Channel: IOC: Forensic Artifacts » SkyWiper

Flame, sKyWIper (#2)

July 2, 2012, 4:53 am

≪ Previous: Flame, Flamer, Skywiper

Authored By:
Zourick

Description:
Basic host based indicators found in reports.

Reports:
http://www.crysys.hu/skywiper/skywiper.pdf
https://www.securelist.com/en/blog?weblogid=208193538

Indicators:
OR
   File MD5 is bb5441af1e1741fca600e9c433cb1550
   File MD5 is d53b39fb50841ff163f6e9cfd8b52c2e
   File MD5 is bdc9e04388bda8527b398a8c34667e18
   File MD5 is c9e00c9d94d1a790d5923b050b0bd741
   File MD5 is 296e04abb00ea5f18ba021c34e486746
   File MD5 is 5ad73d2e4e33bb84155ee4b35fbefc2b
   File MD5 is dcf8dab7e0fc7a3eaf6368e05b3505c5
   File MD5 is 06a84ad28bbc9365eb9e08c697555154
   File MD5 is ec992e35e794947a17804451f2a8857e
   File MD5 is 296e04abb00ea5f18ba021c34e486746
   File MD5 is b604c68cd46f8839979da49bb2818c36
   File Name contains ~DEB93D.tmp
   File Full Path contains windows\system32\mssecmgr.ocx
   AND
      Registry KeyPath contains SYSTEM\CurrentControlSet\Control\Lsa\Autenthication\
      OR
         Registry Value contains mssecmgr.ocx
         Registry Value contains authpack.ocx

Download:
a385732f-71cc-4035-a0c5-c671e78d1fb0.ioc

↧

↧

Latest Images

‘Pay day every day’ may become Shangri-La Group, BPOs’ secret to happy employees

April 25, 2024, 5:51 am

Nonprofit donates custom home in this East Bay city for Marine injured in...

Nonprofit donates custom home in this East Bay city for Marine injured in...

April 23, 2024, 7:00 am

New private rooms on Tokaido Shinkansen change the way we travel from Tokyo...

New private rooms on Tokaido Shinkansen change the way we travel from Tokyo...

April 22, 2024, 6:00 am

Ukraine bans military from online gambling amid addiction concerns

Ukraine bans military from online gambling amid addiction concerns

April 22, 2024, 5:17 am

ಮಂಡ್ಯದಿಂದ ಸುಮಲತಾ ದೂರ; ಹೆಚ್‌ಡಿಕೆ ಪರ ಪ್ರಚಾರಕ್ಕಿಳಿಯದ ಸಂಸದೆ –ಬರ್ತಾರೆ ನೋಡೋಣ ಎಂದ...

ಮಂಡ್ಯದಿಂದ ಸುಮಲತಾ ದೂರ; ಹೆಚ್‌ಡಿಕೆ ಪರ ಪ್ರಚಾರಕ್ಕಿಳಿಯದ ಸಂಸದೆ –ಬರ್ತಾರೆ ನೋಡೋಣ ಎಂದ...

April 20, 2024, 8:08 pm

OCBC Bank Singapore Offers Up to 2.8% p.a. Fixed Deposit Promotion from 21...

April 20, 2024, 12:38 pm

National Poetry Month 2024: Maxine Starr

National Poetry Month 2024: Maxine Starr

April 19, 2024, 9:56 am

Vegan Chicken Pot Pie

Vegan Chicken Pot Pie

April 19, 2024, 9:18 am

Firefox UX: On Purpose: Collectively Defining Our Team’s Mission Statement

Firefox UX: On Purpose: Collectively Defining Our Team’s Mission Statement

April 19, 2024, 7:03 am

New $4.5 million East Bay trail path will connect bicyclists, pedestrians to...

New $4.5 million East Bay trail path will connect bicyclists, pedestrians to...

April 18, 2024, 11:05 am

Trending Articles

Nebraska stripper charged with aggravated assault in Houston man’s death

May 15, 2012, 9:56 am

Ready Made Periodical Test Questions for all Grades with TOS (1st - 4th Quarter)

October 28, 2018, 2:19 am

Happy Birthday Wishes for Bhabhi in Hindi & English |हैप्पी बर्थडे भाभी

March 13, 2020, 3:01 am

I'm Back!

