Pulse Detail — Threat Intelligence

PULSE NAME

GitCaught: Threat Actor Leverages GitHub Repository for Malicious Infrastructure

WHITE Armature_TIP 2025-02-22 Modified: 2025-03-24

124

IOCs

HIGH VOLUME

↓ CSV ↓ JSON

MITRE ATT&CK & Malware Families

ATT&CK TECHNIQUES

T1005 T1012 T1041 T1053 T1057 T1059 T1082 T1112 T1120 T1132 T1202 T1222 T1552 T1564 T1583 T1587 T1589 T1592

Indicators of Compromise (124)

All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 URL domain hostname

TYPE	INDICATOR	DESCRIPTION	CREATED
FileHash-MD5	04babf5296bac9ab5d26e047f0e8c781	MD5 of 152cb8b36dd023d09c742a033e76b87c6e4c2f09f6d84757001f16705eab05e7	2025-02-22
FileHash-MD5	0667d65c7bed97a450e322223ca31c1a	MD5 of 824e35d8dd11acdcb3c48d8c66114eccb25c2fff2d8cb047cd5b4b6c22c481a7	2025-02-22
FileHash-MD5	0b5037cec119e30e7a7361a2337161a1	MD5 of 42c33e7d37c8af8713e9c2557a6c27b92ea9aff88d88adfe4d68796860b68f4e	2025-02-22
FileHash-MD5	0cc5f5b190e10b2d892816aa0960b050	MD5 of 95aadba24cb01df8760f2d3f80ef29d2c452b43945a1ad22e29a0771c12f04f1	2025-02-22
FileHash-MD5	0e487600b1bb304a34c4f952ff2b2e28	MD5 of 89ed92a03d1e8e2ff06e74a51a0dfabb4cbaa27794a2d2588015d219956a1e7b	2025-02-22
FileHash-MD5	2bcf087a676ec992ef9652a87b4dbce1	MD5 of 3805cb7589da01a978e899fd4a051adec083c8543343ce637e448716cbbbcef1	2025-02-22
FileHash-MD5	339ca957d2ce437984a22337821b3aaf	MD5 of c301eb35ea5e8c216aa841c96aca078f7fe9950382de17ae928d5de02b586033	2025-02-22
FileHash-MD5	3805cb7589da01a978e899fd4a051ade	—	2025-02-22
FileHash-MD5	4e0ed7fc849281df587dcdcdbefa7c19	MD5 of 7835e499d0030c850f7dd9b56d58ad7027f9bcda81348178ac029a22e0926da8	2025-02-22
FileHash-MD5	6396610c76354727839dcccc6b8a067e	MD5 of 40f50f931029048dd6f81fc07268a5ccd5714e637206f92dea2e5a847c67dd69	2025-02-22
FileHash-MD5	6f113f5aff35f2caaf0d77d07cea8231	MD5 of 16dbfb956e720b0b7c3ba5364765859f2eb1a9bf246daeeae74fb3f0d8c911da	2025-02-22
FileHash-MD5	705b899bcf83311187021a29369e5344	—	2025-02-22
FileHash-MD5	74cd68b2425360a47974a586f0672758	MD5 of 688636e7f11b16ef685115e84c98aa006fdb6e3dd72b2a7e984b41b57b8cd315	2025-02-22
FileHash-MD5	7c67aa7aace0add2572dc6ecd77d3505	MD5 of 6f709406f88bde5a1622f42b2b22cfdb4fa03cf36d4f518df9c7ed9793f8ae9a	2025-02-22
FileHash-MD5	84c52cd5476b6b77239637097f57f2a0	MD5 of 17b52120268ceacf4a9d950d709b27aae11a5ddcbf60cbb9df340f0649c2849f	2025-02-22
FileHash-MD5	853b0128352e2c3d43b796414c8d06bb	MD5 of 0ae581638cedc98efb4d004a84ddd8397d1eab891fdfd836d27bd3ecf1d72c55	2025-02-22
