top of page
Threat Roundup for May 1 to May 8
C45-2020-05-09-7
Indicators of Compromise (IOC) List
Indicator of Compromise (IOC) | Date Published | IOC Type |
|---|---|---|
192.210.63.230 | 09/05/2020 | IPv4 |
044666325c0e501e6404b1becc652163acd5125299bdb73db6b00bdac434c06f | 09/05/2020 | SHA-256 |
HKLM\SYSTEM\CONTROLSET001\SERVICES\WINDEFEND
Value Name | 09/05/2020 | Win_Registry |
36024c5c0f8466aa7131137fb64f4fee1002d2b31be1acc40de7f1289aefd3c6 | 09/05/2020 | SHA-256 |
1abc5f123d1e92a151c9ffecd863cfaeaec589a4cb21c28b7667f9e6e62e2b21 | 09/05/2020 | SHA-256 |
79.134.225.11 | 09/05/2020 | IPv4 |
HKCU\SOFTWARE\NGXKMXXA
Value Name | 09/05/2020 | Win_Registry |
1b35cb51c34d2c6eb5656d2248ccc14f931a4f4171a747f37142396099da6e36 | 09/05/2020 | SHA-256 |
104.24.105.254 | 09/05/2020 | IPv4 |
HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN
Value Name | 09/05/2020 | Win_Registry |
311ce91b0bacedf64d500efe57c919eef18865107d73420bc59967d121077cc8 | 09/05/2020 | SHA-256 |
1844b3b59e94ea263279fe882a6652fe936a0b0b13bbd21f1d3cd609aacf9b07 | 09/05/2020 | SHA-256 |
HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM
Value Name | 09/05/2020 | Win_Registry |
124.114.102.125 | 09/05/2020 | IPv4 |
HKLM\SYSTEM\CONTROLSET001\ENUM\PCI\ | 09/05/2020 | Win_Registry |
63394c768a993b74c0e06aabda3fee9a9a67571764ffe60353347b0315e6c87c | 09/05/2020 | SHA-256 |
87.106.200.140 | 09/05/2020 | IPv4 |
081992320357213e05b0c14f914f85dc108ccd96c442ed01c2e0a929c28081ba | 09/05/2020 | SHA-256 |
06e50d1986f72ffff48dc874367de9cc5f67a1fc43e8e09442ce47f5fd0988a3 | 09/05/2020 | SHA-256 |
79.134.225.76 | 09/05/2020 | IPv4 |
4d2c216c4ba2cec5e28324fbffc77479db4321862ef98fc2f6edbfa11c91b4be | 09/05/2020 | SHA-256 |
HKLM\SYSTEM\CONTROLSET001\SERVICES\WINMONFS
3
HKLM\SYSTEM\CONTROLSET001\SERVICES\WINMONFS\INSTANCES
3
HKLM\SYSTEM\CONTROLSET001\SERVICES\WINMONFS\INSTANCES\WINMONFS
3
HKLM\BCD00000000\OBJECTS | 09/05/2020 | Win_Registry |
1f7dede30a50b951468581880254249fe1f4dd510807cea4c9ec0064bbffc324 | 09/05/2020 | SHA-256 |
198.74.98.230 | 09/05/2020 | IPv4 |
178.132.218.180 | 09/05/2020 | IPv4 |
189.163.17.5 | 09/05/2020 | IPv4 |
10ab9740564dc471636c8006f6bd36c3f6762e87859f912e337709b26dab6c15 | 09/05/2020 | SHA-256 |
HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED
Value Name | 09/05/2020 | Win_Registry |
1263a68800e384bee88a29156b3240a4f5bd7c207d7bb3994ee42d9f8e3104b0 | 09/05/2020 | SHA-256 |
172.217.15.110 | 09/05/2020 | IPv4 |
e02c90486046063cdc5f10c8ef1d3f7d72f95d94dad62e7b7b464feb64745242 | 09/05/2020 | SHA-256 |
166d5981c80f3940f1bb199f68eb5e611a981d63716ccc5c474603a4c5ca5acf | 09/05/2020 | SHA-256 |
175.151.100.217 | 09/05/2020 | IPv4 |
03f07c9b09741428f840403a193a1dd7f0216371e3f8d159ccabdf7a4629bb9e | 09/05/2020 | SHA-256 |
0b4eaa008cf3fa9b5b9e2413d520fc8e20c9f826976a1c48040644148a9d176a | 09/05/2020 | SHA-256 |
792694b3449c9057b23aabbc8252d14a7f129d3744b501ddec9f541ee7135cf6 | 09/05/2020 | SHA-256 |
HKLM\SOFTWARE\MICROSOFT\WINDOWS DEFENDER\EXCLUSIONS\PATHS
Value Name | 09/05/2020 | Win_Registry |
15bcfa2a7f4a8446b9044b31ac577e75ceca42d8d47b7441f86e97610df7fb30 | 09/05/2020 | SHA-256 |
82832d9a1cf2697aea675e251b67fd767ffb4121cee0e3bef4341e01c9e04c99 | 09/05/2020 | SHA-256 |
184.105.76.250 | 09/05/2020 | IPv4 |
2958de35559a7330ec3dd312d0ac1ca0bceec32d4e766af612c8911c84514a7d | 09/05/2020 | SHA-256 |
218.58.145.236 | 09/05/2020 | IPv4 |
ab5d820fc7e40a39109653d0601d337487ed8b329a9a98fef128d29dd86d0a02 | 09/05/2020 | SHA-256 |
HKCU\SOFTWARE\SPMLNKEJ
Value Name | 09/05/2020 | Win_Registry |
1acc60771e7626bb12c71c15e7e5eb8fd3a4a9d664c3f8f6fffb836fe337448e | 09/05/2020 | SHA-256 |
3821223063bdae6ed4fc1703402ea917 | 09/05/2020 | MD5 |
14ee9b0016331e398ad7293f41fcfde37bd68b678fa04ff37e5bc9208e2dfa12 | 09/05/2020 | SHA-256 |
185.140.53.157 | 09/05/2020 | IPv4 |
0de40a567ebe34116450658eef3d6a81bf8fa350aa3b6a808f236a603202aa13 | 09/05/2020 | SHA-256 |
116.196.76.139 | 09/05/2020 | IPv4 |
bottom of page