Rectifyq📃Title: SharpPanda Strike Again
📅Date: 2026-06-25
🔗References:
🔖Rectifyq Taxonomies:
- relevancy: 🔴 Highly Relevant
- category: ⚔Threat
- sub-category: malware-analysis
- target: broad-based
- MY-relevancy: relevant
🔖MISP Galaxies:
- threat-actor= SharpPanda
- target-information=“France”
- target-information=“Malaysia”
- operating-system=“Windows”
- software-vendor=“microsoft”
- mitre-attack-pattern=[]
MISP event uuid: c43ea1a9-5308-43d7-a187-048d2b65e20b
Indicator of Compromise (IoCs)
type,value,comment
md5, cb161e2b9508e93f1b3113d3d8087dc2, 'Document'
md5, 3927ec252d2b00bd2d9d8550c529ae4f, 'Document'
md5, a63496ff570d2f75ae3f211780976eaa, 'Stage 2'
md5, 6615feda87063553f7239c2865e4fbf3, 'Macro module'
md5, 642bd3c02e79d5953b0119a7d60903e2, 'Macro module'
sha256, 92fd13374bbc2d0741cb0b78d6a5f979796380ad03f3dc59b7ad633b45668e14, 'ZIP No sample in VT\r\nLast check:27/06/2026'
sha256, c373b6ae57c53449d0442c6aaf307c36ccc4a3e37960b60be6ce29c0573bc1fb, 'ZIP No sample in VT\r\nLast check:27/06/2026'
sha256, 47976166cdf4ceb36c4743423b85559ebc2a591389c5cf031ab50a9583d97d0d, 'Stage 1 No sample in VT\r\nLast check:27/06/2026'
sha256, 002ea3f1a773fd33f134d25fe43f46bd367567b3db4e513c5003a6017d41c18f, 'Stage 1 No sample in VT\r\nLast check:27/06/2026'
sha256, 28622bd3709e022939060827bcbf629a8cf0620ca0bef439667b5b0fe248a8a8, 'Stage 2 No sample in VT\r\nLast check:27/06/2026'
sha256, bedb6e6466ab92e48741a6f3f1d5471e49403d69fe295170097a76fe79efe8cd, 'Resource No sample in VT\r\nLast check:27/06/2026'
sha256, 54cbd4e83aff8cf3c1531a5603753469450c380f792ebfeb926b4dd978b44d44, 'Resource No sample in VT\r\nLast check:27/06/2026'
sha256, 9055a6eee0533329c6740314d3e939434c68a8e85cf710afc9b8dfab7d0334bc, 'Shortcut No sample in VT\r\nLast check:27/06/2026'
Full IOCs available in Rectifyq’s MISP