← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Lotus Blossum
WHITE UCP_GoA23 2026-04-30 Modified: 2026-05-30
380
IOCs
HIGH VOLUME
d3bf06f3c6b8cf115f386f853939819f22bb0b9c412ac3696c143ea3440e5bc3 - 04.29.26 - Bitdefender Renamed Submission Wizard & Lotus Blossum LOTUS PANDA (Malpedia) aka: ATK1, BRONZE ELGIN, Billbug, DRAGONFISH, G0030, Lotus BLossom, Lotus Blossom, Red Salamander, ST Group, Spring Dragon Lotus Blossom is a threat group that has targeted government and military organizations in Southeast Asia.
Indicators of Compromise (35 / 380 total)
All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 URL domain hostname CVE
TYPEINDICATORDESCRIPTIONCREATED
FileHash-SHA1 5d1fde3d50692b7ffe5ac6f0b9db84b1f4459d03 SHA1 of 0000091f9706020523490186f1fb73ebc316f649571802d9df16dd0052f67ea3 2026-04-30
FileHash-SHA1 06a4ae8e9ed61d79574dcee5a296a439ad5098aa SHA1 of ef3ed99455e193bf67cf16ad5f4de7d3e6cd527d18b5ca5a72eed15f6da77658 2026-04-30
FileHash-SHA1 0ad1e76729a0f0c06587245b8921500b67325919 SHA1 of 80c2084ba85873499c6d6b5e869acaeb8cfd9fba8720676fc81ae34fd7b94e71 2026-04-30
FileHash-SHA1 14bdccbcd8efa754ef4406732bcbf15ce6561de8 SHA1 of dc8f0117287729a5c27fb04a68186f034c4a093b33d60867ae65d9e8ea413106 2026-04-30
FileHash-SHA1 287208b33c407a0b361d0ce2767111875e20a9f3 SHA1 of 411d4b3df3807e19bca735fd7415be9bbbfa9a87293a2d16bc53dda75845e50f 2026-04-30
FileHash-SHA1 3b2a9222a517140647d5968285b3510ddaa0002d SHA1 of 3ab973236992756da0d79e2f634dd06ceb83bed9dc015cee0074cf26406c7e24 2026-04-30
FileHash-SHA1 4352529a4b0f06fa42db3e9853ffd70fac6e9e50 SHA1 of 000000f24100cf5d9bf816c89f9bb5f538f5c703a89a6d6c58afb15c00b38fcb 2026-04-30
FileHash-SHA1 43bb72b74af0438f22e66357cf1ece8a5a1711bb SHA1 of 0000057d8815c841a6eb3a2579f93bbf4647838d2cea489e9fcf566a92e2660b 2026-04-30
FileHash-SHA1 5579072a1079ccc3bb5739811e85583deea8c221 SHA1 of 0000f89067d9fbf51cad68aedb0866b1b233056f4b1d704162721aa274ef0d22 2026-04-30
FileHash-SHA1 5c76f78557272529606d5fcbd48d730a4819b61c SHA1 of 1f37123247298a501eca04373695d9a6230e7df4c0579cb1732804c62e094ac0 2026-04-30
FileHash-SHA1 689602fbf63716efa1e357a07dde77b6dbfaa2a2 SHA1 of 75a197152306a2f6cef1ceedc8c563521faf7434e1b333c09cce65c39748bbd3 2026-04-30
FileHash-SHA1 778a5f5fc8fe935a8c26b56e26ab83d40c9c5857 SHA1 of fb6e8adc90db90f6562e82d2f057e891e316da0b85376b9f88df2243efcea4e9 2026-04-30
FileHash-SHA1 8dd1aee1f5703c7dbc12f1d42a0a615c221b6583 SHA1 of 13999bae6eaa45724faaa587ff3eb16747b6049543dc92fa5ae8c211e5f9ae7c 2026-04-30
FileHash-SHA1 9abcf625c5ca848b6da99f730b465fda257866b1 SHA1 of 2542415ae934de41b4160284f2e6fe4f4e99e14d5fbb2a620073b554e4c5f6c5 2026-04-30
FileHash-SHA1 ac3b356d62513f15d77cd8a7d5bdf5941c09d94b SHA1 of 0000b9d43cfea9d566c0f0cd73007146c8eb82303cc41906cabd75b8bf67aa76 2026-04-30
FileHash-SHA1 b3128c585822c275a55c7e16cc05b0ca459e3cb4 SHA1 of 0000098f9ee549903446e74267e3a638192bd374f1c05373b0671e5418b323b0 2026-04-30
FileHash-SHA1 b4246b529fa6aa05e1d146070c64a8eacbccb9e1 SHA1 of 00000006e9d3a7e85d1f1e7711787b9a117655e249a565122ee12e9962199007 2026-04-30
