top of page
Threat Roundup for May 28 to June 4
C45-2021-06-05-9
Indicators of Compromise (IOC) List
Indicator of Compromise (IOC) | Date Published | IOC Type |
|---|---|---|
24f54e86fe02c42f220fc4409fd27f7f4dbcbda4647e058a106b6dead9402135 | 05/06/2021 | SHA-256 |
0d8b29f2057a759e3eaa90c8e5707e9e18e77591ef8eb5ab7e53da7fc340b76b | 05/06/2021 | SHA-256 |
0ddc71164c0b3c76b39d39ac8dc2af71cc46b125c8ac96b428e881023fae50f8 | 05/06/2021 | SHA-256 |
364a46b4978330382b93ca177bd890594072806c863d9424637a4b59ff1e99f6 | 05/06/2021 | SHA-256 |
51b8e5b10da5e56bb55b6234e750230447ffdf598069f8fbd103250e2c70559f | 05/06/2021 | SHA-256 |
9d830f4614e8a466922321311feb420bdd68b9c2caeba68898c14b025e000ed7 | 05/06/2021 | SHA-256 |
2193a6e1b9cddd381f5f6f9b416d9e91c2a0d63ea2c4b1aa8b74e6da57d96f56 | 05/06/2021 | SHA-256 |
3f703fc11695619e389ba9485371213a5c2ad82951786c1455779bb263d4ea74 | 05/06/2021 | SHA-256 |
a7fcd14c4c7e17ba61a8a6c1fd4d12e97e24690f213bcbfa91fac2ca96a853c1 | 05/06/2021 | SHA-256 |
64.106.148.71 | 05/06/2021 | IPv4 |
02b6213f28193d14250876375a628037afb3e34ea572cc554cd5aab708b785ab | 05/06/2021 | SHA-256 |
22924e0f0996e5704148f8863c6e8aeb6b72e6c6abb8de3d73abb65c1d718a22 | 05/06/2021 | SHA-256 |
1.1.1.1 | 05/06/2021 | IPv4 |
041e050527ab3b5ea399a653047c3f9e807150a906ae9bcf003708a47b428459 | 05/06/2021 | SHA-256 |
HKU\.DEFAULT\CONTROL PANEL\BUSES
26
HKU\.DEFAULT\CONTROL PANEL\BUSES
Value Name | 05/06/2021 | Win_Registry |
eed70b7b023212cea7b7a82809e13065944f2b3e2083f85331fde2c6241ca223 | 05/06/2021 | SHA-256 |
14.210.98.141 | 05/06/2021 | IPv4 |
5f486e965612eff4d5f9b61609be0ca2c4141f06d61c7cfc4e5eb28354c5c02e | 05/06/2021 | SHA-256 |
3060de24eee6cc6b787542449d3dbd9776b96f2eafaf49e49fb803f8618040cd | 05/06/2021 | SHA-256 |
1ae8c1dff0378414e010a6870e4e2a4b3eb75621f613b7a35ceefb50344ae688 | 05/06/2021 | SHA-256 |
0791ce41b1b0fbe8b2d29d0c9777aebc004b22f6ea59249556638129246af14b | 05/06/2021 | SHA-256 |
4d0747c6197abf5ae0aa98e9e3441e158a02382f8c751720904c1967fadc3679 | 05/06/2021 | SHA-256 |
2031dc1c77f2ccc437156494e8dd33146ded7b23d9b9f1cb33c97f458920e3cb | 05/06/2021 | SHA-256 |
2348f9496633876ace4fc2fbbac7121eb914c7516201f86c386af24acc1e7373 | 05/06/2021 | SHA-256 |
9fe6a93cb5ebd2b73a5b03a944d120977b6948e31ef66472811304f19c882af1 | 05/06/2021 | SHA-256 |
91.203.5.144 | 05/06/2021 | IPv4 |
HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RELIABILITY
Value Name | 05/06/2021 | Win_Registry |
HKLM\SYSTEM\CONTROLSET001\SERVICES\SHAREDACCESS\PARAMETERS\FIREWALLPOLICY\STANDARDPROFILE\AUTHORIZEDAPPLICATIONS\LIST
Value Name | 05/06/2021 | Win_Registry |
