← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
IOC - UAT-8302 and its box full of malware
WHITE UAT-8302 celestre 2026-05-12 Modified: 2026-05-12
50
IOCs
MEDIUM VOLUME
fringeporchnetdraftdraculoadersnowrustsnowlightzingdoorfinaldraftnosydoorvshelldeedratcloudsorcerersquiddoorsnappybee
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
NetDraft FringePorch CloudSorcerer VSHELL SNOWLIGHT SNOWRUST DeedRAT SNAPPYBEE ZingDoor Draculoader FinalDraft SquidDoor NosyDoor
Indicators of Compromise (4 / 50 total)
All IPv4 CVE FileHash-MD5 FileHash-SHA1 FileHash-SHA256 URL domain hostname
TYPEINDICATORDESCRIPTIONCREATED
URL http://msiidentity.com/pw 2026-05-12
URL http://trafficmanagerupdate.com/index.php 2026-05-12
URL http://www.drivelivelime.com/pw 2026-05-12
URL http://www.drivelivelime.com/x 2026-05-12
References (1)
↗ https://blog.talosintelligence.com/uat-8302/