TLP:WHITE11 IOCs
State-backed attackers and commercial surveillance vendors repeatedly use the same exploits
Diamond Model
Adversary
Infrastructure(4)
Capability
Victim
5W+H Threat Analysis
Analysis unavailable
Indicators of Compromise
Indicators of Compromise11
| Type | Indicator | Confidence | Score | First Seen |
|---|---|---|---|---|
| SHA256 | 21682218bde550b2f06ee2bb4f6a39cff29672ebe27acbb3cee5db79bf6d7297 file-hashloadermalware | High | 68 | Jun 2, 26 |
| SHA256 | d19dcbb7ab91f908d70739968b14b26d7f6301069332609c78aafc0053b6a7e1 exploitfile-hashloader | High | 68 | Jun 2, 26 |
| SHA256 | df21c2615bc66c369690cf35aa5a681aed1692a5255d872427a2970e2894b2e3 file-hashloadermalware | High | 68 | Jun 2, 26 |
| URL | https://track-adv.com/market-analytics.php?pc=1 loadermalwarenetwork | High | 68 | Jun 2, 26 |
| CVE | CVE-2023-41993 exploitvulnerability | High | 68 | Jun 2, 26 |
| SHA256 | 8bd9a73da704b4d7314164bff71ca76c15742dcc343304def49b1e4543478d1a exploitfile-hashloader | High | 68 | Jun 2, 26 |
| CVE | CVE-2024-4671 exploitloadermalware | High | 68 | Jun 2, 26 |
| CVE | CVE-2024-5274 exploitloadermalware | High | 68 | Jun 2, 26 |
| URL | https://ceo-adviser.com/fb-connect.php?online=1 loadermalwarenetwork | High | 68 | Jun 2, 26 |
| URL | https://track-adv.com/analytics.php?personalization_id=<random networkurl | High | 68 | Jun 2, 26 |
| URL | https://track-adv.com/analytics.php malwarenetworkstealer | High | 68 | Jun 2, 26 |
IOC Relationship Graph
IOC Relationship Graph11 total IOCs
SHA256URLCVE