top of page
New evasion technique in CLR and how to detect it | Securelist
C45-2021-09-21-8
Indicators of Compromise (IOC) List
Indicator of Compromise (IOC) | Date Published | IOC Type |
|---|---|---|
HKLM\SOFTWARE\Classes\ReadOnlyFileIconOverlayHandler.ReadOnlyFileIconOverlayHandler | 21/09/2021 | Win_Registry |
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ ReadOnlyFileIconOverlayHandler | 21/09/2021 | Win_Registry |
HKLM\SOFTWARE\Classes\ReadOnlyFileIconOverlayHandler.ReadOnlyFileIconOverlayHandler\CLSID | 21/09/2021 | Win_Registry |
07aae8b5284c9aa54ff976c3f4bc0cd9 | 21/09/2021 | MD5 |
HKLM\SOFTWARE\Classes\CLSID | 21/09/2021 | Win_Registry |
f9d0ed93697f08fc32ddb11fdcec6136 | 21/09/2021 | MD5 |
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved | 21/09/2021 | Win_Registry |
ec0de97792230bbb0526dd60659c3e1c75c3a63b | 21/09/2021 | SHA-1 |
HKEY_CLASSES_ROOT\CLSID | 21/09/2021 | Win_Registry |
ed1f9e435dc885292eab65620c51f3fb | 21/09/2021 | MD5 |
1.0.0.0 | 21/09/2021 | IPv4 |
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers | 21/09/2021 | Win_Registry |
bottom of page