FileHash-MD5	92f14c6a98074b6035aa7b89ec13bc06	MD5 of f83261fc31892d0e4eda20fb2f1107ca64d60f282abdcde58b4e8726b80382b4	2025-02-22
FileHash-MD5	9396fc31abc9c3a0becc02135a50cba5	MD5 of 5a75c44fee834f08819ac3b3d114fb723fce11f4f15a2ac256af5b8d76d3c85e	2025-02-22
FileHash-MD5	947199eb50280a42e60a0be7763b96f6	MD5 of 7e0f9a359298e0822e7de42db933a5e1d6f46255b47e0d86dd4d16abad44f834	2025-02-22
FileHash-MD5	9fe924dcc1221bdc537de4d71ac7d4c9	MD5 of cd39b0faa64702e596afc66fe32b467c478724a0fbda9fa8679f64927f34c1b2	2025-02-22
FileHash-MD5	ac1a958ea6449450fbfa5cb9a6bb197a	MD5 of f81f1dfc07e5b84cd158ed24ec60ac43a2d2427835d4d1a21b8f8622b7b706a6	2025-02-22
FileHash-MD5	b4016a9d2c280577bae4a198c0f91504	MD5 of 1383462f7f85b0a7c340f164472a7bd1dea39b23f674adc9999dca862346c3ef	2025-02-22
FileHash-MD5	bf4477579a3e7485055d1fe8e0efcbb3	—	2025-02-22
FileHash-MD5	c083c8543343ce637e448716cbbbcef1	—	2025-02-22
FileHash-MD5	d4e2a4bace502bfc1b7449fee9c9ba28	MD5 of 401c113bc24701e80468047974c19c3b7936e4d34a6625ce996c12d1639de3ba	2025-02-22
FileHash-MD5	dad1ea1ecb152a1b600905a10e8b0617	MD5 of 78ebf9dc8f62b49077393d2753746170e300f6ad7eb740c19ac449ae3d3ef8b1	2025-02-22
FileHash-MD5	e54ed20eee6bd88883adb71856e49595	MD5 of 705b899bcf83311187021a29369e5344bf4477579a3e7485055d1fe8e0efcbb3	2025-02-22
FileHash-MD5	ecebd5543e8f2c5f8b69aa1245f726a3	MD5 of cbbbd6b953b3e377662407c18a423225e214127707447c9c8318bc1e0863b82d	2025-02-22
FileHash-MD5	edf07a5f22612e41717cf328e2adf9d0	MD5 of 5db172c8d55088cfd5b3e148168f51e01893128b0ef35fbf971ec78d40354021	2025-02-22
FileHash-SHA1	0505a3b7683aaff50b9f4214e259b519bc27bc6c	SHA1 of f81f1dfc07e5b84cd158ed24ec60ac43a2d2427835d4d1a21b8f8622b7b706a6	2025-02-22
FileHash-SHA1	089f4f02f0403e5230e51df194d98994a9ac0202	SHA1 of 17b52120268ceacf4a9d950d709b27aae11a5ddcbf60cbb9df340f0649c2849f	2025-02-22
FileHash-SHA1	0a61bdd9add322835895a027804e9d19b64eda25	SHA1 of 5a75c44fee834f08819ac3b3d114fb723fce11f4f15a2ac256af5b8d76d3c85e	2025-02-22
FileHash-SHA1	27b6afc6f57850644f3ceffcb06406f5d699592e	SHA1 of 705b899bcf83311187021a29369e5344bf4477579a3e7485055d1fe8e0efcbb3	2025-02-22
FileHash-SHA1	2978c61632b49f469b809cb60999c0e4f36cd461	SHA1 of c301eb35ea5e8c216aa841c96aca078f7fe9950382de17ae928d5de02b586033	2025-02-22
FileHash-SHA1	34c66a2bb9e791dec6156f8bc7a41bf592cf47fd	SHA1 of 401c113bc24701e80468047974c19c3b7936e4d34a6625ce996c12d1639de3ba	2025-02-22
