Sotwe logo Sotwe logo

Top Tweets for #Wikiloader

Cryptolaemus1's profile image
Cryptolaemus @Cryptolaemus1
#WikiLoader - #TA544 - url > .msi > .dll #Signed - Canton Pure Jonna Network Technology msiexec.exe /I GlobalProtect64.msi C:\Users\*\AppData\Roaming\NitroSoftNPv1.3\notepad.exe (sideload)๐Ÿ‘‡ \AppData\Roaming\NitroSoftNPv1.3\mimeTools.dll (1/3) IOC's https://t.co/f3w7FvTf81
Cryptolaemus1's tweet photo. #WikiLoader - #TA544 - url > .msi > .dll #Signed - Canton Pure Jonna Network Technology msiexec.exe /I GlobalProtect64.msi C:\Users\*\AppData\Roaming\NitroSoftNPv1.3\notepad.exe (sideload)๐Ÿ‘‡ \AppData\Roaming\NitroSoftNPv1.3\mimeTools.dll (1/3) IOC's https://t.co/f3w7FvTf81 https://t.co/tGqRIYVy22
2
82
33
16
9K
YourAnonRiots's profile image
Anonymous๐Ÿพ๐Ÿˆโ€โฌ› @YourAnonRiots
A new #malware campaign is spoofing Palo Alto Networks' GlobalProtect #VPN to deliver #WikiLoader via SEO malvertising. https://t.co/vtyCcLdfsP #cybersecurity
0
2
3
1
424
HackRead's profile image
Hackread.com @HackRead
Beware of fake #GlobalProtect VPN downloads! A new malware campaign uses SEO poisoning and spoofed websites to deliver WikiLoader malware. #CyberSecurity #WikiLoader #Malware #VPN #SEO Read: https://t.co/5RRgvzcrmY
0
3
2
0
1K
bamitav's profile image
Amitav Bhattacharjee Verified account @bamitav
Cyberattackers Spoof Palo Alto VPNs to Spread #WikiLoader Variant https://t.co/PIoWCCjMmQ #paloalto #VPN #vulnerability #2fa #RCE #ZeroTrust #ZeroDay #cybercrime #hacker #privacy #APT #bot #CISO #DDoS #hacking #phishing #CyberAttack #cybersecurity #Security #infosec #AppSec #CyberSec #databreach #Hacked #dataprotection #DataPrivacy #DataSecurity #fraud #ScamAlert #scammer #malware
0
4
1
0
327
foxbook's profile image
ใ‚ญใ‚ฟใใคใญ Verified account @foxbook
ใƒ‘ใƒญใ‚ขใƒซใƒˆใฎ GlobalProtect VPN ใŒๅฝ่ฃ…ใ•ใ‚Œใ€ๆ–ฐใŸใชใƒžใƒซใ‚ฆใ‚งใ‚ขใฎไบœ็จฎใŒ้…ไฟกใ•ใ‚Œใ‚‹ Palo Alto's GlobalProtect VPN Spoofed to Deliver New Malware Variant #InfoSecurityMagazine (Sep 3) #VPNใ‚ปใ‚ญใƒฅใƒชใƒ†ใ‚ฃ #PaloAltoNetworks #ใƒžใƒซใ‚ฆใ‚งใ‚ข #WikiLoader #ใƒชใƒขใƒผใƒˆใƒฏใƒผใ‚ฏใ‚ปใ‚ญใƒฅใƒชใƒ†ใ‚ฃ https://t.co/wIUwpmEsUr
0
1
0
0
323
DarkReading's profile image
Dark Reading Verified account @DarkReading
Cyberattackers Spoof Palo Alto VPNs to Spread WikiLoader Variant: https://t.co/9YP6gTS1Kp #wikiloader
0
3
2
2
3K
threatintel's profile image
Threat Intelligence @threatintel
#ThreatProtection #WailingCrab, a #WikiLoader variant, targets U.S. education and transport sectors with spoofed VPNs. Read more about Symantec's protection: https://t.co/UghuozCyC1 ย #CyberSecurity #Malware #VPN
0
2
1
0
1K
Cyber_O51NT's profile image
Cyber_OSINT @Cyber_O51NT
Unit 42 has revealed the use of WikiLoader malware spoofing GlobalProtect VPN, uncovering evasion techniques, malicious URLs, and mitigation strategies. #CyberSecurity #WikiLoader #GlobalProtect https://t.co/8ImbzfDJEm
0
36
11
10
2K
Cryptolaemus1's profile image
Cryptolaemus @Cryptolaemus1
#WikiLoader - #TA544 - .pdf > url > .zip > .js > .js > .dll wscript.exe Invoice-808.js wscript.exe sso.js C:\Users\Admin\AppData\Local\Temp\npp.8.6.4.portable.x64\notepad.exe (sideload)๐Ÿ‘‡ \npp.8.6.3.portable.x64\plugins\mimeTools.dll (1/3)๐Ÿ‘‡ IOC's https://t.co/xy84rOTmCv
Cryptolaemus1's tweet photo. #WikiLoader - #TA544 - .pdf > url > .zip > .js > .js > .dll wscript.exe Invoice-808.js wscript.exe sso.js C:\Users\Admin\AppData\Local\Temp\npp.8.6.4.portable.x64\notepad.exe (sideload)๐Ÿ‘‡ \npp.8.6.3.portable.x64\plugins\mimeTools.dll (1/3)๐Ÿ‘‡ IOC's https://t.co/xy84rOTmCv https://t.co/GNUlY3bN1g
1
62
22
10
7K
AndreaDraghetti's profile image
