Nombre de archivo/tipo de IoC
Hash/IP
Familia de malware
Scan_Letter_of_Approval.rar
8e067e4cda99299b0bf2481cc1fd8e12
winSrvHost.vbs
3aabc9767d02c75ef44df6305bc6a41f
Letter of Approval.pdf
dc63d5affde0db95128dac52f9d19578
pwi_crs.exe
12def981952667740eb06ee91168e643
C2
185[.]162.131.92
Netwire C2
89[.]34.111.113
SysAid-Documentation.rar
062801f6fdbda4dd67b77834c62e82a4 
SysAid-Documentation.rar
49419d84076b13e96540fdd911f1c2f0
ekrnview.exe
96986B18A8470F4020EA78DF0B3DB7D4
Thumbs.db.lnk
31718d7b9b3261688688bdc4e026db99
URL1
www.alahbabgroup[.]com/bakala/verify.php
URL2
103.225.168[.]159/admin/verify.php
URL3
www.khuyay[.]org/odin_backup/public/loggoff.php
URL4
47.91.56[.]21/verify.php
Email
8c93e024fc194f520e4e72e761c0942d
leaks copy.rar
e9815dfb90776ab449539a2be7c16de5
cc.rar
9b81b3174c9b699f594d725cf89ffaa4
zabugor.rar
914ac7ecf2557d5836f26a151c1b9b62
zabugorV.rar
eca09fe8dcbc9d1c097277f2b3ef1081 
Combolist.rar
1f5fa51ac9517d70f136e187d45f69de
Nulled2019.rar
f36404fb24a640b40e2d43c72c18e66b
IT.rar
0f56b04a4e9a0df94c7f89c1bccf830c
explorer.exe
1BA398B0A14328B9604EEB5EBF139B40
QuasarRAT
explorer.exe
AAC00312A961E81C4AF4664C49B4A2B2
Azorult
IntelAudio.exe
2961C52F04B7FDF7CCF6C01AC259D767
Netwire
Discord.exe
97D74671D0489071BAA21F38F456EB74
Razy
Discord.exe
BCC49643833A4D8545ED4145FB6FDFD2
Buzy
old.exe
119A0FD733BC1A013B0D4399112B8626
Azorult