FileHash-SHA1	39472719de758d1a9ea90abcb47713436955b0a0	SHA1 of 152cb8b36dd023d09c742a033e76b87c6e4c2f09f6d84757001f16705eab05e7	2025-02-22
FileHash-SHA1	46a674be18caeca1f20b0ef2ebbb0e61debc10e3	SHA1 of 95aadba24cb01df8760f2d3f80ef29d2c452b43945a1ad22e29a0771c12f04f1	2025-02-22
FileHash-SHA1	4f7b41c3963baff278828da6ee289499d49eda7e	SHA1 of 688636e7f11b16ef685115e84c98aa006fdb6e3dd72b2a7e984b41b57b8cd315	2025-02-22
FileHash-SHA1	4fbe2df96e760f4596ea2e01f604b037c53ea706	SHA1 of cbbbd6b953b3e377662407c18a423225e214127707447c9c8318bc1e0863b82d	2025-02-22
FileHash-SHA1	5446da1780139be3020cb9c99945836f87bce527	SHA1 of 7835e499d0030c850f7dd9b56d58ad7027f9bcda81348178ac029a22e0926da8	2025-02-22
FileHash-SHA1	6579462550b9e2a984a2cc7e2af437f32ed09368	SHA1 of 42c33e7d37c8af8713e9c2557a6c27b92ea9aff88d88adfe4d68796860b68f4e	2025-02-22
FileHash-SHA1	6e4295a4ecc3cfbe3aff0c57eebd4a734bfccf91	SHA1 of 40f50f931029048dd6f81fc07268a5ccd5714e637206f92dea2e5a847c67dd69	2025-02-22
FileHash-SHA1	6f1e791fbf59410bc23e79479500f8e52e5e1686	SHA1 of 824e35d8dd11acdcb3c48d8c66114eccb25c2fff2d8cb047cd5b4b6c22c481a7	2025-02-22
FileHash-SHA1	74dc1cf2a3cd2cb2eb8f3119ec5c0ffda3b7e04b	SHA1 of 1383462f7f85b0a7c340f164472a7bd1dea39b23f674adc9999dca862346c3ef	2025-02-22
FileHash-SHA1	8d75b4c003c5f021659b3d5790b3362062d068ba	SHA1 of 7e0f9a359298e0822e7de42db933a5e1d6f46255b47e0d86dd4d16abad44f834	2025-02-22
FileHash-SHA1	9d687543704407f21c455906cc04c017c51c635c	SHA1 of cd39b0faa64702e596afc66fe32b467c478724a0fbda9fa8679f64927f34c1b2	2025-02-22
FileHash-SHA1	9ef1433f226ab5e6fdcae5859c72dc8ef659ee4e	SHA1 of 78ebf9dc8f62b49077393d2753746170e300f6ad7eb740c19ac449ae3d3ef8b1	2025-02-22
FileHash-SHA1	a2db69f7015a25bc5776d1db9235c38b8246ecda	SHA1 of 3805cb7589da01a978e899fd4a051adec083c8543343ce637e448716cbbbcef1	2025-02-22
FileHash-SHA1	a446e13ce123bbc0e41dc2837503bc5cab8c99ce	SHA1 of 0ae581638cedc98efb4d004a84ddd8397d1eab891fdfd836d27bd3ecf1d72c55	2025-02-22
FileHash-SHA1	aabf2856f4a7443708a7b26b4aa8267a2926683c	SHA1 of 6f709406f88bde5a1622f42b2b22cfdb4fa03cf36d4f518df9c7ed9793f8ae9a	2025-02-22
FileHash-SHA1	da41474307c44fdd9af4ecab151957a4d9c72e6b	SHA1 of 5db172c8d55088cfd5b3e148168f51e01893128b0ef35fbf971ec78d40354021	2025-02-22
FileHash-SHA1	e53ffb09adecc1fd34a7ca0f9e9405ced1f9e610	SHA1 of 89ed92a03d1e8e2ff06e74a51a0dfabb4cbaa27794a2d2588015d219956a1e7b	2025-02-22
FileHash-SHA1	f35b1e9deb9c9c93c2ebbbbb70e655c4c08896ce	SHA1 of f83261fc31892d0e4eda20fb2f1107ca64d60f282abdcde58b4e8726b80382b4	2025-02-22
