← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Chinese Hackers Deploy Rootkit to Conceal ToneShell Malware Operations
A new variant of the ToneShell backdoor attributed to the Mustang Panda
group has been deployed
Indicators of Compromise (5)
| TYPE | INDICATOR | DESCRIPTION | CREATED | |
|---|---|---|---|---|
| FileHash-MD5 | 36f121046192b7cac3e4bec491e8f1b5 | — | 2025-12-30 | |
| FileHash-MD5 | abe44ad128f765c14d895ee1c8bad777 | — | 2025-12-30 | |
| FileHash-MD5 | fe091e41ba6450bcf6a61a2023fe6c83 | — | 2025-12-30 | |
| domain | avocadomechanism.com | — | 2025-12-30 | |
| domain | potherbreference.com | — | 2025-12-30 |