@DecayPotato profile picture
DecayPotato @DecayPotato

Lousy Threat Analyst, Retweet and post are my own

Joined January 2018
  • Tweets 82
  • Following 146
  • Followers 447
6 Photos and videos
So true linkedin.com/pulse/you-cant-…
2
Dedicated to those people who enjoy their full day of work even at home youtu.be/9bvcyGyzj7Y via @YouTube

Half Day | The Viral Office Rant | What's Your Status | Webseries |...

Ultra Shorts Presents What’s Your Status, a web series of 3 differe...

youtube.com
Part of life is to encourage other to improve, not by brainwashing people thinking to follow your thinking. Telling out your problems let other to understand what are you facing. #workhard #playhard #
2
DecayPotato retweeted
\_(ʘ_ʘ)_/@pollo290987
19 Dec 2018
#Emotet 18/12/2018 366 URL's 6 Doc 1 Payload 67 C2 [ ] 29 New C2 IOC's pastebin.com/QaZFYUFF @DecayPotato @Jan0fficial @_ddoxer @luc4m @executemalware @James_inthe_box @bauldini @JRoosen @neonprimetime @JayTHL @NelsonSecurity @HazMalware @Cryptolaemus1

Emotet 18/12/2018 - Pastebin.com

Pastebin.com is the number one paste tool since 2002. Pastebin is a website where you can store text online for a set period of time.

pastebin.com
13
22
DecayPotato retweeted
Lesley Carhart
@hacks4pancakes
8 Dec 2018
Every time I read a year end report that states that a company “blocked 780,000 cyberattacks”, I cringe. It’s a clear sign the org is measuring productivity (and probably budget) based on stuff like SSH brute force attempts and heuristic antivirus detections.
27
106
525
DecayPotato retweeted
\_(ʘ_ʘ)_/@pollo290987
4 Dec 2018
#Emotet 03/12/2018 346 URL's 19 DOC 7 Payload 119 C2 [ ] 43 New C2 IOC's pastebin.com/NQ5tRE1Y @DecayPotato @Jan0fficial @_ddoxer @luc4m @executemalware @James_inthe_box @bauldini @JRoosen @neonprimetime @Techhelplistcom @NelsonSecurity @HazMalware @Cryptolaemus1

1
13
24
DecayPotato retweeted
Cryptolaemus@Cryptolaemus1
2 Dec 2018
URLhaus #emotet Epoch 2 IOC update pastebin.com/U318nCR7
3
4
DecayPotato retweeted
Cryptolaemus@Cryptolaemus1
1 Dec 2018
Today's #emotet IoC/Notes for 11/30/18 - Another pile of doc download links and the latest info out there on Emotet. 73 E1 Doc DL URLs, 166 E2 Doc DL URLs, all payloads, hashes for docs and bins as well as latest C2s. Final Update. pastebin.com/P269HPvr paste.cryptolaemus.com/emote…

1
10
18
DecayPotato retweeted
Cryptolaemus@Cryptolaemus1
30 Nov 2018
Today's #emotet IoC's/Notes for 11/29/18 - Barely got this done. Hope it helps someone on a FRI. 115 E1 URLs/ 75 E2 URLs. Mixed templates blue/wh and orange/wh today. All C2s/Payloads/Hashes I could find. Till tomorrow. Final Update pastebin.com/9KJ7HDA6 paste.cryptolaemus.com/emote…

1
6
18
DecayPotato retweeted
Cryptolaemus@Cryptolaemus1
29 Nov 2018
Today's #emotet IoC's/Notes for 11/28/18 - GER speakers targeted by both epochs this morning as E1 had a run of attachment German named files. 64 E1 URLs/133 E2 URLs - latest payloads quintets/hashes and C2s. Final Update. pastebin.com/vLGx35Dd paste.cryptolaemus.com/emote…

1
8
12
Fresh doc? Doc:b2aacb2c82b294049bf2c543b64badad265a88a7c0740c9e6e3ccb37cc1f99ad Payload mahimamedia[.]com/iYwNcae lunasmydog[.]com/Tl kylerowlandmusic[.]com/8aP lawsonmusicco[.]com/NJ3Ta rodtimberproducts[.]co[.]za/s #emotet app.any.run/tasks/451964e8-7…

Analysis Service-Invoice.zip (MD5: F7275C1F99792F180E5612C7DB28F5B6) Malicious activity - Interac...