FileHash-SHA1	f595da2ac1a76fe3794025a04001047e6cceb94b	SHA1 of 16dbfb956e720b0b7c3ba5364765859f2eb1a9bf246daeeae74fb3f0d8c911da	2025-02-22
FileHash-SHA256	0ae581638cedc98efb4d004a84ddd8397d1eab891fdfd836d27bd3ecf1d72c55	—	2025-02-22
FileHash-SHA256	107a3addcb5fd5550b1bcd7a1c41f8e11e3911078d47ce507697f2f2993ff6d2	—	2025-02-22
FileHash-SHA256	1383462f7f85b0a7c340f164472a7bd1dea39b23f674adc9999dca862346c3ef	—	2025-02-22
FileHash-SHA256	152cb8b36dd023d09c742a033e76b87c6e4c2f09f6d84757001f16705eab05e7	—	2025-02-22
FileHash-SHA256	16dbfb956e720b0b7c3ba5364765859f2eb1a9bf246daeeae74fb3f0d8c911da	—	2025-02-22
FileHash-SHA256	17b52120268ceacf4a9d950d709b27aae11a5ddcbf60cbb9df340f0649c2849f	—	2025-02-22
FileHash-SHA256	299f731437df0c0548275a35384f93ef9abfc2f020d507f4fe22f641abe5817c	—	2025-02-22
FileHash-SHA256	3335366532396633346264303137363965376666616565313833623436353833	—	2025-02-22
FileHash-SHA256	3534353639643261616165373137363333356136376266373265383637333666	—	2025-02-22
FileHash-SHA256	3805cb7589da01a978e899fd4a051adec083c8543343ce637e448716cbbbcef1	—	2025-02-22
FileHash-SHA256	401c113bc24701e80468047974c19c3b7936e4d34a6625ce996c12d1639de3ba	—	2025-02-22
FileHash-SHA256	40f50f931029048dd6f81fc07268a5ccd5714e637206f92dea2e5a847c67dd69	—	2025-02-22
FileHash-SHA256	42c33e7d37c8af8713e9c2557a6c27b92ea9aff88d88adfe4d68796860b68f4e	—	2025-02-22
FileHash-SHA256	4e1d26d3a7feb06780717a7d99ebac8b926b0dffd2234e2f2704aee3a1c39474	—	2025-02-22
FileHash-SHA256	5a75c44fee834f08819ac3b3d114fb723fce11f4f15a2ac256af5b8d76d3c85e	—	2025-02-22
FileHash-SHA256	5db172c8d55088cfd5b3e148168f51e01893128b0ef35fbf971ec78d40354021	—	2025-02-22
FileHash-SHA256	688636e7f11b16ef685115e84c98aa006fdb6e3dd72b2a7e984b41b57b8cd315	—	2025-02-22
FileHash-SHA256	6f709406f88bde5a1622f42b2b22cfdb4fa03cf36d4f518df9c7ed9793f8ae9a	—	2025-02-22
FileHash-SHA256	705b899bcf83311187021a29369e5344bf4477579a3e7485055d1fe8e0efcbb3	—	2025-02-22
FileHash-SHA256	7835e499d0030c850f7dd9b56d58ad7027f9bcda81348178ac029a22e0926da8	—	2025-02-22
FileHash-SHA256	78ebf9dc8f62b49077393d2753746170e300f6ad7eb740c19ac449ae3d3ef8b1	—	2025-02-22
FileHash-SHA256	7e0f9a359298e0822e7de42db933a5e1d6f46255b47e0d86dd4d16abad44f834	—	2025-02-22
FileHash-SHA256	824e35d8dd11acdcb3c48d8c66114eccb25c2fff2d8cb047cd5b4b6c22c481a7	—	2025-02-22
FileHash-SHA256	89ed92a03d1e8e2ff06e74a51a0dfabb4cbaa27794a2d2588015d219956a1e7b	—	2025-02-22
