← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
VirusTotal report for executable.exe
WHITE msudosos 2026-04-30 Modified: 2026-05-30
627
IOCs
HIGH VOLUME
[The Yara malware sample was detected on 16 January 2023 and the full report has now been published on the Microsoft Research website, which looks at the most common types of malware and how to identify]
pe filefile typesamplesignaturesdrops pehipsascii textcrlf lineyaraspawnsmaliciouspersistenceformbookdefense evasionnextwindows sandboxcalls processazaz09homenetexternalnetet malwareformbook cnccheckinconnection3aclientendpointmalwaremoderatemajormsg:"et
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
msg:"ET
Indicators of Compromise (113 / 627 total)
All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 URL hostname domain email CVE
TYPEINDICATORDESCRIPTIONCREATED
URL http://www.gallerdo.info/hx183/ 2026-04-30
URL http://www.python.org/ 2026-04-30
URL https://support.mozilla.org 2026-04-30
URL https://www.oracle.com/technetwork/java/javase/downloads 2026-04-30
URL http://www.onamae.com 2026-04-30
URL https://icann.org/epp#ok 2026-04-30
URL https://icann.org/epp#serverTransferProhibited 2026-04-30
URL https://icann.org/epp#addPeriod 2026-04-30
URL http://buygmailaccounts.online/ 2026-04-30
URL http://digital4africa.online 2026-04-30
URL http://izmitescorttr.site/ 2026-04-30
URL http://nexiumesomeprazole.online/ 2026-04-30
URL http://noticiasdeportivas.site/ 2026-04-30
URL http://promoteapps.online/ 2026-04-30
URL http://tourdulich-sapa.com/ 2026-04-30
URL http://worldglobalnews.online/ 2026-04-30
URL https://artwinemoscow.online/ 2026-04-30
URL https://cafesecretoquemagrasa.online/ 2026-04-30
URL https://digital4africa.online 2026-04-30
URL https://digital4africa.online/da 2026-04-30
URL https://fresnodailynews.online/ 2026-04-30
URL https://hypothesis-road-i-258.site 2026-04-30
URL https://izmitescorttr.site/ 2026-04-30
URL https://nexiumesomeprazole.online/ 2026-04-30
URL https://nodanswalther.site/Acceptable-Offering-To-God/doc/sitedomen/7|19056|3|1|1|1 2026-04-30
URL https://noticiasdeportivas.site/ 2026-04-30
URL https://porno-kino.online/ 2026-04-30
URL https://posta-sk.online 2026-04-30
URL https://router.parklogic.com/adpocjqfh 2026-04-30
URL https://router.parklogic.com/afdymifv 2026-04-30
URL https://router.parklogic.com/axoqqbar 2026-04-30
URL https://router.parklogic.com/bmvfsnkdjlcos 2026-04-30
URL https://router.parklogic.com/eoysua 2026-04-30
URL https://router.parklogic.com/gji 2026-04-30
URL https://router.parklogic.com/lfmdjg 2026-04-30
URL https://router.parklogic.com/nodeyuauvyvxe 2026-04-30
URL https://router.parklogic.com/pea 2026-04-30
URL https://router.parklogic.com/rjqwhv 2026-04-30
URL https://router.parklogic.com/seprfd 2026-04-30
URL https://router.parklogic.com/tbpg 2026-04-30
URL https://router.parklogic.com/tdsdtn 2026-04-30
URL https://router.parklogic.com/ttckijasot 2026-04-30
URL https://router.parklogic.com/vmrjdtjvmie 2026-04-30