HKLM\SYSTEM\CONTROLSET001\SERVICES\HP5SEKDI\PARAMETERS
5
HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SVCHOST
Value Name | 05/06/2021 | Win_Registry |
HKCU\SOFTWARE\MICROSOFT\KPQL
Value Name | 05/06/2021 | Win_Registry |
05aaf5534e5755e9a1ccd33f98b501996e9c95e678aca9b08b10437fd02f742b | 05/06/2021 | SHA-256 |
HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER\RUN
6
HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER\RUN
4
HKLM\SYSTEM\CONTROLSET001\SERVICES\SHAREDACCESS\PARAMETERS\FIREWALLPOLICY\STANDARDPROFILE\AUTHORIZEDAPPLICATIONS\LIST
4
HKLM\SYSTEM\CONTROLSET002\SERVICES\SHAREDACCESS\PARAMETERS\FIREWALLPOLICY\STANDARDPROFILE\AUTHORIZEDAPPLICATIONS\LIST
4
HKCU\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINLOGON
Value Name | 05/06/2021 | Win_Registry |
CF1759C4F2A8F2DB557D60E88CEBC7BF65A0B433 | 05/06/2021 | SHA-1 |
2be8beca5fd09d286c1b2e42510cf33a24defa865dcd723b16864ddf3fd052bf | 05/06/2021 | SHA-256 |
20e855c43cbf7c554dff9432aefd2e093331fdf1f892800f2ae35c5d22a901d2 | 05/06/2021 | SHA-256 |
HKLM\SYSTEM\CONTROLSET001\SERVICES\BIGBE3HE\PARAMETERS
Value Name | 05/06/2021 | Win_Registry |
121323040f99ccf614075afeed2035d14b052f7df73f90499d11f0b78aeef7d9 | 05/06/2021 | SHA-256 |
1d98184acc9c185e3d95774d5986a39b967ce6c86fa8ac92c2592bd406910741 | 05/06/2021 | SHA-256 |
7d397c9648504c6a93e599503df9b918da31c6d4ad5d53a4319078418c9b7052 | 05/06/2021 | SHA-256 |
27c55e598c8fd51fd55900fe32031d3a1067966337de9f55c68aa6dfefb5ab6b | 05/06/2021 | SHA-256 |
HKCU\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\WINDOWS
Value Name | 05/06/2021 | Win_Registry |
1f3384e9df8a653593c662e5b293968c7271beef6daa49604eb3fd8b2a14d94b | 05/06/2021 | SHA-256 |
HKCU\SOFTWARE\MICROSOFT\OFFICE\16.0
14
HKLM\SOFTWARE\MICROSOFT\OFFICE\COMMON
Value Name | 05/06/2021 | Win_Registry |
HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE
Value Name | 05/06/2021 | Win_Registry |
HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\ACTION CENTER\CHECKS | 05/06/2021 | Win_Registry |
c443cb8103e30dd20263a04864693e3e5b8c7bad43505a9a06cca3284fcf7a69 | 05/06/2021 | SHA-256 |
11a312998a917f6f398cfae1c43c493fa43cc850f858fb5cf0c5510f82ced622 | 05/06/2021 | SHA-256 |
fe21a1fa1a0e2eaddb2c0bf1eb324c9ba188387ceb75b81a6074258c7a789aee | 05/06/2021 | SHA-256 |
213f22d557d98f23b8573623ac42bb3ab0d9609bd2e90ddc2f66c8f8d712239e | 05/06/2021 | SHA-256 |
249d80e8dfbb29e545d50980ea31afad50f96ed8d94095e628cd90980a77089b | 05/06/2021 | SHA-256 |
0254b7ce3b4536cb34d9e86d3c6b154266fcb8dce343bdb6e013eb9a23405017 | 05/06/2021 | SHA-256 |
HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RELIABILITY\SHUTDOWN
