C45-2019-10-12-9

Indicator of Compromise (IOC)	Date Published	IOC Type
6be61289884c2bd01ddade32649d23fac7bc0ba4591f3eed911101eb44c5181b	12/10/2019	SHA-256
6f8ed68f17904767ecd16b1cb1943caa8f474912bffc930082e64512fa48f96f	12/10/2019	SHA-256
HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN Value Name	12/10/2019	Win_Registry
HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED Value Name	12/10/2019	Win_Registry
HKLM\SYSTEM\CONTROLSET001\SERVICES\MINIMUMPIXEL 13 Mutexes Occurrences Global\I98B68E3C 13 Global\M98B68E3C 13 Global\M3C28B0E4 13 Global\I3C28B0E4 13 IP Addresses contacted by malware. Does not indicate maliciousness Occurrences 80.11.163.139 11 85.54.169.141 10 185.14.187.201 4 45.79.188.67 4 63.142.253.122 4 67.225.229.55 3 193.70.18.144 2 193.252.22.86 2 17.36.205.74 2 212.227.15.142 2 213.180.147.145 2 52.96.40.242 2 62.149.157.55 2 217.116.0.228 2 62.149.128.179 2 173.194.68.108	12/10/2019	Win_Registry
9a1e0bdf466b43e51e62125b6de07886	12/10/2019	MD5
75c817a4d49bc40781537143aabad6f0496129120503b7276854e9db15b4a965	12/10/2019	SHA-256
HKLM\SYSTEM\CONTROLSET001\SERVICES\MINIMUMPIXEL Value Name	12/10/2019	Win_Registry
6812985cee6342855219205500bd1bb53300d552f17b88dbeeab1cdad32e55bf	12/10/2019	SHA-256
5cdc406d0cfc60b4a6b5cce5411932f250bcf7c60863e71111f461130c2d942f	12/10/2019	SHA-256
658f7d3524bc9db586321be2fb22b1d832cd6f80328dcdbecdfc2734ff45487a	12/10/2019	SHA-256
6516b8c920ae407765804372470187aa6749d1f598e87b7dbe8bf47291039568	12/10/2019	SHA-256
52f3ac52e9e2e9ebaba6da86ea629ad07b2017a44a5be6f66a576853341cc1ca	12/10/2019	SHA-256
607ac8ad70dc43765ea3954c09b2dbe320f7dbe4fe9fee9b07fab9e855aef37b	12/10/2019	SHA-256
607473f50e64388087985abb0bb05caa8688a1a17c25607508bb2a3a8a62fc13	12/10/2019	SHA-256
51cd17e592d2ebadfd3f15ca6b542f78b2adb4f26b7eaf8c254e849ee141bcc4	12/10/2019	SHA-256
50bf198fb00ff18f6b08b9aff48c8b5ffcc85cc0dcda23a0359f413113fd6207	12/10/2019	SHA-256
4d30d13f5454bc30c92643657d4113a4008e09cd06491e1f73801a14b5415cf5	12/10/2019	SHA-256
4c6c1e0eb3b508e3bd525b4ce71a1309d231b218f7172bfb5da57a93a050ab5c	12/10/2019	SHA-256
47b69664dd70b8ed9e0f369640f4dfd27a5a33b8bd3d83d572b667551d6465cd	12/10/2019	SHA-256
48b14ad94dbfe648d7ef4cbce8debeec6b009d9972cb026f7f4ecfea72ae380d	12/10/2019	SHA-256
47cbf5466f14bacd5dae7a217a85673048245844e39d081ce4009aa8bbdf0743	12/10/2019	SHA-256
25f1eb50680c50626387a6e2c28a9278172dadbb61113f984a9c0074db4a3514	12/10/2019	SHA-256
37715e5cfc32e42ccd741a8ca0b17276c76b9d28c2ab4ab4edc4ba712cfe98a4	12/10/2019	SHA-256
35588e1d2203194ae0524d551d9a5d45bccbfbd9ef226a25e223c4e626db8e7e	12/10/2019	SHA-256
0755dff6699aebb40a37368f78ed9a7b66d3e24d039af8cdd2ad13b8ef969273	12/10/2019	SHA-256
11aa23a13c9a53dae82684af6adf9835fe027550d5b9bfd21604ab1261c97224	12/10/2019	SHA-256
1191f1f7a73c262102b8ec25f2aecefc26eef287e55934e608ba510b45bff3db	12/10/2019	SHA-256
0e2cb655432353bc5f362692d75f76b1deb6d4c339db1eacb671731c5f23a733	12/10/2019	SHA-256
8536b9a9da4f0b6930ed148166800147062e93f6c31ad70f61eb7ed174383c80	12/10/2019	SHA-256
84b677c976458077b79120064fe7aa275ad33d19d7651425f3faf6cd717fc520	12/10/2019	SHA-256
0209860624b9650a80e8e7ccd913c68bbd5e4be9e503c2a1b554c6b3b94861a1	12/10/2019	SHA-256
8232b50475cf369b325dc6866d6b88c27245faf7e572a3629b5c0ad3a88cbd72	12/10/2019	SHA-256
89f1ede2d77a45043f2ce760265d21a512f5e5b011cde43f76c3b968214530e5	12/10/2019	SHA-256
7f285a63779f27c9793b5fdcdcc9f8e8d48207298cb4c3cd18e27889c2dd052a	12/10/2019	SHA-256
777a8c8f5ffa5c992ea0991e99b6be9f6ed560768154f6273f42c2547e6454ab	12/10/2019	SHA-256
605712812595a21fae8b728974d328ecc2811792cec2f0808653d2ea8ee556c2	12/10/2019	SHA-256
610519390720b741a8b2de2686575141bf8839473abdc06ffa9ecfd7efb88a3c	12/10/2019	SHA-256
640f88b445819b50d801f63bba996635c07883cf245ddca2f39b592ce07d0a30	12/10/2019	SHA-256
4e8f5a3497e7263ad12bdb242fdcbbd9c2d1ff85e862b263ce4b4d138f00002c	12/10/2019	SHA-256
5c3a99fa29ab5917f2facf4383dd6284c2fd4c93c0aa9a16cf5a8b605ce3521c	12/10/2019	SHA-256
575c4e03f446b9ae91769cc7be8b7cc8aa451d607615a69ac0797190240f0bff	12/10/2019	SHA-256
5642cb5f8c9d9115143cf67b67b50327dc6ac07c78e87334f52d3a89ef7e855c	12/10/2019	SHA-256
37d2c4a0c7b4640261d4eae7bfe234eb4029a5686589e96fa78d9da20bf2add8	12/10/2019	SHA-256
423ddc412baf3a6aa9637d6258b7309f08ed1e1bc9c2dddc30cc25732998e42c	12/10/2019	SHA-256
46a8888ab48c79a9bdef4cf4ff58f5f58feb8ad6e3926a6ee98f7ea1dc2b383a	12/10/2019	SHA-256
408680beb42a3d4123ca4136cb02431efdb2efd112d546a378dfea96dd042f5d	12/10/2019	SHA-256
323f9bcc53cdf71e937974d6523174ebb74151af8928d1148d0476c13b3e1622	12/10/2019	SHA-256
30e340533c70f200d86348c10c78164a165e17a88f62b344e2b76f035386beae	12/10/2019	SHA-256
2642ae8489bf119064a09e9919cf06f92bc5b5882613c673745ffe89b34c2f43	12/10/2019	SHA-256