URL https://router.parklogic.com/vtpbrwlrbuo 2026-04-30
URL https://router.parklogic.com/wvunyqjvuxi 2026-04-30
URL https://router.parklogic.com/xagk 2026-04-30
URL https://router.parklogic.com/ysgidmti 2026-04-30
URL https://router.parklogic.com/yyjnbriywqaqs 2026-04-30
URL http://84.38.134.56/procdump.gif 2026-04-30
URL https://www.boho.or.kr/en/bbs/view.do?searchCnd=&bbsId=B0001041&searchWrd=&menuNo=205083&pageIndex=1&categoryCode=&nttId=36276 2026-04-30
URL https://thecyberwire.com/podcasts/microsoft-threat-intelligence 2026-04-30
URL http://www.facebook.com/groups/historicroute66/posts/2958441027692069/#:~:text=Heather%20Marie%20Martz 2026-04-30
URL http://www.mwm.ai/apps/roadside-66/6747320104.com 2026-04-30
URL http://mwm.ai 2026-04-30
URL https://mwm.ai 2026-04-30
URL https://mwm.ai/apps/ai-yi-fan-hai-liang-dian-ying-zi-yuan-gao-qing-liu-chang/6745865656 2026-04-30
URL https://mwm.ai/apps/ccb-hk-mo-mobile-app/1434519981 2026-04-30
URL https://mwm.ai/apps/ecogpt-save-the-world/6756059656 2026-04-30
URL https://mwm.ai/apps/mystery-farm-family-adventure/6739699049 2026-04-30
URL https://mwm.ai/apps/onews/6754591885 2026-04-30
URL https://mwm.ai/apps/purecheck-scan-food-cosmetic/1662348653 2026-04-30
URL https://mwm.ai/apps/rupaul-s-drag-race-match-queen/6476321629 2026-04-30
URL https://mwm.ai/apps/tyt-truyen-full-offline/1181034234 2026-04-30
URL https://mwm.ai/de/apps/cake-recipes-with-ai-baker/6758480175 2026-04-30
URL https://mwm.ai/de/apps/fred-tv-open-source-iptv/6742751800 2026-04-30
URL https://mwm.ai/es/apps/focus-town-study-with-friends/6758457625 2026-04-30
URL https://mwm.ai/es/apps/loopit-make-playables/6755859360 2026-04-30
URL https://mwm.ai/it/apps/ai-skin-maker-editor/1583570913 2026-04-30
URL https://mwm.ai/it/apps/ifs-mwo-maintenance-classic 2026-04-30
URL https://mwm.ai/it/apps/pitch-match-train-your-ears/6745250146 2026-04-30
URL https://mwm.ai/ko/apps/outfit-check-fashion-finder/6476243809 2026-04-30
URL http://www.facebook.com/groups/historicroute66/posts/2958441027692069/#:~:text=Heather%20Marie%20Martz 2026-04-30
URL http://www.mwm.ai/apps/roadside-66/6747320104.com 2026-04-30
URL http://mwm.ai 2026-04-30
URL https://mwm.ai 2026-04-30
URL https://mwm.ai/apps/ai-yi-fan-hai-liang-dian-ying-zi-yuan-gao-qing-liu-chang/6745865656 2026-04-30
URL https://mwm.ai/apps/ccb-hk-mo-mobile-app/1434519981 2026-04-30
URL https://mwm.ai/apps/ecogpt-save-the-world/6756059656 2026-04-30
URL https://mwm.ai/apps/mystery-farm-family-adventure/6739699049 2026-04-30
URL https://mwm.ai/apps/onews/6754591885 2026-04-30
URL https://mwm.ai/apps/purecheck-scan-food-cosmetic/1662348653 2026-04-30
URL https://mwm.ai/apps/rupaul-s-drag-race-match-queen/6476321629 2026-04-30
URL https://mwm.ai/apps/tyt-truyen-full-offline/1181034234 2026-04-30
URL https://mwm.ai/de/apps/cake-recipes-with-ai-baker/6758480175 2026-04-30
URL https://mwm.ai/de/apps/fred-tv-open-source-iptv/6742751800 2026-04-30
URL https://mwm.ai/es/apps/focus-town-study-with-friends/6758457625 2026-04-30
