← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
jf_cf_frostovip.exe and 180^^^^^AAn_ok.exe
WHITE Arek-BTC 2025-01-08 Modified: 2025-01-08
127
IOCs
HIGH VOLUME
A report on a Windows malware attack has been published online by Microsoft and by Nextron Systems, the same company that developed the attack itself, and is being investigated by the US National Security Agency (NSA).
pejzaszsha1imphaszgreedy filedeletion usingdel idxjuniornextronexampleexternalnetfiledataportshomenet
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
Indicators of Compromise (7 / 127 total)
All hostname FileHash-SHA256 URL domain FileHash-MD5 FileHash-SHA1
TYPEINDICATORDESCRIPTIONCREATED
FileHash-MD5 2807a864b00c862e15d701aa98ac4262 MD5 of e1a953bd1cf41ead8eed194bcbc05ad645465a4e 2025-01-08
FileHash-MD5 bf5a4aa99e5b160f8521cadd6bfe73b8 2025-01-08
FileHash-MD5 0ee4b742dd1cdde9c69b42e43911ddc1 2025-01-08
FileHash-MD5 e967b8c0c0d41352a44e3a15e8f465fe 2025-01-08
FileHash-MD5 09d0478591d4f788cb3e5ea416c25237 2025-01-08
FileHash-MD5 f59e1e2e39f7251ba701bae881d6f9f1 MD5 of 18b1e74e5aa5abf487fe7a2480ee061edc56dab7 2025-01-08
FileHash-MD5 55a54008ad1ba589aa210d2629c1df41 MD5 of 4bf5122f344554c53bde2ebb8cd2b7e3d1600ad631c385a5d7cce23c7785459a 2025-01-08