6be61289884c2bd01ddade32649d23fac7bc0ba4591f3eed911101eb44c5181b

12/10/2019

SHA-256

6f8ed68f17904767ecd16b1cb1943caa8f474912bffc930082e64512fa48f96f

12/10/2019

SHA-256

HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN Value Name

12/10/2019

Win_Registry

HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED Value Name

12/10/2019

Win_Registry

HKLM\SYSTEM\CONTROLSET001\SERVICES\MINIMUMPIXEL 13 Mutexes Occurrences Global\I98B68E3C 13 Global\M98B68E3C 13 Global\M3C28B0E4 13 Global\I3C28B0E4 13 IP Addresses contacted by malware. Does not indicate maliciousness Occurrences 80.11.163.139 11 85.54.169.141 10 185.14.187.201 4 45.79.188.67 4 63.142.253.122 4 67.225.229.55 3 193.70.18.144 2 193.252.22.86 2 17.36.205.74 2 212.227.15.142 2 213.180.147.145 2 52.96.40.242 2 62.149.157.55 2 217.116.0.228 2 62.149.128.179 2 173.194.68.108

12/10/2019

Win_Registry

9a1e0bdf466b43e51e62125b6de07886

12/10/2019

MD5

75c817a4d49bc40781537143aabad6f0496129120503b7276854e9db15b4a965

12/10/2019

SHA-256

HKLM\SYSTEM\CONTROLSET001\SERVICES\MINIMUMPIXEL Value Name

12/10/2019

Win_Registry

6812985cee6342855219205500bd1bb53300d552f17b88dbeeab1cdad32e55bf

12/10/2019

SHA-256

5cdc406d0cfc60b4a6b5cce5411932f250bcf7c60863e71111f461130c2d942f

12/10/2019

SHA-256

658f7d3524bc9db586321be2fb22b1d832cd6f80328dcdbecdfc2734ff45487a

12/10/2019

SHA-256

6516b8c920ae407765804372470187aa6749d1f598e87b7dbe8bf47291039568

12/10/2019

SHA-256

52f3ac52e9e2e9ebaba6da86ea629ad07b2017a44a5be6f66a576853341cc1ca

12/10/2019

SHA-256

607ac8ad70dc43765ea3954c09b2dbe320f7dbe4fe9fee9b07fab9e855aef37b

12/10/2019

SHA-256

607473f50e64388087985abb0bb05caa8688a1a17c25607508bb2a3a8a62fc13

12/10/2019

SHA-256

51cd17e592d2ebadfd3f15ca6b542f78b2adb4f26b7eaf8c254e849ee141bcc4

12/10/2019

SHA-256

50bf198fb00ff18f6b08b9aff48c8b5ffcc85cc0dcda23a0359f413113fd6207

12/10/2019

SHA-256

4d30d13f5454bc30c92643657d4113a4008e09cd06491e1f73801a14b5415cf5

12/10/2019

SHA-256

4c6c1e0eb3b508e3bd525b4ce71a1309d231b218f7172bfb5da57a93a050ab5c

12/10/2019

SHA-256

47b69664dd70b8ed9e0f369640f4dfd27a5a33b8bd3d83d572b667551d6465cd

12/10/2019

SHA-256

48b14ad94dbfe648d7ef4cbce8debeec6b009d9972cb026f7f4ecfea72ae380d

12/10/2019

SHA-256

47cbf5466f14bacd5dae7a217a85673048245844e39d081ce4009aa8bbdf0743

12/10/2019

SHA-256

25f1eb50680c50626387a6e2c28a9278172dadbb61113f984a9c0074db4a3514

12/10/2019

SHA-256

