top of page
Tortoiseshell Group Targets IT Providers in Saudi Arabia in ...
C45-2019-09-18-9
Indicators of Compromise (IOC) List
Indicator of Compromise (IOC) | Date Published | IOC Type |
|---|---|---|
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system\Sendvmd
This holds the later portion of the URL to append to the C | 18/09/2019 | Win_Registry |
64.235.60.123 | 18/09/2019 | IPv4 |
02a3296238a3d127a2e517f4949d31914c15d96726fb4902322c065153b364b2 | 18/09/2019 | SHA-256 |
07d123364d8d04e3fe0bfa4e0e23ddc7050ef039602ecd72baed70e6553c3ae4 | 18/09/2019 | SHA-256 |
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system\Enablevmd
This contains the command and control | 18/09/2019 | Win_Registry |
f71732f997c53fa45eef5c988697eb4aa62c8655d8f0be3268636fc23addd193 | 18/09/2019 | SHA-256 |
d9ac9c950e5495c9005b04843a40f01fa49d5fd49226cb5b03a055232ffc36f3 | 18/09/2019 | SHA-256 |
64.235.39.45 | 18/09/2019 | IPv4 |
bottom of page