Value Name | 05/06/2021 | Win_Registry |
68bb4f6151b25933933e871d5619ae26dba2015b9499d89f66d1c9d5835ceaea | 05/06/2021 | SHA-256 |
63ec1cea606e844bc746ca0172d147f4a4530333b4b7a7b95844bef5fac3135e | 05/06/2021 | SHA-256 |
216.239.36.126 | 05/06/2021 | IPv4 |
f670b25c1e3b394beb0f6fcf9fb47481451fd9eafd7af02fb70ff1e9bd0c8a2c | 05/06/2021 | SHA-256 |
113fe2ba713aa8084f0d660d974e82c5279b9f2248862c0a163d43f3743f3325 | 05/06/2021 | SHA-256 |
172.217.197.113 | 05/06/2021 | IPv4 |
417ba4d301ab99369ddcb5534ed6b9e95c52a7b071848fbf7c624db2ce17a1a2 | 05/06/2021 | SHA-256 |
8d1505cff10c8fd709d08b83c290d516c7603affdb6e94fd2f5d878e13ef48ca | 05/06/2021 | SHA-256 |
1e2a3ccd1ec4b61410b6b25462353e42ef5497f1e68ba42722c4f95f085c6251 | 05/06/2021 | SHA-256 |
60af0304708602c1dc121f4067b6953de45bcf56dcb611ee496b62797f2943e5 | 05/06/2021 | SHA-256 |
173.194.207.95 | 05/06/2021 | IPv4 |
ea95808ebf6e67e1c77ed9fab384e0b3 | 05/06/2021 | MD5 |
104.215.148.63 | 05/06/2021 | IPv4 |
101436347c1f5ae90b71588c8ae4edf02e4e4b39ee6d17dc1db6a8fc331a4edb | 05/06/2021 | SHA-256 |
69.16.231.57 | 05/06/2021 | IPv4 |
172.217.197.100 | 05/06/2021 | IPv4 |
2cf2c046172602182de25e7e05866705d5286f413178829f06cc5d1b78947c8c | 05/06/2021 | SHA-256 |
1f4f370c22fd22bedb5ae21d303949b6d4ad0f0a7592ce7b5be3b1b9e27c91ca | 05/06/2021 | SHA-256 |
183f726fa0b91a909ebafbec9b6abb43255d2d289690ce07e1d5533750b86a93 | 05/06/2021 | SHA-256 |
02e01109701ec01740188db6838010f6d5850b81ef6cd0eb154d67c314bd218f | 05/06/2021 | SHA-256 |
HKCU\SOFTWARE\MICROSOFT\DFWOFIK
Value Name | 05/06/2021 | Win_Registry |
HKU\User SID
Value Name | 05/06/2021 | Win_Registry |
HKCU\SOFTWARE\MICROSOFT\OFFICE\16.0\COMMON
14
HKCU\SOFTWARE\MICROSOFT\OFFICE\16.0\COMMON\TRUSTCENTER
14
HKCU\SOFTWARE\MICROSOFT\OFFICE\16.0\COMMON\TRUSTCENTER\EXPERIMENTATION
14
HKCU\SOFTWARE\MICROSOFT\OFFICE\16.0\COMMON\EXPERIMENTECS
14
HKLM\SOFTWARE\MICROSOFT\OFFICE\COMMON\EXPERIMENT
14
HKCU\SOFTWARE\MICROSOFT\OFFICE\16.0\COMMON\EXPERIMENTECS\OVERRIDES
14
HKCU\SOFTWARE\MICROSOFT\OFFICE\16.0\COMMON\EXPERIMENTECS\OFFICECLICKTORUN
14
HKCU\SOFTWARE\MICROSOFT\OFFICE\16.0\COMMON\EXPERIMENTECS\OFFICECLICKTORUN\OVERRIDES
14
HKCU\SOFTWARE\MICROSOFT\OFFICE\16.0\COMMON\EXPERIMENTECS\ALL
14
HKCU\SOFTWARE\MICROSOFT\OFFICE\16.0\COMMON\EXPERIMENTECS\ALL\OVERRIDES
14
HKCU\SOFTWARE\MICROSOFT\OFFICE\COMMON\CLIENTTELEMETRY
14
HKCU\SOFTWARE\MICROSOFT\OFFICE\COMMON\CLIENTTELEMETRY\RULESLASTAUDIENCEREPORTED
14
HKCU\SOFTWARE\MICROSOFT\OFFICE\16.0\COMMON\EXPERIMENTCONFIGS
14
HKCU\SOFTWARE\MICROSOFT\OFFICE\16.0\COMMON\EXPERIMENTCONFIGS\ECS
14
HKCU\SOFTWARE\MICROSOFT\OFFICE\16.0\COMMON\EXPERIMENTCONFIGS\ECS\OFFICECLICKTORUN
