s2
--:--:--UTC

Searching APEX

Starting…

  1. Searching Threats, IOCs & Threat Intelligence locally
  2. Querying external providers
  3. Asking AI Forensic Validator
  4. Creating new entry from validated hit

0s elapsed

MB-9d9c18650265389dc672ad1630db4b07f5917f913476ac165c145d194ef6813f high

📛 Threat Title

Unknown: 9d9c18650265389dc672ad1630db4b07f5917f913476ac165c145d194ef6813f

Category: Unknown Published: Source updated: First seen: Last updated: Source: Abuse.ch

Description

File type: lnk. Size: 684459 bytes. Tags: Kimsuky, lnk, orange-bizarre-lynx-526-mypinata-cloud, uni-site-je--mort-php. Reporter: JAMESWT_WT. First seen: 2026-06-16 10:47:50.

Remediations (10)

  • MalwareBazaar | SHA256 ...
    web:bazaar.abuse.ch

    You are currently viewing the MalwareBazaar entry for SHA256 9d9c18650265389dc672ad1630db4b07f5917f913476ac165c145d194ef6813f . While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

  • Secure Boot Certificate Update - Making It Happen with Intune ...
    web:blog.mindcore.dk

    Step‑by‑step guide to automating the Windows Secure Boot certificate update using Microsoft Intune remediations , including fallback logic, telemetry requirements, and real‑world results.

  • Palo Alto Networks, Inc. - 10K - Annual Report - August 29, 2025 - Fintel
    web:fintel.io

    It utilizes AI to swiftly identify potential vulnerabilities, provide real-time recommendations for remediation , proactively address support needs, and improve overall digital experiences, leading to reduced operational overhead and improved speed, accuracy, and scale of support.

  • CVE-2013-3900 WinVerifyTrust Signature Validation Vulnerability
    web:learn.microsoft.com

    When Microsoft released the remediation steps for this vulnerability, the data type of registry value "EnableCertPaddingCheck" = 1 as REG_SZ and we set this value as "REG_SZ" across all computers.

  • MAC Address Lookup - Identify Device Manufacturer by MAC Address
    web:miniwebtool.com

    MAC Address Lookup - Instantly identify network device manufacturers and vendors by MAC address. Search by full or partial MAC address, or look up MAC prefixes by company name with our comprehensive OUI database.

  • Find an ad ID from a Google ad - Google Ad Manager Help
    web:support.google.com

    This article describes the ad identifier (ad ID), a part of the ad URL crucial for reporting ads or troubleshooting ad delivery issues within the Google ecosystem. It provides step-by-step instructions for capturing this ad ID from various ad formats, including YouTube, Google Search, and display ads, by accessing the "My Ad Center" or "Report ad" troubleshooter without completing the final ...

  • Monitoring Secure Boot certificate status with Microsoft Intune ...
    web:support.microsoft.com

    The detection script collects Secure Boot and certificate status from each device and reports it back to the Intune portal — no remediation action is taken on devices. This gives administrators a centralized, exportable view of certificate update progress across their Intune enrolled Windows devices. Why use this approach?

  • Windows BitLocker zero-day gives access to protected drives, PoC released
    web:www.bleepingcomputer.com

    A cybersecurity researcher has published proof-of-concept (PoC) exploits for two unpatched Microsoft Windows vulnerabilities named YellowKey and GreenPlasma, which are a BitLocker bypass and a ...

  • awk-20251231 - SEC.gov
    web:www.sec.gov

    In New Jersey, the law imposes requirements in areas such as asset management, water quality reporting, remediation of notices of violation, hydrant and valve maintenance and cybersecurity.

  • Windows 11 Account Unknown S-1-15-3 or S-1-5-21?
    web:www.windowsdigitals.com

    If you come across "Account Unknown " with a SID like S-1-15-3 or S-1-5-21 in the folder or drive properties, here's what you need to know.

Indicators of Compromise (3)

Each indicator is enriched from the IOC database, threat-intel feed corroboration (Threat Hunt) and VirusTotal. Click one to expand.

hash_sha256 9d9c18650265389dc672ad1630db4b07f5917f913476ac165c145d194ef6813f

IOC database

Type
hash_sha256
Value
9d9c18650265389dc672ad1630db4b07f5917f913476ac165c145d194ef6813f
First seen
Last seen
Attached to this threat
Appears in
1 threat
Description
Unknown

Open the full IOC page →

Threat Hunt — feed corroboration

Not present in any configured threat-intel feed.

Details From VirusTotal

No VirusTotal details cached for this IOC. Open the IOC page to query VirusTotal.

hash_sha1 3a8aebc100763ebe030e53f97b7c7b0ec998105c

IOC database

Type
hash_sha1
Value
3a8aebc100763ebe030e53f97b7c7b0ec998105c
First seen
Last seen
Attached to this threat
Appears in
1 threat

Open the full IOC page →

Threat Hunt — feed corroboration

Not present in any configured threat-intel feed.

Details From VirusTotal

No VirusTotal details cached for this IOC. Open the IOC page to query VirusTotal.

hash_md5 9631e2579f8336095b804738d6697fba

IOC database

Type
hash_md5
Value
9631e2579f8336095b804738d6697fba
First seen
Last seen
Attached to this threat
Appears in
1 threat

Open the full IOC page →

Threat Hunt — feed corroboration

Not present in any configured threat-intel feed.

Details From VirusTotal

No VirusTotal details cached for this IOC. Open the IOC page to query VirusTotal.

References (1)

  • MalwareBazaar sample page Abuse.ch

    File type: lnk. Size: 684459 bytes. Tags: Kimsuky, lnk, orange-bizarre-lynx-526-mypinata-cloud, uni-site-je--mort-php. Reporter: JAMESWT_WT. First seen: 2026-06-16 10:47:50.

AI Forensic Analysis

Only Available for Registered Users. Sign in to view.