FileHash-SHA256	95aadba24cb01df8760f2d3f80ef29d2c452b43945a1ad22e29a0771c12f04f1	—	2025-02-22
FileHash-SHA256	b1b162e0d066425bfa84ba6eacc976ba36a348c90d87901dc06bab55e26b5939	—	2025-02-22
FileHash-SHA256	c301eb35ea5e8c216aa841c96aca078f7fe9950382de17ae928d5de02b586033	—	2025-02-22
FileHash-SHA256	cbbbd6b953b3e377662407c18a423225e214127707447c9c8318bc1e0863b82d	—	2025-02-22
FileHash-SHA256	cd39b0faa64702e596afc66fe32b467c478724a0fbda9fa8679f64927f34c1b2	—	2025-02-22
FileHash-SHA256	f81f1dfc07e5b84cd158ed24ec60ac43a2d2427835d4d1a21b8f8622b7b706a6	—	2025-02-22
FileHash-SHA256	f83261fc31892d0e4eda20fb2f1107ca64d60f282abdcde58b4e8726b80382b4	—	2025-02-22
URL	http://195.85.115.195:21/RMS152.ENC	—	2025-02-22
URL	http://195.85.115.195:21/RMS194.ENC	—	2025-02-22
URL	http://195.85.115.195:21/Re.ENC	—	2025-02-22
URL	https://cleanmymac.pro/files/CleanMyMac-App.dmg	—	2025-02-22
URL	https://pixelmator.pics/files/PixelmatorPro.dmg	—	2025-02-22
domain	aptonic.xyz	—	2025-02-22
domain	arcbrowser.pro	—	2025-02-22
domain	cleanmymac.pro	—	2025-02-22
domain	cleanshot.ink	—	2025-02-22
domain	crypteriumworld.io	—	2025-02-22
domain	figma.lat	—	2025-02-22
domain	iina-app.lat	—	2025-02-22
domain	israinway.cloud	—	2025-02-22
domain	lightpillar.lat	—	2025-02-22
domain	macbartender.lat	—	2025-02-22
domain	orbitpettystudio.fun	—	2025-02-22
domain	parallelsdesktop.pro	—	2025-02-22
domain	password-app.pro	—	2025-02-22
domain	pixelmator.pics	—	2025-02-22
domain	pixelmator.us	—	2025-02-22
domain	punchtelephoneverdi.store	—	2025-02-22
domain	rainway.cloud	—	2025-02-22
domain	rize.lat	—	2025-02-22
domain	ropboxusercontent.com	—	2025-02-22
domain	servicescraft.buzz	—	2025-02-22
domain	setapp.ink	—	2025-02-22
domain	sipapp.lat	—	2025-02-22
domain	skylum.store	—	2025-02-22
domain	smallrabbitcrossing.site	—	2025-02-22
domain	snuggleapplicationswo.fun	—	2025-02-22
domain	strainriskpropos.store	—	2025-02-22
domain	telephoneverdictyow.site	—	2025-02-22
domain	theoryapparatusjuko.fun	—	2025-02-22
domain	ultradelux.buzz	—	2025-02-22
domain	urlscan.com	—	2025-02-22
domain	window.open	—	2025-02-22
hostname	cleanmymac.proandpixelmator.pics	—	2025-02-22
hostname	inhowthedownloadoccurs.inthecaseofparallelsdesktop.pro	—	2025-02-22
hostname	whichpreviouslyofferedsoftwarespecificallyforwindowsplatforms.theprimarylegitimatedomainforrainwaywasrainway.com	—	2025-02-22

References (1)

↗ https://go.recordedfuture.com/hubfs/reports/cta-2024-0514.pdf