Andrea (Drego) Draghetti ๐Ÿ‘จ๐Ÿปโ€๐Ÿ’ป ๐ŸŽฃ @AndreaDraghetti
Campagne #Malware #Italy Week 16 ๐Ÿ‘ป๐Ÿ’ฃ๐Ÿ”ฅโ˜ ๏ธ #AgentTesla: Offerta #Remcos: Fattura #WikiLoader: Delivery #Guloader: Ordine #Irata: APK Bank #DarkCloud: Preventivo #Formbook: Quote #StrRat: Pagamento #mwitaly
AndreaDraghetti's tweet photo. Campagne #Malware #Italy Week 16 ๐Ÿ‘ป๐Ÿ’ฃ๐Ÿ”ฅโ˜ ๏ธ #AgentTesla: Offerta #Remcos: Fattura #WikiLoader: Delivery #Guloader: Ordine #Irata: APK Bank #DarkCloud: Preventivo #Formbook: Quote #StrRat: Pagamento #mwitaly https://t.co/wHySWCusSi
0
5
0
0
693
dimitribest's profile image
Dmitry Bestuzhev Verified account @dimitribest
#Notepad++ Plugin Installer Compromised: #WikiLoader #Malware Deployed https://t.co/PDLxAK8woa
dimitribest's tweet photo. #Notepad++ Plugin Installer Compromised: #WikiLoader #Malware Deployed https://t.co/PDLxAK8woa https://t.co/Io7gLFwAGU
0
13
4
4
1K
aaqeel87's profile image
Ali Aqeel @aaqeel87
@Cryptolaemus1 https://t.co/YwUDvUt1U4 20 minutes timeout to get #Wikiloader
0
3
0
0
136
Cryptolaemus1's profile image
Cryptolaemus @Cryptolaemus1
#WikiLoader - #TA544 - .pdf > url > .zip > .js > .js > .dll wscript Invoice_818493.js wscript out.js C:\Users\Admin\AppData\Local\Temp\npp.8.6.4.portable.x64\notepad.exe (sideload)๐Ÿ‘‡ \npp.8.6.3.portable.x64\plugins\mimeTools.dll (1/3) ๐Ÿ‘‡ IOC's https://t.co/tTvH3jenU0
Cryptolaemus1's tweet photo. #WikiLoader - #TA544 - .pdf > url > .zip > .js > .js > .dll wscript Invoice_818493.js wscript out.js C:\Users\Admin\AppData\Local\Temp\npp.8.6.4.portable.x64\notepad.exe (sideload)๐Ÿ‘‡ \npp.8.6.3.portable.x64\plugins\mimeTools.dll (1/3) ๐Ÿ‘‡ IOC's https://t.co/tTvH3jenU0 https://t.co/ocwgsCVzr3
1
73
31
15
9K
SecurityAura's profile image
Aura @SecurityAura
@wdormann @H4ckManac @shotgunner101 Looked at the article because I recognized that Notepad++ story. It's #WikiLoader. Would've saved a bunch of time if it had been name dropped in the original tweet, like VirusBulletin did: https://t.co/FlzX2QCp2g
virusbtn's profile image
Virus Bulletin @virusbtn
AhnLab's ASEC team look into a Notepad++ installation file with an altered "mimeTools.dll" plugin leading to WikiLoader. As mimeTools.dll is a basic plugin for Notepad++, it is automatically loaded when you run Notepad++. https://t.co/Th021APNr3
virusbtn's tweet photo. AhnLab's ASEC team look into a Notepad++ installation file with an altered "mimeTools.dll" plugin leading to WikiLoader. As mimeTools.dll is a basic plugin for Notepad++, it is automatically loaded when you run Notepad++. https://t.co/Th021APNr3 https://t.co/gQ9DTlBvnX
0
42
25
15
5K
0
4
0
0
240
Cryptolaemus1's profile image
Cryptolaemus @Cryptolaemus1
#WikiLoader - #TA544 - .pdf > url > .zip > .wsf > .js > .dll wscript 959_Copy_03_26_2024.wsf wscript res.js C:\Users\Admin\AppData\Local\Temp\npp.8.6.4.portable.x64\notepad.exe (sideload)๐Ÿ‘‡ \npp.8.6.3.portable.x64\plugins\mimeTools.dll (1/3)๐Ÿ‘‡ IOC's https://t.co/G9paSMTsRV
Cryptolaemus1's tweet photo. #WikiLoader - #TA544 - .pdf > url > .zip > .wsf > .js > .dll wscript 959_Copy_03_26_2024.wsf wscript res.js C:\Users\Admin\AppData\Local\Temp\npp.8.6.4.portable.x64\notepad.exe (sideload)๐Ÿ‘‡ \npp.8.6.3.portable.x64\plugins\mimeTools.dll (1/3)๐Ÿ‘‡ IOC's https://t.co/G9paSMTsRV https://t.co/liYT4aBjKy
1
72
22
19
7K
Cryptolaemus1's profile image
Cryptolaemus @Cryptolaemus1
#WikiLoader - #TA544 - .pdf > url > .zip > .js > .js > .dll wscript Inv_03_20_2024.js wscript confidential-legal.js C:\Users\Admin\AppData\Local\Temp\npp.8.6.4.portable.x64\notepad.exe (sideload)๐Ÿ‘‡ \npp.8.6.3.portable.x64\plugins\mimeTools.dll IOC's https://t.co/vEPqzLdl8r
