Russia Hackers Using TinyTurla-NG to Breach European NGO's Systems (thehackernews.com)
from kid@sh.itjust.works to cybersecurity@sh.itjust.works on 22 Mar 2024 11:29
https://sh.itjust.works/post/16620715

#cybersecurity

threaded - newest

kid@sh.itjust.works on 22 Mar 2024 11:33 collapse

IoCs from original research:

Hashes

267071df79927abd1e57f57106924dd8a68e1c4ed74e7b69403cdcdf6e6a453b 54/70

d6ac21a409f35a80ba9ccfe58ae1ae32883e44ecc724e4ae8289e7465ab2cf40 54/71

ad4d196b3d85d982343f32d52bffc6ebfeec7bf30553fa441fd7c3ae495075fc

13c017cb706ef869c061078048e550dba1613c0f2e8f2e409d97a1c0d9949346

b376a3a6bae73840e70b2fa3df99d881def9250b42b6b8b0458d0445ddfbc044

Domains

hanagram[.]jpthefinetreats[.]com

caduff-sa[.]chjeepcarlease[.]com

buy-new-car[.]com

carleasingguru[.]com

IP Addresses

91[.]193[.]18[.]120