14
HKCU\SOFTWARE\MICROSOFT\OFFICE\16.0\COMMON\EXPERIMENTCONFIGS\EXTERNALFEATUREOVERRIDES
14
HKCU\SOFTWARE\MICROSOFT\OFFICE\16.0\COMMON\EXPERIMENTCONFIGS\EXTERNALFEATUREOVERRIDES\OFFICECLICKTORUN
14
HKCU\SOFTWARE\MICROSOFT\OFFICE\16.0\COMMON\EXPERIMENTCONFIGS\FIRSTSESSION
14
HKCU\SOFTWARE\MICROSOFT\OFFICE\16.0\COMMON\EXPERIMENTCONFIGS\FIRSTSESSION\OFFICECLICKTORUN
14
HKCU\SOFTWARE\MICROSOFT\OFFICE\16.0\COMMON\EXPERIMENTCONFIGS\ECS\OFFICECLICKTORUN\CONFIGCONTEXTDATA
14
HKCU\SOFTWARE\MICROSOFT\OFFICE\16.0\COMMON\EXPERIMENT
12
HKCU\SOFTWARE\MICROSOFT\OFFICE\16.0\COMMON\EXPERIMENT\OFFICECLICKTORUN
12
HKCU\SOFTWARE\MICROSOFT\OFFICE\16.0\COMMON\IDENTITY
12
Mutexes
Occurrences
kkq- | 05/06/2021 | Win_Registry |
173.194.207.84 | 05/06/2021 | IPv4 |
49741374da47b47d02883262d28ecbe31b624fbcfe6cac801ae3e8a88fc3f389 | 05/06/2021 | SHA-256 |
369227b9605550bed80ce5f51e39e20da2669499021dd19d0d91f099c34a20ef | 05/06/2021 | SHA-256 |
03221a44767c018311b56cc2dd52a656f68c2a82edac26a35a526a12d02efe55 | 05/06/2021 | SHA-256 |
184.105.192.2 | 05/06/2021 | IPv4 |
ba3b5d70f865fd7e2bfe99452dfa18669927cd0b2775bb4520b1b55645f13b8b | 05/06/2021 | SHA-256 |
7ac60c9dbf18f84ffea6d00012957aecbb1d8538502c57089b140e7c21017149 | 05/06/2021 | SHA-256 |
4f15cc9179acae075c41f1c90d2ff7c08e6c41e81949ea96f05a1c5873949c63 | 05/06/2021 | SHA-256 |
HKCU\SOFTWARE\MICROSOFT\GOCFK
25
HKCU\SOFTWARE\MICROSOFT\KPQL
25
HKCU\SOFTWARE\MICROSOFT\GOCFK
Value Name | 05/06/2021 | Win_Registry |
HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN
Value Name | 05/06/2021 | Win_Registry |
3d0cfb90b917022529807948bcbf1571fe6f6b3d56c609c184ff38287a220f08 | 05/06/2021 | SHA-256 |
6865d809278b555dd6ce0db09421f5a4be871caa8420dd191638952f6bccc4fd | 05/06/2021 | SHA-256 |
419c5bfa3f6898f9ecfa4e7c489efb3aa5da89aa445c5e56b0e106c5e13d90b3 | 05/06/2021 | SHA-256 |
2ccbefb18f24d825b524ebcfaace361576f013fdc4eb60d8cf36e7711955c2fe | 05/06/2021 | SHA-256 |
3a5593b9d6c99c73d2aee5620b618d13a7dbb2f2091d465edf5e05368e3308fc | 05/06/2021 | SHA-256 |
1db91e1dc47df8ba3de19a6385e13959bfab6fc6ec86b5d097f2177a5e35f034 | 05/06/2021 | SHA-256 |
0b729bc086df1477d6b3f4a49c7ed3972d6e2a0bd5494c3582744fabc52c4ee6 | 05/06/2021 | SHA-256 |
b381c8d9c38488f4e497324a03c966b4 | 05/06/2021 | MD5 |
1c3020e530498dc64e64154da5b089b6a6564b2542aa8d2507f95aaa5f00003f | 05/06/2021 | SHA-256 |
307763d34fe4ce6373ee37f421e8fcf5a6676171ba19a2f34c784ad6b520dc85 | 05/06/2021 | SHA-256 |
45.133.1.98 | 05/06/2021 | IPv4 |
59.42.71.178 | 05/06/2021 | IPv4 |
HKLM\SYSTEM\CONTROLSET001\SERVICES\EL5DST3F\PARAMETERS
8
HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SVCHOST
Value Name | 05/06/2021 | Win_Registry |
37.1.217.172 | 05/06/2021 | IPv4 |
0d00cbd2fa635ab876a0cf19d3268e8a7c4632a947403f9279f0e460c200992d | 05/06/2021 | SHA-256 |
228b9abfd26515bedf33156702694fbc4f622aa9109f7cdb88ee86c651c1849a | 05/06/2021 | SHA-256 |
HKLM\SYSTEM\CONTROLSET001\SERVICES\BEEP
Value Name | 05/06/2021 | Win_Registry |
18.207.9.28 | 05/06/2021 | IPv4 |
2796812c31cd869a8d122241936dbb66ddd5ed778204ed7ddc6cbba0c92aee00 | 05/06/2021 | SHA-256 |
HKLM\SYSTEM\CONTROLSET001\SERVICES\EL5DST3F\PARAMETERS
Value Name | 05/06/2021 | Win_Registry |
183.44.163.231 | 05/06/2021 | IPv4 |
c73ab42843805e42fbb064aa09103862233166e2c79731cc785cc7d2a70614e4 | 05/06/2021 | SHA-256 |
HKCU\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER\RUN
Value Name | 05/06/2021 | Win_Registry |
172.217.197.132 | 05/06/2021 | IPv4 |
87.251.71.150 | 05/06/2021 | IPv4 |
1926b61724ae11882d62f46a993545bbcdf7cbccc352841198d1f30a4079d466 | 05/06/2021 | SHA-256 |
63d0b752fa53dd45e0cd65e26fa952046be86fbeafdf3a63a8f8d838ed3e4b84 | 05/06/2021 | SHA-256 |
78.132.127.83 | 05/06/2021 | IPv4 |
25cd32964f39ba838cbcc4f81f749dadafb36e81929d79745a5e001fa58e0163 | 05/06/2021 | SHA-256 |
219.132.66.14 | 05/06/2021 | IPv4 |
5298f1f1f1d848898d8bdb910a5714dc291d48188c3be94984f8136547db7312 | 05/06/2021 | SHA-256 |
HKU\.DEFAULT\CONTROL PANEL\BUSES
Value Name | 05/06/2021 | Win_Registry |
104.47.53.36 | 05/06/2021 | IPv4 |
185.239.243.112 | 05/06/2021 | IPv4 |
6c53baa9240daa1c0dba2db1fca9d0120e98be5a266b4dd24474be1e0f858ccf | 05/06/2021 | SHA-256 |
294120eceb789b113510e1bd3e59c5ea9f87d7a14b553c94de88a95567516b68 | 05/06/2021 | SHA-256 |
0dbe5b849434d15c423005e73b99f7ec01f6d87d1fca437e45a526a7b4a35949 | 05/06/2021 | SHA-256 |
292347e8204d0bf8a709742556d4a3aa5ad34724eedd4fcbd33576a3e4a10b96 | 05/06/2021 | SHA-256 |
a6bcaf6fe26146598c60d0430a9118720496386ab6da8113689af69b432aa44a | 05/06/2021 | SHA-256 |
HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\PROFILELIST\S-1-5-21-2580483871-590521980-3826313501-500
Value Name | 05/06/2021 | Win_Registry |
6b0553f765df31fb7b315dd5c36613cf403303b7179317403a7053e4e7ddba89 | 05/06/2021 | SHA-256 |
dd0228aff78c19db5b36b10701322009c35d0c37c07442a42ed56d972c1c2794 | 05/06/2021 | SHA-256 |
2594A7B1C59091E487BE104F798852D178A7939B | 05/06/2021 | SHA-1 |
983450a2f7a63974ae6365eb8ca0862307d0a5cbf4c66d00a24cc5ec30be5fdd | 05/06/2021 | SHA-256 |
83b7d7e733d27f0a7199bb95dc03e9f5d0678ddb4eb431be451539d481da2f38 | 05/06/2021 | SHA-256 |
52.114.128.43 | 05/06/2021 | IPv4 |