Cryptolaemus1's tweet photo. #WikiLoader - #TA544 - .pdf > url > .zip > .js > .js > .dll wscript Inv_03_20_2024.js wscript confidential-legal.js C:\Users\Admin\AppData\Local\Temp\npp.8.6.4.portable.x64\notepad.exe (sideload)๐Ÿ‘‡ \npp.8.6.3.portable.x64\plugins\mimeTools.dll IOC's https://t.co/vEPqzLdl8r https://t.co/zAdF6GFmS9
1
56
20
11
5K
JAMESWT_WT's profile image
JAMESWT @JAMESWT_WT
Too in #italy #WikiLoader - #TA544 #quickbooks "Invoice Reminder: Your payment to Allen&Overy LLP " EML>PDF>url>zip>js>js>dll โš ๏ธzip Url https[:]//infplaute[.]com/international-commercial โ‡๏ธSamples https://t.co/5yhkQKUueQ
JAMESWT_WT's tweet photo. Too in #italy #WikiLoader - #TA544 #quickbooks "Invoice Reminder: Your payment to Allen&Overy LLP " EML>PDF>url>zip>js>js>dll โš ๏ธzip Url https[:]//infplaute[.]com/international-commercial โ‡๏ธSamples https://t.co/5yhkQKUueQ https://t.co/HEH3Ap211F
Cryptolaemus1's profile image
Cryptolaemus @Cryptolaemus1
#WikiLoader - #TA544 - .pdf > url > .zip > .js > .js > .dll wscript 03_07_2024.js wscript affiliated.js C:\Users\Admin\AppData\Local\Temp\npp.8.6.3.portable.x64\notepad.exe (sideload)๐Ÿ‘‡ \npp.8.6.3.portable.x64\plugins\mimeTools.dll IOC's https://t.co/aLfH6jYLme
Cryptolaemus1's tweet photo. #WikiLoader - #TA544 - .pdf > url > .zip > .js > .js > .dll wscript 03_07_2024.js wscript affiliated.js C:\Users\Admin\AppData\Local\Temp\npp.8.6.3.portable.x64\notepad.exe (sideload)๐Ÿ‘‡ \npp.8.6.3.portable.x64\plugins\mimeTools.dll IOC's https://t.co/aLfH6jYLme https://t.co/M32mXhe0zt
1
68
30
5
14K
2
54
18
7
7K
Cryptolaemus1's profile image
Cryptolaemus @Cryptolaemus1
#WikiLoader - #TA544 - .pdf > url > .zip > .js > .js > .dll wscript 03_07_2024.js wscript affiliated.js C:\Users\Admin\AppData\Local\Temp\npp.8.6.3.portable.x64\notepad.exe (sideload)๐Ÿ‘‡ \npp.8.6.3.portable.x64\plugins\mimeTools.dll IOC's https://t.co/aLfH6jYLme
Cryptolaemus1's tweet photo. #WikiLoader - #TA544 - .pdf > url > .zip > .js > .js > .dll wscript 03_07_2024.js wscript affiliated.js C:\Users\Admin\AppData\Local\Temp\npp.8.6.3.portable.x64\notepad.exe (sideload)๐Ÿ‘‡ \npp.8.6.3.portable.x64\plugins\mimeTools.dll IOC's https://t.co/aLfH6jYLme https://t.co/M32mXhe0zt
1
68
30
5
14K
Cryptolaemus1's profile image
Cryptolaemus @Cryptolaemus1
#WikiLoader - #TA544 - .pdf > url > .zip > .js > .js > .dll wscript invoice 22-2-2024.js wscript on.js C:\Users\Admin\AppData\Local\Temp\npp.8.6.portable.x64\notepad.exe (sideload)๐Ÿ‘‡ \npp.8.6.portable.x64\plugins\mimeTools.dll (1/3) ๐Ÿ‘‡ IOC's https://t.co/PonWJOHgl7
Cryptolaemus1's tweet photo. #WikiLoader - #TA544 - .pdf > url > .zip > .js > .js > .dll wscript invoice 22-2-2024.js wscript on.js C:\Users\Admin\AppData\Local\Temp\npp.8.6.portable.x64\notepad.exe (sideload)๐Ÿ‘‡ \npp.8.6.portable.x64\plugins\mimeTools.dll (1/3) ๐Ÿ‘‡ IOC's https://t.co/PonWJOHgl7 https://t.co/kDYVgmtNi5
2
55
21
16
7K
hpsecurity's profile image
HP Wolf Security @hpsecurity
๐Ÿ“Ž PDF #malware is on the rise! This quarter, 11% of malware analyzed by our threat research team was in PDF format, including a notable #WikiLoader campaign being used to deliver #Ursnif. ๐Ÿ“ฆ Read our latest report for more: https://t.co/QmXGcXDJAs
hpsecurity's tweet photo. ๐Ÿ“Ž PDF #malware is on the rise! This quarter, 11% of malware analyzed by our threat research team was in PDF format, including a notable #WikiLoader campaign being used to deliver #Ursnif. ๐Ÿ“ฆ Read our latest report for more: https://t.co/QmXGcXDJAs https://t.co/v0gZAt5dll
0
8
6
2
1K