Interactive malware hunting service. Live testing of most type of threats in any environments. No installation and no waiting necessary.

app.any.run
1
1
8
DecayPotato retweeted
\_(ʘ_ʘ)_/@pollo290987
29 Nov 2018
#Emotet 28/11/2018 417 URL's 21 DOC 4 Payload 73 C2 [ ] 12 New C2 IOC's pastebin.com/v3n0K4z1 @DecayPotato @Jan0fficial @_ddoxer @luc4m @executemalware @James_inthe_box @bauldini @JRoosen @neonprimetime @Techhelplistcom @NelsonSecurity @HazMalware @Cryptolaemus1

Emotet 28/11/2018 - Pastebin.com

Pastebin.com is the number one paste tool since 2002. Pastebin is a website where you can store text online for a set period of time.

pastebin.com
10
19
DecayPotato retweeted
\_(ʘ_ʘ)_/@pollo290987
27 Nov 2018
#Emotet 26/11/2018 499 URL's 30 Doc 6 Payload 126 C2 [ ] 41 New C2 IOC's pastebin.com/qxkk4Zq2 @DecayPotato @Jan0fficial @_ddoxer @luc4m @executemalware @James_inthe_box @bauldini @JRoosen @neonprimetime @Techhelplistcom @NelsonSecurity @HazMalware @Cryptolaemus1
11
18
DecayPotato retweeted
Joe Roosen
@JRoosen
26 Nov 2018
Hey everyone! You know that "Dual Infrastructure" that Emotet runs on? That is Epoch 1 and Epoch 2. This is what I have been tracking since June. :D zdnet.com/article/emotet-mal…

Emotet malware runs on a dual infrastructure to avoid downtime and takedowns

Researchers spot unique design in the server infrastructure propping up the Emotet malware.

zdnet.com
2
38
74
DecayPotato retweeted
Okan YILDIZ@yildizokan4
24 Nov 2018
Amazon Phishing Real:amazon.com Phishing: xn--amaon-x59a.com (Homoglyph) #BlackFriday #Phishing @malwrhunterteam @keepnetlabs
14
13
DecayPotato retweeted
\_(ʘ_ʘ)_/@pollo290987
24 Nov 2018
#Emotet 23/11/2018 289 URL's 17 Doc 4 Payload 85 C2 [ ] 23 New C2 IOC's pastebin.com/XfYpQMA6 @DecayPotato @Jan0fficial @_ddoxer @luc4m @executemalware @James_inthe_box @bauldini @JRoosen @neonprimetime @Techhelplistcom @NelsonSecurity @HazMalware

Emotet 23/11/2018 - Pastebin.com

Pastebin.com is the number one paste tool since 2002. Pastebin is a website where you can store text online for a set period of time.

pastebin.com
11
20
Never give up on your passion because some obstacles, the road will shine at the right time. A new beginning of a new chapter.
2
DecayPotato retweeted
\_(ʘ_ʘ)_/@pollo290987
9 Nov 2018
#Emotet 08/11/2018 1225 URL's 105 DOC 3 Payload 76 C2 [ ] 15 New C2 IOC's pastebin.com/y5rXPpk6 @DecayPotato @Jan0fficial @_ddoxer @luc4m @executemalware @James_inthe_box @bauldini @JRoosen @neonprimetime @Techhelplistcom @NelsonSecurity @HazMalware
16
26
Is this a dream? Is this true? Is this happening? Am i really hearing this? Someone wake me from this "Potato" dream.
Load more