New Backdoor, MadMxShell | ThreatLabz

C45-2024-04-18-1

Indicator of Compromise (IOC)	Date Published	IOC Type
HKLM\\SOFTWARE\\Policies\\Microsoft\\Windows Defender\\DisableAntiSpyware\u003c	18/04/2024	Win_Registry
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender\DisableAntiSpyware to 1 in the registry.It configures a scheduled task named	18/04/2024	Win_Registry
6de01c65c994e0e428f5043cb496c8adca96ba18dfd2953335d1f3c9b97c60c5	18/04/2024	SHA-256
105e9a8d1014d2939e6b0ada3f24ad4bb6bd21f0155c284c90c7675a1de9d193	18/04/2024	SHA-256
b5162497bc2b9f1956d2145dd32daa5c99d6803544a0254a9090237628168d94	18/04/2024	SHA-256
bae2952c7d120d882746658e6d128556ae2498005072c4b7d7590a964b93c315	18/04/2024	SHA-256
rtay@zscaler.com	18/04/2024	Email_ID
wh8842480@gmail.com	18/04/2024	Email_ID
7966ee1ae9042e7345a55aa98ddeb4f39133216438d67461c7ee39864292e015	18/04/2024	SHA-256
Sudeep.Singh@zscaler.com	18/04/2024	Email_ID
127.0.0.1	18/04/2024	IPv4

Download as CSV