Last Seen Hashtags on Sotwe

dmme
Seen from Germany
CocheExplosivo
Seen from United States
urfagay
Seen from Turkey
็™ฝ่™Ž
Seen from United States
sexinnature
Seen from Germany
korean
CicloLectivo2020
Seen from United States
CorsetCrafting
Seen from United Kingdom
vrfarts
Seen from United States
bokepindo
Seen from Indonesia

Trends for you

1
Xbox
Under 10K tweets
2
Spyro
Under 10K tweets
3
Welker
Under 10K tweets
4
Munoz
Under 10K tweets
5
Stacey King
Under 10K tweets
6
Beirut
Under 10K tweets
7
Hocevar
Under 10K tweets
8
PlayStation
Under 10K tweets
9
Meet the Press
Under 10K tweets
10
Volpe
Under 10K tweets

Most Popular Users

elonmusk's profile image
1
Elon Musk Verified account
@elonmusk
240.2M followers
barackobama's profile image
2
Barack Obama Verified account
@barackobama
119.3M followers
realdonaldtrump's profile image
3
Donald J. Trump Verified account
@realdonaldtrump
111.6M followers
cristiano's profile image
4
Cristiano Ronaldo Verified account
@cristiano
109M followers
narendramodi's profile image
5
Narendra Modi Verified account
@narendramodi
107M followers
rihanna's profile image
6
Rihanna Verified account
@rihanna
97.3M followers
nasa's profile image
7
NASA Verified account
@nasa
92.1M followers
justinbieber's profile image
8
Justin Bieber Verified account
@justinbieber
90.6M followers
katyperry's profile image
9
KATY PERRY Verified account
@katyperry
86.9M followers
taylorswift13's profile image
10
Taylor Swift Verified account
@taylorswift13
80.7M followers
ladygaga's profile image
11
Lady Gaga Verified account
@ladygaga
72.2M followers
kimkardashian's profile image
12
Kim Kardashian Verified account
@kimkardashian
69.4M followers
youtube's profile image
13
YouTube Verified account
@youtube
68.6M followers
imvkohli's profile image
14
Virat Kohli Verified account
@imvkohli
68.6M followers
billgates's profile image
15
Bill Gates Verified account
@billgates
63.4M followers
theellenshow's profile image
16
The Ellen Show
@theellenshow
62.5M followers
cnn's profile image
17
CNN Verified account
@cnn
61.9M followers
neymarjr's profile image
18
Neymar Jr Verified account
@neymarjr
61.2M followers
x's profile image
19
X Verified account
@x
60.9M followers
selenagomez's profile image
20
Selena Gomez Verified account
@selenagomez
60M followers