March 31, 2015, 7:54 am

Jamel Debbouze : 100% Debbouze [FRENCH AC3] [DVDRiP] [MULTI]

April 1, 2013, 11:10 pm

IPTV France Links M3u8 List HD SD Channels 07 Dec 2018

December 6, 2018, 9:49 pm

100+ Short Whatsapp Status in English | Short Status Quotes Words

March 22, 2017, 12:27 am

FLASH BACK LIVE IN KAHATHUDUWA 2012

January 13, 2017, 12:14 am

Twin Peaks Season 1-2 + Movie COMPLETE 720p BluRay x264 DD5.1 PAHE

August 9, 2016, 7:15 am

Gemvision MatrixGold v.3.1.22284.1001.rev.01 Activated

November 21, 2023, 2:00 pm

A Superb Baroque: Art in Genoa, 1600–1750

March 10, 2020, 2:06 pm

Romantic And Impressive Birthday Wishes For Girlfriend - Best Birthday Wishes...

January 30, 2020, 8:41 am

Practice Sheet of Right form of verbs for HSC Students

September 22, 2019, 11:40 pm

Barbados Postal Codes St. Michael

July 27, 2013, 8:05 am

At the end of an episode of television show parking wars it says in memory of...

July 25, 2011, 7:33 pm

99 formas de llamarle a tus tetas

May 19, 2017, 5:00 am

Online Grading System with Grade Viewing Capstone Project

February 27, 2019, 2:08 am

Natsamrat(2016) Full Marathi Movie HDRip Print Download

July 19, 2016, 7:53 pm

Who Is Jennifer Hines? Bryan Olesen Wife Is Mother Of 3 Kids

March 5, 2024, 2:19 am

UPDATE: Police name man tragically found dead in Exeter public toilets as...

January 3, 2015, 2:27 am

More Pages to Explore .....

Latest Images

‘Pay day every day’ may become Shangri-La Group, BPOs’ secret to happy employees

April 25, 2024, 5:51 am

Nonprofit donates custom home in this East Bay city for Marine injured in...

Nonprofit donates custom home in this East Bay city for Marine injured in...

April 23, 2024, 7:00 am

New private rooms on Tokaido Shinkansen change the way we travel from Tokyo...

New private rooms on Tokaido Shinkansen change the way we travel from Tokyo...

April 22, 2024, 6:00 am

Ukraine bans military from online gambling amid addiction concerns

Ukraine bans military from online gambling amid addiction concerns

April 22, 2024, 5:17 am

ಮಂಡ್ಯದಿಂದ ಸುಮಲತಾ ದೂರ; ಹೆಚ್‌ಡಿಕೆ ಪರ ಪ್ರಚಾರಕ್ಕಿಳಿಯದ ಸಂಸದೆ –ಬರ್ತಾರೆ ನೋಡೋಣ ಎಂದ...

ಮಂಡ್ಯದಿಂದ ಸುಮಲತಾ ದೂರ; ಹೆಚ್‌ಡಿಕೆ ಪರ ಪ್ರಚಾರಕ್ಕಿಳಿಯದ ಸಂಸದೆ –ಬರ್ತಾರೆ ನೋಡೋಣ ಎಂದ...

April 20, 2024, 8:08 pm

OCBC Bank Singapore Offers Up to 2.8% p.a. Fixed Deposit Promotion from 21...

April 20, 2024, 12:38 pm

National Poetry Month 2024: Maxine Starr

National Poetry Month 2024: Maxine Starr

April 19, 2024, 9:56 am

Vegan Chicken Pot Pie

Vegan Chicken Pot Pie

April 19, 2024, 9:18 am

Firefox UX: On Purpose: Collectively Defining Our Team’s Mission Statement

Firefox UX: On Purpose: Collectively Defining Our Team’s Mission Statement

April 19, 2024, 7:03 am

New $4.5 million East Bay trail path will connect bicyclists, pedestrians to...

New $4.5 million East Bay trail path will connect bicyclists, pedestrians to...

April 18, 2024, 11:05 am

© 2024 //www.rssing.com