← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Threat Actors Using LNK Files and GitHub for Stealthy C2 Operations
Attackers launch phishing campaigns using malicious LNK files disguised as PDFs to deliver hidden PowerShell scripts.
Indicators of Compromise (11)
| TYPE | INDICATOR | DESCRIPTION | CREATED | |
|---|---|---|---|---|
| FileHash-MD5 | 27e6e0a34ec234f7a1ca45997c8a1dbe | MD5 of af0309aa38d067373c54b2a7774a32f68ab72cb2dbf5aed74ac784b079830184 | 2026-04-03 | |
| FileHash-MD5 | 81132c36a3738c7213e6aeada8e8c296 | MD5 of 9c3f2bd300ad2ef8584cc48adc47aab61bf85fc653d923e106c73fc6ec3ea1dc | 2026-04-03 | |
| FileHash-MD5 | b59d53f571e76a370e256bbc265716ff | MD5 of 484a16d779d67c7339125ceac10b9abf1aa47f561f40058789bfe2acda548282 | 2026-04-03 | |
| FileHash-SHA1 | 50a5b368b38ee85c6c8ce5300d17b1a2e9a2a8e3 | SHA1 of 484a16d779d67c7339125ceac10b9abf1aa47f561f40058789bfe2acda548282 | 2026-04-03 | |
| FileHash-SHA1 | 7b77bfe2cb48551c66666cf4caef33fbc6cde6b7 | SHA1 of af0309aa38d067373c54b2a7774a32f68ab72cb2dbf5aed74ac784b079830184 | 2026-04-03 | |
| FileHash-SHA1 | aacdff107f7971c6bd60ecc310e009baf8bfe120 | SHA1 of 9c3f2bd300ad2ef8584cc48adc47aab61bf85fc653d923e106c73fc6ec3ea1dc | 2026-04-03 | |
| FileHash-SHA256 | 484a16d779d67c7339125ceac10b9abf1aa47f561f40058789bfe2acda548282 | — | 2026-04-03 | |
| FileHash-SHA256 | 9c3f2bd300ad2ef8584cc48adc47aab61bf85fc653d923e106c73fc6ec3ea1dc | — | 2026-04-03 | |
| FileHash-SHA256 | af0309aa38d067373c54b2a7774a32f68ab72cb2dbf5aed74ac784b079830184 | — | 2026-04-03 | |
| FileHash-SHA256 | c0866bb72c7a12a0288f434e16ba14eeaa35d3c4cff4a86046c553c15679c0b5 | — | 2026-04-03 | |
| FileHash-SHA256 | f20fde3a9381c22034f7ecd4fef2396a85c05bfd54f7db3ad6bcd00c9e09d421 | — | 2026-04-03 |