Known Indicators of Compromise Associated with Androxgh0st Malware [Wednesday, January 17, 2024]

The FBI and CISA have issued a joint cybersecurity advisory, warning about the threat posed by malware known as Androxgh0st, which can compromise n...
Known Indicators of Compromise Associated with Androxgh0st Malware [Wednesday, January 17, 2024]
Known Indicators of Compromise Associated with Androxgh0st Malware
Report

Known Indicators of Compromise Associated with Androxgh0st Malware

Description :
The FBI and CISA have issued a joint cybersecurity advisory, warning about the threat posed by malware known as Androxgh0st, which can compromise networks and attack critical infrastructure around the world.

Published Created Modified
2024-01-17 13:19:42 2024-01-17 13:19:42 2024-01-17 13:28:27

Tags

Indicators

IPv4s :
  • 45.95.147.236
URLs :
  • https://mc.rockylinux.si/seoforce/triggers/files/evil.txt'
  • http://main.dsn.ovh/dns/pwer
  • https://mc.rockylinux.si/seoforce/triggers/files/evil.txt
  • https://chainventures.co.uk/.well-known/aas
  • http://download.asyncfox.xyz/download/xmrig.x86_64
Domains :
  • chainventures.co.uk
  • download.asyncfox.xyz
  • mc.rockylinux.si
  • eval-stdin.php.dev
  • main.dsn.ovh
Malwares :
  • Androxgh0st
Hashes :
  • 59e90be75e51c86b4b9b69dcede2cf815da5a79f7e05cac27c95ec35294151f4
  • ca45a14d0e88e4aa408a6ac2ee3012bf9994b16b74e3c66b588c7eabaaec4d72
  • de1114a09cbab5ae9c1011ddd11719f15087cc29c8303da2e71d861b0594a1ba
  • 0df17ad20bf796ed549c240856ac2bf9ceb19f21a8cae2dbd7d99369ecd317ef
  • bb7070cbede294963328119d1145546c2e26709c5cea1d876d234b991682c0b7
  • 23fc51fde90d98daee27499a7ff94065f7ed4ac09c22867ebd9199e025dee066
  • dcf8f640dd7cc27d2399cce96b1cf4b75e3b9f2dfdf19cee0a170e5a6d2ce6b6
  • 6b5846f32d8009e6b54743d6f817f0c3519be6f370a0917bf455d3d114820bbc
MITRE ATT&CK Techniques :

External References

You can download the txt file containing the indicators by clicking on the button below:

About the author
Julien B.

Securitricks

Up-to-Date Cybersecurity Insights & Malware Reports

Securitricks

Great! You’ve successfully signed up.

Welcome back! You've successfully signed in.

You've successfully subscribed to Securitricks.

Success! Check your email for magic link to sign-in.

Success! Your billing info has been updated.

Your billing was not updated.