← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Win.Trojan.Uniblue-9873211-0 (?) -formerly ’Cycbot’ active in Law Firm
WHITE Q.Vashti 2025-06-04 Modified: 2025-07-04
155
IOCs
HIGH VOLUME
Win.Trojan.Uniblue-9873211-0 -formerly ’Cycbot’ active in regional injury Law Firm. Suspicious and inconsistent behavior of phone staff prompts search due to several complaints. Reputable Law firm unwilling to take actual cases with severe evidence based injuries, back peddling, information gathering, potentially tampered with data due to missing reports exchanged via email, etc. Denies hearing from clients, potential clients in months to years though much contact has been made and information medical, PHI, PII, and other information shared. In a recent situation firm declined case previously accepted but did want to review a piece of information they had not received from denied potential client. The client will contact legitimate, reputable firms referred to and is redirected to botnets. Affected individuals have been denied the right to pursue justice on multiple occasions due to “who knows”. Had individuals been accused of crimes they would even be able obtain free representation when necessary.
type indicatorrole titleadded activerelated pulsesfilehashmd5showingentriesipv4url httpsindicator roletitle addedactive relatedpulses urlip addresslocation unitedasn as209242whois registrarnext associatedurls showdate checkedurl hostnameserver responsegoogle saferesults maypresent maypresent novunitedunknown cnamefilehashsha256filehashsha1icator roleregsetvalueexawin32searchregdwordprocess32nextwshowread cportms windowscopywritemalwareformatactivitysid namemalware cveforbiddenhttp requestpostdeleteurl hostport method
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
Indicators of Compromise (39 / 155 total)
All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 URL domain hostname
TYPEINDICATORDESCRIPTIONCREATED
FileHash-SHA1 b14acae2a18bf0041e83c230241ae69d04fbd57a 2025-06-04
FileHash-SHA1 011970e45a96f0fa4edafcc1ea401e64136cb90e 2025-06-04
FileHash-SHA1 0bf4d41b44c18c19d1bb4a9327c19abdf3ecb83b 2025-06-04
FileHash-SHA1 0dce9f47e0a2b0c9013131ad26ec525b04c5055d 2025-06-04
FileHash-SHA1 10be6caf686a472ea4d37b200e0b8ed8aa102953 2025-06-04
FileHash-SHA1 1d8025ae612a7205168b599872367042ac3ea2f4 2025-06-04
FileHash-SHA1 1f1af6a4a618ad3395ee9ac25933fc051dc8027e 2025-06-04
FileHash-SHA1 43e60e47ccda3975f3d873a2ab478466f39a3a88 2025-06-04
FileHash-SHA1 45b0a602ba3960233ed7a5db00dc14749cab836f 2025-06-04
FileHash-SHA1 50d924dd9c11f62a653d1c81dc0c1c3f528fd47f 2025-06-04
FileHash-SHA1 576b2690d44af5637b43d9bf53d1acddd3119578 2025-06-04
FileHash-SHA1 5b65a3d9f2b2e248e49b0ad05cff480220ae44ed 2025-06-04
FileHash-SHA1 60977959cdd728fefa8164c9da212b89121cebfd 2025-06-04
FileHash-SHA1 6d137a11c4435dcf39a8742a61bb66e501d8dd4b 2025-06-04
FileHash-SHA1 7447515922875a22c67fdc37e6369837f803fc16 2025-06-04
FileHash-SHA1 7b7dac02555107c96224e899e34f7c90cdeb0322 2025-06-04
FileHash-SHA1 bfe1ad19730f6e65c33e924aaff02c6452708625 2025-06-04
FileHash-SHA1 c234a9b69552b912e0a1161dbb83aa7b99ff48c7 2025-06-04
FileHash-SHA1 c457d0418906ba8ffd12b0564a04743a7ebf4766 2025-06-04
FileHash-SHA1 d60e3714e64908d48e803efd9e43df699f59bb07 2025-06-04
FileHash-SHA1 de52888913ed587c18e4aadabce81876d282d708 2025-06-04
FileHash-SHA1 e06cde7ab0017b402fd781c052efdae209fe5a35 2025-06-04
FileHash-SHA1 e0ebe310d6c59a37a7a5f774cba94de8e7691fde 2025-06-04
FileHash-SHA1 01f562f74fce34294bf4264a99a7966ca014efc6 SHA1 of 228dc6fc443c60fb58240808dfcde19b4263c817827d3fe2b4aaca78faa50ecb 2025-06-04
FileHash-SHA1 0e6e6c58781439d6ced682b00ab369898363ac49 2025-06-04
FileHash-SHA1 114be759124c0b7492d8bea8dd938bb8ed6b41a1 SHA1 of 0b9f11a0719555c3cf3559b740f1da97 2025-06-04
FileHash-SHA1 3e89ff837147c16b4e41c30d6c796374e0b8e62c SHA1 of 92dc6ef532fbb4a5c3201469a5b5eb63 2025-06-04
FileHash-SHA1 42ed7a68ec0ac39db84f64d863386f3bdc21d990 SHA1 of f193f38a3cc6d080030471c9e032f4764fcbf4e5d1d10903d55aaaa2effbe93f 2025-06-04
FileHash-SHA1 4333138b138dd42adb28da0c2ba7df69c464611a SHA1 of 549e069ad47f3d686226e9bac0dd13d747654409b9f390e420a8b800c615ef1f 2025-06-04
FileHash-SHA1 43412c19aa9bd77adfe6d249648813c260e920aa SHA1 of 6a9caa5ec86ae50c6c85f58264ba5b32977a3086e8f557e13b4c441c059537d3 2025-06-04
FileHash-SHA1 4366a4690cc1a040f0bfefe710bb518bc08644cd SHA1 of 16002bc1ae8405413220532d9bbe0caf2595b15748b353337a31e0eed11bb03d 2025-06-04
FileHash-SHA1 43d67ea568e1350ab0f752043da5b62954d286bc SHA1 of c06ec1c9e779c368a450a5a7569b3e1123b2018e7311578bdf63435950bee3a0 2025-06-04
FileHash-SHA1 4401568f71a565a1613595dbd291dd610bc49ffe SHA1 of 8b6f20b8547d702ce9904321c323283bc3a421ce2d06ba767ca5f85c350dcabc 2025-06-04
FileHash-SHA1 443e39285ed063777beba403f95385b58ca226cc SHA1 of 2bfa8f8cb9f7040da43f14342303346c0a67084fb20f41c8eaf1f049c4f02cfc 2025-06-04
FileHash-SHA1 65aa879d2ebf7e4ea42cf131eec3d25ffae1ecea SHA1 of cf405be86f45e6c21a5cadee60e8d276f609639a1622b142d0e253dba5f45b50 2025-06-04
FileHash-SHA1 68baec323767c122f74a269d3aa6d49eb26903db SHA1 of 526426126ae5d326d0a24706c77d8c5c 2025-06-04
FileHash-SHA1 aee5fc3f62aa873cb2ecacfb89c4afc9b09ada41 SHA1 of 7c6804662acb18dc21dc55034f1b01f74ef21e38a06bcd1ab828ebf5fae95aac 2025-06-04
FileHash-SHA1 54aa9d94906ce8c50302d97ccc305bb191a452e6 2025-06-04
FileHash-SHA1 b93bc1e180674939b27ddd3f37be53d6d331394a 2025-06-04