Security Pulse Round-Up 01/02/2021



A weekly round-up of security pulses created by the BIT Security team.


Phishing attempt Link connection to glitch.me sites

A spoofed email address attempted to deploy malicious trojans and other malicious files, using glitch.me sites.

C2 server IoC's

IoC's found when exploring 184.72.0.0 This is a known C2 domain. This IP was originally taken from an existing sunburst pulse Explored using virus total.


Emotet dropping domains

IOC's extracted from gurztac.wtchevalier.com and khanhhoahomnay.net using virus total. These domains drop .doc files with malicious macros that appear to download Emotet These two domains were analyzed using virus total. The domains themselves were taken from the November 03 2020 malware domain feed v2.


7 views0 comments

CONTACT

US

© 2018 by BluescreenIT. Proudly created with weCREATE

VISIT

US

1 Research Way, Plymouth Science Park, Plymouth, Devon PL6 8BT