FileHash-SHA1 c1d8197beec89fe49e4e37c7cd36082feb08d3bb SHA1 of 0000065165bca1fb7f7d913edaa7e4cfec922627783c2aea7df129472aaa710f 2026-04-30
FileHash-SHA1 c669fa0c1f91b7e8614981ee39f934f7903b0d15 SHA1 of 00000534fae536364d2f7ec107d98f5227638f3a3a54968b7eddb4f578f3b243 2026-04-30
FileHash-SHA1 e9e702d3758017eafde823891fc36605f8d3e5c3 SHA1 of d305201937be393085a1d7216ac3734871d5fdff89f5f548682bcc410e2086ee 2026-04-30
FileHash-SHA1 f5f53228407bcc5480a191bcb2fb08a56dbeefbe SHA1 of f286fa845f03e0781763ac2eb110390f9e5c1ff18fa20db844465eb46e8264c5 2026-04-30
FileHash-SHA1 d7ffd7b588880cf61b603346a3557e7cce648c93 SHA1 of a511be5164dc1122fb5a7daa3eef9467e43d8458425b15a640235796006590c9 2026-04-30
FileHash-SHA1 07d2a01e1dc94d59d5ca3bdf0c7848553ae91a51 SHA1 of 078a9e5c6c787e5532a7e728720cbafee9021bfec4a30e3c2be110748d7c43c5 2026-04-30
FileHash-SHA1 21a942273c14e4b9d3faa58e4de1fd4d5014a1ed SHA1 of 2da00de67720f5f13b17e9d985fe70f10f153da60c9ab1086fe58f069a156924 2026-04-30
FileHash-SHA1 3090ecf034337857f786084fb14e63354e271c5d SHA1 of b4169a831292e245ebdffedd5820584d73b129411546e7d3eccf4663d5fc5be3 2026-04-30
FileHash-SHA1 7e0790226ea461bcc9ecd4be3c315ace41e1c122 SHA1 of 77bfea78def679aa1117f569a35e8fd1542df21f7e00e27f192c907e61d63a2e 2026-04-30
FileHash-SHA1 813ace987a61af909c053607635489ee984534f4 SHA1 of 4c2ea8193f4a5db63b897a2d3ce127cc5d89687f380b97a1d91e0c8db542e4f8 2026-04-30
FileHash-SHA1 94dffa9de5b665dc51bc36e2693b8a3a0a4cc6b8 SHA1 of 8ea8b83645fba6e23d48075a0d3fc73ad2ba515b4536710cda4f1f232718f53e 2026-04-30
FileHash-SHA1 9c0eff4deeb626730ad6a05c85eb138df48372ce SHA1 of fcc2765305bcd213b7558025b2039df2265c3e0b6401e4833123c461df2de51a 2026-04-30
FileHash-SHA1 9f227d460fb0ab94b063b9ef9a084c328a12a3cd SHA1 of f4d829739f2d6ba7e3ede83dad428a0ced1a703ec582fc73a4eee3df3704629a 2026-04-30
FileHash-SHA1 9fbf2195dee991b1e5a727fd51391dcc2d7a4b16 SHA1 of e7cd605568c38bd6e0aba31045e1633205d0598c607a855e2e1bca4cca1c6eda 2026-04-30
FileHash-SHA1 bd4915b3597942d88f319740a9b803cc51585c4a SHA1 of 831e1ea13a1bd405f5bda2b9d8f2265f7b1db6c668dd2165ccc8a9c4c15ea7dd 2026-04-30
FileHash-SHA1 c68d09dd50e357fd3de17a70b7724f8949441d77 SHA1 of 0a9b8df968df41920b6ff07785cbfebe8bda29e6b512c94a3b2a83d10014d2fd 2026-04-30
FileHash-SHA1 d0662eadbe5ba92acbd3485d8187112543bcfbf5 SHA1 of 7add554a98d3a99b319f2127688356c1283ed073a084805f14e33b4f6a6126fd 2026-04-30
FileHash-SHA1 f7910d943a013eede24ac89d6388c1b98f8b3717 SHA1 of 3bdc4c0637591533f1d4198a72a33426c01f69bd2e15ceee547866f65e26b7ad 2026-04-30
References (5)
↗ https://www.virustotal.com/graph/embed/g3b6db1f2b1d74e569bcf8eadfa2dd64f7fc608cc250c4910b1ab9dc0eb4d5b32?theme=dark ↗ https://www.virustotal.com/gui/collection/2de6ecd25ac73148e5c495ed2d6b16f1f205a1ab0281f4f7ba4be722c315f8fe/iocs ↗ https://www.virustotal.com/gui/collection/2de6ecd25ac73148e5c495ed2d6b16f1f205a1ab0281f4f7ba4be722c315f8fe/summary ↗ https://malpedia.caad.fkie.fraunhofer.de/actor/lotus_panda ↗ https://www.rapid7.com/blog/post/tr-chrysalis-backdoor-dive-into-lotus-blossoms-toolkit/