37715e5cfc32e42ccd741a8ca0b17276c76b9d28c2ab4ab4edc4ba712cfe98a4

12/10/2019

SHA-256

35588e1d2203194ae0524d551d9a5d45bccbfbd9ef226a25e223c4e626db8e7e

12/10/2019

SHA-256

0755dff6699aebb40a37368f78ed9a7b66d3e24d039af8cdd2ad13b8ef969273

12/10/2019

SHA-256

11aa23a13c9a53dae82684af6adf9835fe027550d5b9bfd21604ab1261c97224

12/10/2019

SHA-256

1191f1f7a73c262102b8ec25f2aecefc26eef287e55934e608ba510b45bff3db

12/10/2019

SHA-256

0e2cb655432353bc5f362692d75f76b1deb6d4c339db1eacb671731c5f23a733

12/10/2019

SHA-256

8536b9a9da4f0b6930ed148166800147062e93f6c31ad70f61eb7ed174383c80

12/10/2019

SHA-256

84b677c976458077b79120064fe7aa275ad33d19d7651425f3faf6cd717fc520

12/10/2019

SHA-256

0209860624b9650a80e8e7ccd913c68bbd5e4be9e503c2a1b554c6b3b94861a1

12/10/2019

SHA-256

8232b50475cf369b325dc6866d6b88c27245faf7e572a3629b5c0ad3a88cbd72

12/10/2019

SHA-256

89f1ede2d77a45043f2ce760265d21a512f5e5b011cde43f76c3b968214530e5

12/10/2019

SHA-256

7f285a63779f27c9793b5fdcdcc9f8e8d48207298cb4c3cd18e27889c2dd052a

12/10/2019

SHA-256

777a8c8f5ffa5c992ea0991e99b6be9f6ed560768154f6273f42c2547e6454ab

12/10/2019

SHA-256

605712812595a21fae8b728974d328ecc2811792cec2f0808653d2ea8ee556c2

12/10/2019

SHA-256

610519390720b741a8b2de2686575141bf8839473abdc06ffa9ecfd7efb88a3c

12/10/2019

SHA-256

640f88b445819b50d801f63bba996635c07883cf245ddca2f39b592ce07d0a30

12/10/2019

SHA-256

4e8f5a3497e7263ad12bdb242fdcbbd9c2d1ff85e862b263ce4b4d138f00002c

12/10/2019

SHA-256

5c3a99fa29ab5917f2facf4383dd6284c2fd4c93c0aa9a16cf5a8b605ce3521c

12/10/2019

SHA-256

575c4e03f446b9ae91769cc7be8b7cc8aa451d607615a69ac0797190240f0bff

12/10/2019

SHA-256

5642cb5f8c9d9115143cf67b67b50327dc6ac07c78e87334f52d3a89ef7e855c

12/10/2019

SHA-256

37d2c4a0c7b4640261d4eae7bfe234eb4029a5686589e96fa78d9da20bf2add8

12/10/2019

SHA-256

423ddc412baf3a6aa9637d6258b7309f08ed1e1bc9c2dddc30cc25732998e42c

12/10/2019

SHA-256

46a8888ab48c79a9bdef4cf4ff58f5f58feb8ad6e3926a6ee98f7ea1dc2b383a

12/10/2019

SHA-256

408680beb42a3d4123ca4136cb02431efdb2efd112d546a378dfea96dd042f5d

12/10/2019

SHA-256

323f9bcc53cdf71e937974d6523174ebb74151af8928d1148d0476c13b3e1622

12/10/2019

SHA-256

30e340533c70f200d86348c10c78164a165e17a88f62b344e2b76f035386beae

12/10/2019

SHA-256

2642ae8489bf119064a09e9919cf06f92bc5b5882613c673745ffe89b34c2f43

12/10/2019

SHA-256

CYBER45

Threat Roundup for October 4 to October 11

C45-2019-10-12-9

Indicators of Compromise (IOC) List