← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
MAAS VIP_Keylogger Campaign
WHITE Tr1sa111 2026-03-18 Modified: 2026-04-15
16
IOCs
MEDIUM VOLUME
spear-phishingvip_keyloggerbrowser-targetingprocess-hollowing
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
VIP_Keylogger
Indicators of Compromise (16)
All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 hostname
TYPEINDICATORDESCRIPTIONCREATED
FileHash-MD5 694c313b660123f393332c2f0f7072b5 2026-03-18
FileHash-MD5 9375cff0413111d3b88a00104b2a6676 2026-03-18
FileHash-MD5 d1df5d64c430b79f7e0e382521e96a14 2026-03-18
FileHash-MD5 e7c42f2d0ff38f1b9f51dc5d745418f5 2026-03-18
FileHash-MD5 ea72845a790da66a7870da4da8924eb3 2026-03-18
FileHash-SHA1 079d198a000ae523f12c3c0f23b3697140d96a86 2026-03-18
FileHash-SHA1 4fc672fe7dd8272a4f4da6ffc078a91e234f04ee 2026-03-18
FileHash-SHA1 e48938008fc0faa1c7b47af5c0b25df4b37a6af3 2026-03-18
FileHash-SHA1 ee790ec841b7761679a05771d551a154c7f87a93 2026-03-18
FileHash-SHA256 03ae7b3bdaa1614aee51a35e9426ade258bb30498743467823bd80b19de0ad9b 2026-03-18
FileHash-SHA256 95892f0bc179246961e3cf5eeac444143a4f9b455ab740746dad3ecc32c93e62 2026-03-18
FileHash-SHA256 bba56d9918978e618e27cacf2997e3aeebed5d85bf657daaf0841b89b6cc4cb3 2026-03-18
FileHash-SHA256 ce4fda69ff042264003b4eb03bc158fc690aef8802aa1b1db8232a93a8bf0145 2026-03-18
hostname aborters.duckdns.org 2026-03-18
hostname anotherarmy.dns.army 2026-03-18
hostname varders.kozow.com 2026-03-18
References (1)
↗ https://labs.k7computing.com/index.php/maas-vip_keylogger-campaign