top of page
Threat Roundup for July 24 to July 31
C45-2020-08-01-5
Indicators of Compromise (IOC) List
Indicator of Compromise (IOC) | Date Published | IOC Type |
|---|---|---|
4322cb9580767733bb8d065026202ff21b71763bcf3895687e39cad98383ca08 | 01/08/2020 | SHA-256 |
417fa655f6ef37eede2cad99d78506042339cfcc395e1a07d5d0b6f5418398b0 | 01/08/2020 | SHA-256 |
463cca46948a4dca20f30b5069cc3d225db37903d2590934c67f09577811a8e9 | 01/08/2020 | SHA-256 |
273cee564d8486089dea169f9ce2680ef2ad8c73a9568c573520f281cc9c8e1b | 01/08/2020 | SHA-256 |
2b20fb7784f8aeea0a3fedb16f49c08a8482c8373b5c6d5cbe5171ac5efc6fc8 | 01/08/2020 | SHA-256 |
2e13710ff64cce32db611cf9450414f2ebb92ae46e4cb85ad3902d682cb03335 | 01/08/2020 | SHA-256 |
2a063841d3e6028a85bc37b76ef418e3d65082064c3a596a99b1e077cebca1eb | 01/08/2020 | SHA-256 |
11d0efa0003760e0ce44d0c414a55cad993edcac8bf870ce299ec15eea53cedc | 01/08/2020 | SHA-256 |
9111250ffe19fa7d428f3cfa75e51285ef2fb5829e236cd33318c2e1fec0e2eb | 01/08/2020 | SHA-256 |
629b89a76f8836b86b2603ac5c06a6724114bad49d9b9e4bfecdae2307b31b96 | 01/08/2020 | SHA-256 |
12371b49f34be1ef8a10f8a5a4b4569753d1abd354ecebd437d18c684f97b22f | 01/08/2020 | SHA-256 |
HKCU\SOFTWARE\QNIFLETT
Value Name | 01/08/2020 | Win_Registry |
HKCU\SOFTWARE\MGTWTMDC
Value Name | 01/08/2020 | Win_Registry |
HKCU\SOFTWARE\MCDUIADL
Value Name | 01/08/2020 | Win_Registry |
HKCU\SOFTWARE\NNTUCSAX
Value Name | 01/08/2020 | Win_Registry |
HKCU\SOFTWARE\JNRVOLUN
Value Name | 01/08/2020 | Win_Registry |
HKCU\SOFTWARE\MUDBHNSD
Value Name | 01/08/2020 | Win_Registry |
HKCU\SOFTWARE\RXGQRMRC
Value Name | 01/08/2020 | Win_Registry |
HKCU\SOFTWARE\XSOONHAI
Value Name | 01/08/2020 | Win_Registry |
HKCU\SOFTWARE\SQFKXOKD
Value Name | 01/08/2020 | Win_Registry |
HKCU\Software\random | 01/08/2020 | Win_Registry |
HKCU\SOFTWARE\XXXSYS
Value Name | 01/08/2020 | Win_Registry |
HKCU\SOFTWARE\KDCUXVLB
Value Name | 01/08/2020 | Win_Registry |
HKCU\SOFTWARE\LKCRGDPW
Value Name | 01/08/2020 | Win_Registry |
HKCU\SOFTWARE\random | 01/08/2020 | Win_Registry |
HKLM\BCD00000000\OBJECTS | 01/08/2020 | Win_Registry |
HKCU\SOFTWARE\KXPXUOLD
Value Name | 01/08/2020 | Win_Registry |
HKLM\SYSTEM\CONTROLSET001\SERVICES\SHAREDACCESS\PARAMETERS\FIREWALLPOLICY\STANDARDPROFILE
Value Name | 01/08/2020 | Win_Registry |
HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE
Value Name | 01/08/2020 | Win_Registry |
HKCU\SOFTWARE\XXXSYS
15
HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\ACTION CENTER\CHECKS | 01/08/2020 | Win_Registry |
HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM
Value Name | 01/08/2020 | Win_Registry |
HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM
1
Mutexes
Occurrences
| 01/08/2020 | Win_Registry |
HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM
Value Name | 01/08/2020 | Win_Registry |
HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON
Value Name | 01/08/2020 | Win_Registry |
HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\ACTION CENTER\CHECKS | 01/08/2020 | Win_Registry |
HKLM\SOFTWARE\MICROSOFT\.NETFRAMEWORK\V2.0.50727\NGENSERVICE\LISTENEDSTATE
Value Name | 01/08/2020 | Win_Registry |
HKLM\SOFTWARE\MICROSOFT\.NETFRAMEWORK\V2.0.50727\NGENSERVICE\STATE
Value Name | 01/08/2020 | Win_Registry |
HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER\SVC\S-1-5-21-2580483871-590521980-3826313501-500
13
HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER\SVC\S-1-5-21-2580483871-590521980-3826313501-500
Value Name | 01/08/2020 | Win_Registry |
HKLM\SYSTEM\CONTROLSET001\SERVICES\ | 01/08/2020 | Win_Registry |
HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXPLORER\ADVANCED
Value Name | 01/08/2020 | Win_Registry |
HKCU\SOFTWARE\ | 01/08/2020 | Win_Registry |
HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN
Value Name | 01/08/2020 | Win_Registry |
HKLM\SYSTEM\CONTROLSET001\CONTROL\SESSION MANAGER
7
HKLM\SYSTEM\CONTROLSET001\CONTROL\SESSION MANAGER
Value Name | 01/08/2020 | Win_Registry |
HKLM\SOFTWARE\MICROSOFT\WINDOWS DEFENDER\EXCLUSIONS\PATHS
Value Name | 01/08/2020 | Win_Registry |
HKU\.DEFAULT\CONTROL PANEL\BUSES
Value Name | 01/08/2020 | Win_Registry |
HKLM\SYSTEM\CONTROLSET001\SERVICES\random | 01/08/2020 | Win_Registry |
HKU\.DEFAULT\CONTROL PANEL\BUSES
58
HKLM\SYSTEM\CONTROLSET001\SERVICES\random | 01/08/2020 | Win_Registry |
HKLM\SYSTEM\CONTROLSET001\SERVICES\WEWIEWIIERIN
15
HKLM\SYSTEM\CONTROLSET001\SERVICES\WEWIEWIIERIN
Value Name | 01/08/2020 | Win_Registry |
CVE-2019-0708 | 01/08/2020 | CVE |
HKLM\SYSTEM\CONTROLSET001\SERVICES\WEWIEWIIERIN
Value Name | 01/08/2020 | Win_Registry |
bottom of page