72e133ad9898765a885df6a1d51b93ea2f24eacdee359c5c4c5fbf9fc88695eb | 05/06/2021 | SHA-256 |
3628585ec95c3d2ef28f2b57a4c473eb78c42ce7bcd7fabd3f54d763ed194bb7 | 05/06/2021 | SHA-256 |
25231cc105f6a68131889260eb4149bcc4a1aec161e7485438de9b8176d2516f | 05/06/2021 | SHA-256 |
3ad494086c6fedb6c50b84134b0e8adaa4dd2d41f987700cab55e820f856d027 | 05/06/2021 | SHA-256 |
2594A7B1C59091E487BE104F798852D10EF7322B | 05/06/2021 | SHA-1 |
52.185.71.28 | 05/06/2021 | IPv4 |
4cdca0fbdec2de715767e024507ba487e952ae59a2305b506f56671feca7c842 | 05/06/2021 | SHA-256 |
7468d140ae54adef47548baf0554b2ff358775addd50f01de1ca3a21348a028c | 05/06/2021 | SHA-256 |
24cce8e51d283f2fe3738f2b68dd5ae64d0173dfaa8ac94084bd96f6805ccaab | 05/06/2021 | SHA-256 |
0368a0c1c032c8afc5a407633323408883b15620c69feac017992a2f538c6a75 | 05/06/2021 | SHA-256 |
5266889b46f337f6a0c9c755558efa96bfa95acf193d8e3e85a8cc382c7b70f1 | 05/06/2021 | SHA-256 |
189.163.17.5 | 05/06/2021 | IPv4 |
43.231.4.6 | 05/06/2021 | IPv4 |
54d1e4cabf546cb80b660a9df6ab3e7a3a2593bd66c748bc68f5b526e933dd92 | 05/06/2021 | SHA-256 |
2890638c0de9ef2c08a65012ce9aa0a65cdea13df189b0055c258cbe5cde05c0 | 05/06/2021 | SHA-256 |
8d81083a76b3cc788cc4a7ccfd2d5c83cd0c6645ee9d0b024a523d59d906f7db | 05/06/2021 | SHA-256 |
HKLM\SYSTEM\CONTROLSET001\SERVICES\HP5SEKDI\PARAMETERS
Value Name | 05/06/2021 | Win_Registry |
0f8be58d177570ea54f3db7c124371f6b0ececbb7f5edbceaec96d33be051fc3 | 05/06/2021 | SHA-256 |
CVE-2019-0708 | 05/06/2021 | CVE |
2941c046af0435b5929f753f2601ef71294c0eeb74328fc978b91dc33a24b5b3 | 05/06/2021 | SHA-256 |
23.3.13.88 | 05/06/2021 | IPv4 |
1af1d29f5f10dfce1034633d52d68ff290374a3dfcfdad002be12c1d257b3a36 | 05/06/2021 | SHA-256 |
85952003c748747aea633ef8c13bf9f4d93d446770d46e51a053a568b9a5d94a | 05/06/2021 | SHA-256 |
HKCU\SOFTWARE\MICROSOFT\DFWOFIK
25
HKCU\SOFTWARE\MICROSOFT\DFWOFIK
Value Name | 05/06/2021 | Win_Registry |
59.35.32.87 | 05/06/2021 | IPv4 |
14.113.128.191 | 05/06/2021 | IPv4 |
5b0762597fe15bca62a5aa834c1f765ded808bd8fe206c3d9d8845067ec066a3 | 05/06/2021 | SHA-256 |
67.195.228.94 | 05/06/2021 | IPv4 |
FFE08814A455404ADFBE0F71E5127E5A52B8680B | 05/06/2021 | SHA-1 |
3dd13a7ac7e2249f933efe211a4eb64dce0c13811da83e7c41f11c28d3aeac03 | 05/06/2021 | SHA-256 |
52.137.90.34 | 05/06/2021 | IPv4 |
44e817b81b018ba644e35a62eaa6c7c8bc08915beb46d8e71ccb5ab203ceca98 | 05/06/2021 | SHA-256 |
5e523204b6ca3f278e1af9e5ada03fcfe2a392ea29e91f0b7c7bcca29a46935c | 05/06/2021 | SHA-256 |
157.240.18.174 | 05/06/2021 | IPv4 |
37.221.67.91 | 05/06/2021 | IPv4 |
212.22.87.191 | 05/06/2021 | IPv4 |
144ab6e94424b99eab4f72f95b5a36a8316eb58f7b02ac9d0712c3eb466a5a7c | 05/06/2021 | SHA-256 |
