IOC Radar
TLP:WHITE19 IOCs

ICS Threat Analysis: New, Experimental Malware Can Kill Engineering Processes

BO
Botvrij.eu OSINT Feed
Published December 31, 2024Original Report

Diamond Model

SOCIAL AXISTECHNOLOGY AXISADVERSARYunknownINFRASTRUCTURE198.185.159.144discord.com/api/webho…x86assembly.xyzCAPABILITYunknownVICTIMunknown
Adversary
Infrastructure(6)
Capability
Victim

5W+H Threat Analysis

Analysis unavailable

Indicators of Compromise

Indicators of Compromise19

TypeIndicatorConfidenceScoreFirst Seen
SHA2568b585155cdc7fcbe3d2fa169b307756557ef0d69afb392726f577a73f11d5a97
file-hashloadermalware
High
68
Jun 2, 26
IP198.185.159.144
malwarenetworkproxy
High
68
Jun 2, 26
SHA2561b8957804dfa7324d10bf6d7ca22fc038951ab57ab1e6838da9c63ad057c1d20
file-hashloadermalware
High
68
Jun 2, 26
URLdiscord.com/api/webhooks/1291410641793454080/
malwarenetworkrat
High
68
Jun 2, 26
SHA256703f0aac78d388f1fbe3800697015d092fa70cea2c01f22f456c8b1aa20a2334
file-hashloadermalware
High
68
Jun 2, 26
SHA2565ec05f903cc94d559b8eb23aa749805b78de2845bd2317017bc8e50cdceb613f
file-hashloadermalware
High
68
Jun 2, 26
SHA256fd8558b8a4165ebb47f120fa237c2ada306c430ae4cb2109eb644fd8b0b82b15
file-hashloadermalware
High
68
Jun 2, 26
Domainx86assembly.xyz
malwarenetworkrat
High
68
Jun 2, 26
Domainaz-security.info
indicatornetwork
High
68
Jun 2, 26
SHA2565b63ca75f95dc549729bb6261e9dc22f6425547584366188770507bd964221b4
file-hashloadermalware
High
68
Jun 2, 26
Domain432i.com
loadermalwarenetwork
High
68
Jun 2, 26
URLhttps://www.forescout.com/blog/ics-threat-analysis-new-experimental-malware-can-kill-engineering-processes/
loadermalwarenetwork
High
68
Jun 2, 26
SHA256a1d721db0583eed0077bb8ab542ff15a806d24e2dbf13557b12842bd49995354
file-hashloadermalware
High
68
Jun 2, 26
Domaingrpaper.com
indicatornetwork
High
68
Jun 2, 26
URLdiscord.com/api/webhooks/iamawebhookfrfr/69696969
malwarenetworkrat
High
68
Jun 2, 26
SHA256ad5922bcc740e5761a708c526d023450ca278168ebcefaaf80f85815d6d6d24e
file-hashloadermalware
High
68
Jun 2, 26
SHA25669eb2b940ba1fc7bc46699eeb3ff11d921683609f636efae05c0cb796b588a38
file-hashloadermalware
High
68
Jun 2, 26
Domain0g0d.com
indicatornetwork
High
68
Jun 2, 26
SHA256c1826e0d310a6a02f2ee1b5d88b6c0dd48baa8fe1dd99447e98e42c4ca023c96
file-hashloadermalware
High
68
Jun 2, 26

IOC Relationship Graph

IOC Relationship Graph19 total IOCs
SHA256IPURLDomain
SHA25610Domain5URL3IP1REPORTICS Threat Analysis: New,
scroll to zoom · drag to pan · click IOC to open