URL https://mwm.ai/es/apps/loopit-make-playables/6755859360 2026-04-30
URL https://mwm.ai/it/apps/ai-skin-maker-editor/1583570913 2026-04-30
URL https://mwm.ai/it/apps/ifs-mwo-maintenance-classic 2026-04-30
URL https://mwm.ai/it/apps/pitch-match-train-your-ears/6745250146 2026-04-30
URL https://mwm.ai/ko/apps/outfit-check-fashion-finder/6476243809 2026-04-30
URL http://mwm.ai 2026-04-30
URL http://www.mwm.ai/apps/roadside-66/6747320104.com 2026-04-30
URL https://mwm.ai 2026-04-30
URL https://mwm.ai/apps/ai-yi-fan-hai-liang-dian-ying-zi-yuan-gao-qing-liu-chang/6745865656 2026-04-30
URL https://mwm.ai/apps/ccb-hk-mo-mobile-app/1434519981 2026-04-30
URL https://mwm.ai/apps/ecogpt-save-the-world/6756059656 2026-04-30
URL https://mwm.ai/apps/mystery-farm-family-adventure/6739699049 2026-04-30
URL https://mwm.ai/apps/onews/6754591885 2026-04-30
URL https://mwm.ai/apps/purecheck-scan-food-cosmetic/1662348653 2026-04-30
URL https://mwm.ai/apps/rupaul-s-drag-race-match-queen/6476321629 2026-04-30
URL https://mwm.ai/apps/tyt-truyen-full-offline/1181034234 2026-04-30
URL https://mwm.ai/de/apps/cake-recipes-with-ai-baker/6758480175 2026-04-30
URL https://mwm.ai/de/apps/fred-tv-open-source-iptv/6742751800 2026-04-30
URL https://mwm.ai/es/apps/focus-town-study-with-friends/6758457625 2026-04-30
URL https://mwm.ai/es/apps/loopit-make-playables/6755859360 2026-04-30
URL https://mwm.ai/it/apps/ai-skin-maker-editor/1583570913 2026-04-30
URL https://mwm.ai/it/apps/ifs-mwo-maintenance-classic 2026-04-30
URL https://mwm.ai/it/apps/pitch-match-train-your-ears/6745250146 2026-04-30
URL https://mwm.ai/ko/apps/outfit-check-fashion-finder/6476243809 2026-04-30
URL http://www.facebook.com/groups/historicroute66/posts/2958441027692069/#:~:text=Heather%20Marie%20Martz 2026-04-30
URL https://mwm.ai/apps/toefl-practice-test/6471841387 2026-04-30
URL https://spark.mwm.ai/en/apps/tamanna-bnpl/1589278455 2026-04-30
References (2)
↗ https://vtbehaviour.commondatastorage.googleapis.com/55df12366f4fdd8bd59c392bfb9b6b3830b03ae15cda3d31bfec0b0aa9d11b10_Zenbox.html?GoogleAccessId=758681729565-rc7fgq07icj8c9dm2gi34a4cckv235v1@developer.gserviceaccount.com&Expires=1777521929&Signature=ko7K7%2BzvBx9Hy15brk86WUuEDCVjAvIYADj8FFjCVDNDpNUnP%2BNCTKkNyrRVq0PhW9R5t6%2BbuOLgqE6EOaQkTtTxKDvwd3vVEr05serzPyKhQ41%2FliJW0pvODbZ2pAVLZQaDVonbEDszVTFTTWHoTBRb2Zg%2Buqvwc4%2FvOUSOE9JxiFdf2ju%2FTVyLHRr0Ha%2F9cND2fpZsNndAgcUNXWRG4lQxS%2BtT7Vj98%2Bym12XfiV9d%2BdpF ↗ https://vtbehaviour.commondatastorage.googleapis.com/fd8f8402bcc0ab9c896433464d13e11d1f519f064496280d493a55fda86a5c23_VirusTotal%20Jujubox.html?GoogleAccessId=758681729565-rc7fgq07icj8c9dm2gi34a4cckv235v1@developer.gserviceaccount.com&Expires=1777522125&Signature=gj0mZHrVuHo8drmVW6Za274Y%2B%2FJpTFtNTkz%2ByHr9nheaDG78mV23JwRvSopqBA7%2Fkr7DSNgXcOWhGQnNFST6fpS6LMKxqtZ3x24mDO7rFcZJMTb14GFB71mn1a0W9grmyEYe1WxMGU%2FDCd2VNoYul0%2Fyszkeb8u5mHXQdw4niujdzg%2FPXKAebwYAYVnqwMDUJ0zvnQowWeGz%2FrbMm4saHkZoahsvXdihbtXDi6nR