dabf6aed	—	2024-12-05
FileHash-MD5	8096e00aa7877b863ef5a437f55c8277	—	2024-12-05
FileHash-MD5	882f2de65605dd90ee17fb65a01fe2c7	—	2024-12-05
FileHash-MD5	ae4d6812f5638d95a82b3fa3d4f92861	—	2024-12-05
FileHash-MD5	b03c67239e1e774077995bac331a8950	—	2024-12-05
FileHash-MD5	b3bde532cfbb95c567c069ca5f90652c	—	2024-12-05
FileHash-MD5	b9956282a0fed076ed083892e498ac69	—	2024-12-05
FileHash-MD5	ba69cc9f087411995c64ca0d96da7b69	—	2024-12-05
FileHash-MD5	e760a5ce807c756451072376f88760d7	—	2024-12-05
FileHash-MD5	edfb8d26fa34436f2e92d5be1cb5901b	—	2024-12-05
FileHash-SHA1	6e26e7ec76c94aea95e4a07bcc256a15b85d9514	SHA1 of 20014b80a139ed256621b9c0ac4d7076	2024-12-05
FileHash-SHA1	abfcd51bb120a7eae5bbd9a99624e4abe0c9139d	SHA1 of 1b41e64c60ca9dfadeb063cd822ab089	2024-12-05
FileHash-SHA256	58eb9f211ddbb5a6a3bfec345431c40ac61090241b865dbe26bbf958afc685ed	SHA256 of 20014b80a139ed256621b9c0ac4d7076	2024-12-05
FileHash-SHA256	f4e2f28169e0c88b2551b6f1d63f8ba513feb15beacc43a82f626b93d673f56d	SHA256 of 1b41e64c60ca9dfadeb063cd822ab089	2024-12-05
URL	http://188.227.106.124/test/js/1.js	—	2024-12-05
URL	http://188.227.106.124/test/js/BLD.exe	—	2024-12-05
URL	http://188.227.106.124/test/js/www.php	—	2024-12-05
URL	http://188.227.58.243/pretencia/installet_bat_vbs.bat	—	2024-12-05
URL	http://188.227.58.243/pretencia/www.php	—	2024-12-05
URL	http://188.227.58.243/zayavka/www.php	—	2024-12-05
URL	http://193.42.32.138/api/	—	2024-12-05
URL	http://31.44.4.40/test/bat_install.bat	—	2024-12-05
URL	http://45.133.16.135/zayavka/1.yay	—	2024-12-05
URL	http://45.133.16.135/zayavka/666.bat	—	2024-12-05
URL	http://45.133.16.135/zayavka/www.php	—	2024-12-05
URL	http://87.251.67.51/api/	—	2024-12-05
URL	http://golden-scalen.com/ngg_cl.zip	faf9b23508c4445bf9017cacb3b4f08f39d0cd0cd48cc17156320abb6083d9c7	2024-12-05
URL	https://golden-scalen.com/files/*	—	2024-12-05
domain	golden-scalen.com	—	2024-12-05
domain	gribidi1.com	—	2024-12-05
domain	gribidi2.com	—	2024-12-05
domain	labudanka1.com	—	2024-12-05
domain	labudanka2.com	—	2024-12-05
domain	shetrn1.com	—	2024-12-05
domain	shetrn2.com	—	2024-12-05
domain	xoomep1.com	—	2024-12-05
domain	xoomep2.com	—	2024-12-05