Pulse Detail — Threat Intelligence

PULSE NAME

CrowdStrike Falcon Prevents NPM Package Supply Chain Attacks (Shai-Halud)

WHITE Blue-line 2025-09-17 Modified: 2025-09-17

IOCs

MEDIUM VOLUME

CrowdStrike Falcon Prevents NPM Package Supply Chain Attacks (Shai-Halud) These indicators are provided by CrowdStrike. Reference URL provided.

MITRE ATT&CK & Malware Families

ATT&CK TECHNIQUES

MALWARE FAMILIES

Scavenger

Indicators of Compromise (11 / 25 total)

All CVE FileHash-MD5 FileHash-SHA1 FileHash-SHA256 URL domain

TYPE	INDICATOR	DESCRIPTION	CREATED
URL	https://dieorsuffer.com/c/k2	—	2025-09-17
URL	https://firebase.su/c/k2	—	2025-09-17
URL	https://smartscreen-api.com/c/k2	—	2025-09-17
URL	http://www.dieorsuffer.com/	—	2025-09-17
URL	http://kamrlx7bc5bg.dieorsuffer.com/	—	2025-09-17
URL	https://dieorsuffer.com/redirect	—	2025-09-17
URL	https://npnjs.com/login	—	2025-09-17
URL	https://www.firebase.su/	—	2025-09-17
URL	https://firebase.su/redirect	—	2025-09-17
URL	http://www.firebase.su/	—	2025-09-17
URL	https://www.dieorsuffer.com/	—	2025-09-17

References (1)