223e9b18e7568c83854e6541fe77cc471b4be6794e60289fa67f3793c02710cc | 05/06/2021 | SHA-256 |
172.217.10.35 | 05/06/2021 | IPv4 |
13.107.42.23 | 05/06/2021 | IPv4 |
422aeebf8d9fbd5f4a6140bf6a78563b224c3811116547eb30629f9f53d0da22 | 05/06/2021 | SHA-256 |
0f34d841ec65f3223ee9b90f6234ffb9b750d192df7c1ca220ba1b1ccc31392f | 05/06/2021 | SHA-256 |
27cbb79e3a547dc9149fce9815c46240596cab31bbe1cbdb4b5b63964b03fe19 | 05/06/2021 | SHA-256 |
195.242.110.99 | 05/06/2021 | IPv4 |
487428e5e2b2ca08d973da0418b31e92b294a38243978d82e71d0396bfdb822a | 05/06/2021 | SHA-256 |
a029b2907d7a7c9de458102fd320118d0cf5c1b0a7ce6fc857a2f7dda8eccf83 | 05/06/2021 | SHA-256 |
58DD08C98F1670E1F1859B893C58A7305F84FE20 | 05/06/2021 | SHA-1 |
f6aec02d7ceb1105fc00076ebaa2b75f21e155c08d19a8b2e6ea39681a70e4b9 | 05/06/2021 | SHA-256 |
300e0593ce2eaba403829afcd4913c955db9dd1c526c745c3f2476258bdffee6 | 05/06/2021 | SHA-256 |
2758cfb7b62d148f0089924952a2364e63004af9c9bb1778d6e7f2d99d3b60cd | 05/06/2021 | SHA-256 |
06e00fc1d84002c374c949e75fa3c1e864bc3c128f4a44bdfaaaa594cd11907c | 05/06/2021 | SHA-256 |
14fbd3efc569e398d3863ff5e7bd204c97192ef8eb42645435a9e91c2c50a42a | 05/06/2021 | SHA-256 |
HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER\RUN
Value Name | 05/06/2021 | Win_Registry |
e12006c113fb43000e62a10ac9df2702b0f7d96854265ddc7227a1836a4ab016 | 05/06/2021 | SHA-256 |
c15c9bc1dc3e61e9a6bf8830d0ddbf6a703e0fae79da8861dc5f11918d7c4695 | 05/06/2021 | SHA-256 |
HKLM\SYSTEM\CONTROLSET002\SERVICES\SHAREDACCESS\PARAMETERS\FIREWALLPOLICY\STANDARDPROFILE\AUTHORIZEDAPPLICATIONS\LIST
Value Name | 05/06/2021 | Win_Registry |
4abfd59d3522d8a8ad8b4e5e2ddc00ed37d96270d9ba350c673462e8b8cb4ef6 | 05/06/2021 | SHA-256 |
264be9e71078cce3bd550d9f090b52dbe21fab38cc01ba9df26e11e15119a764 | 05/06/2021 | SHA-256 |
b28eebf775f881cea7c2b7af6ab564c3 | 05/06/2021 | MD5 |
463300ad6d07e70f4dcc2dfc7b034173cd8e14bdc2796f068ab0c80a4d83a95e | 05/06/2021 | SHA-256 |
173.194.207.94 | 05/06/2021 | IPv4 |
57e13a4e674937d61fbfaed67736e20b73289e6449d715187570717805682faa | 05/06/2021 | SHA-256 |
173.194.207.139 | 05/06/2021 | IPv4 |
cf6a4925529897090e29d48e023a1ef25158044e52d18782934ffe7c58e86f49 | 05/06/2021 | SHA-256 |
212.83.168.196 | 05/06/2021 | IPv4 |
28864ce0a517483100d63c5047ecf2884ed5840a8ae5d20326c3e5d9b3d2b242 | 05/06/2021 | SHA-256 |
1d9fb88e7ac7b54338a705b75f9e097a5e13ed4f607ee6f840e23e08036d2854 | 05/06/2021 | SHA-256 |
5cbf776dcec3c814b2393b705e090f443ecaee73af240f11c90e82089cfa3f50 | 05/06/2021 | SHA-256 |
6a3ef320b007b94175b3d7eefc83ca569b8920a26d115ac894ebedeba825a44b | 05/06/2021 | SHA-256 |
bottom of page