← Back to Pulse Feed
PULSE DETAIL
A sample of malware has been found on a Windows operating system by researchers at the University of California, San Francisco, and the US National Security Agency (NSA) in New York, which is part of the Malware Research Unit.
Indicators of Compromise (24)
| TYPE | INDICATOR | DESCRIPTION | CREATED | |
|---|---|---|---|---|
| FileHash-MD5 | aaddb47104d94939d9d2caa975db2cab | MD5 of b4246b529fa6aa05e1d146070c64a8eacbccb9e1 | 2026-04-01 | |
| FileHash-SHA1 | b4246b529fa6aa05e1d146070c64a8eacbccb9e1 | — | 2026-04-01 | |
| FileHash-SHA256 | 00000006e9d3a7e85d1f1e7711787b9a117655e249a565122ee12e9962199007 | SHA256 of b4246b529fa6aa05e1d146070c64a8eacbccb9e1 | 2026-04-01 | |
| URL | http://chcp.com:2972 | — | 2026-04-01 | |
| URL | http://rmansys.ru/utils/inet_id_notify.php?test=1 | — | 2026-04-01 | |
| URL | http://rmansys.ru:80 | — | 2026-04-01 | |
| domain | chcp.com | — | 2026-04-01 | |
| domain | rmansys.ru | — | 2026-04-01 | |
| hostname | curenet.drweb.com | — | 2026-04-01 | |
| hostname | estore.drweb.com | — | 2026-04-01 | |
| hostname | free.drweb.com | — | 2026-04-01 | |
| hostname | www.drweb.com | — | 2026-04-01 | |
| FileHash-MD5 | aaddb47104d94939d9d2caa975db2cab | MD5 of b4246b529fa6aa05e1d146070c64a8eacbccb9e1 | 2026-04-01 | |
| FileHash-SHA1 | b4246b529fa6aa05e1d146070c64a8eacbccb9e1 | — | 2026-04-01 | |
| FileHash-SHA256 | 00000006e9d3a7e85d1f1e7711787b9a117655e249a565122ee12e9962199007 | SHA256 of b4246b529fa6aa05e1d146070c64a8eacbccb9e1 | 2026-04-01 | |
| URL | http://chcp.com:2972 | — | 2026-04-01 | |
| URL | http://rmansys.ru/utils/inet_id_notify.php?test=1 | — | 2026-04-01 | |
| URL | http://rmansys.ru:80 | — | 2026-04-01 | |
| domain | chcp.com | — | 2026-04-01 | |
| domain | rmansys.ru | — | 2026-04-01 | |
| hostname | curenet.drweb.com | — | 2026-04-01 | |
| hostname | estore.drweb.com | — | 2026-04-01 | |
| hostname | free.drweb.com | — | 2026-04-01 | |
| hostname | www.drweb.com | — | 2026-04-01 |