Common Information
| Type | Value |
|---|---|
| Value |
o32.tmp |
| Category | |
| Type | File |
| Misp Type | |
| Description |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2018-01-16 | 50 | RIG Exploit Kit Delivers Ramnit Banking Trojan via Seamless Malvertising Campaign | ||
| Details | Website | 2017-11-12 | 53 | Seamless Campaign Delivers Ramnit via RIG EK at 188.225.82.158. Follow-up Malware is AZORult Stealer. | ||
| Details | Website | 2017-10-10 | 56 | Malvertising Campaign Uses RIG EK to Drop Quant Loader which Downloads FormBook. | ||
| Details | Website | 2017-09-27 | 30 | Malvertising Leads to RIG EK and Drops Remcos RAT. | ||
| Details | Website | 2017-09-14 | 37 | HookAds Campaign Leads to RIG EK and Drops ZeuS Panda. | ||
| Details | Website | 2017-08-23 | 22 | The Seamless Campaign Isn’t Losing Any Steam | ||
| Details | Website | 2017-07-27 | 29 | Dreambot Dropped by HookAds | ||
| Details | Website | 2017-07-24 | 48 | The Seamless Campaign Drops Ramnit. Follow-up Malware: AZORult Stealer, Smoke Loader, etc. | ||
| Details | Website | 2017-07-18 | 27 | HookAds Continues to use RIG EK to Drop Dreambot | ||
| Details | Website | 2017-07-03 | 23 | Seamless Campaign Leads to RIG EK at 188.225.79.43 and Drops Ramnit | ||
| Details | Website | 2017-06-25 | 31 | Malvertising Leads to HookAds Campaign Which Redirects to RIG EK at 188.225.74.13. RIG EK Drops Dreambot. | ||
| Details | Website | 2017-06-23 | 27 | Seamless Campaign Leads to RIG EK at 92.222.48.83 and Drops Ramnit | ||
| Details | Website | 2017-06-20 | 36 | HookAds Campaign Leads to RIG EK at 188.225.78.240. RIG EK Drops Dreambot. | ||
| Details | Website | 2017-06-06 | 33 | HookAds Malvertising Campaign Leads to RIG EK at 194.87.93.114 and Drops Dreambot | ||
| Details | Website | 2017-05-31 | 41 | HookAds Campaign Leads to RIG EK at 188.227.74.169 and 5.200.52.203, Drops Dreambot | ||
| Details | Website | 2017-05-18 | 23 | HookAds Malvertising Campaign Leads to RIG EK at 185.154.53.33, Drops LatentBot | ||
| Details | Website | 2017-05-15 | 40 | RIG Exploit Kit at 185.154.53.7 Drops Pony, Downloads Philadelphia Ransomware. | ||
| Details | Website | 2017-04-03 | 180 | Shadow Server Domains Leading to RIG Exploit Kit Dropping Smoke Loader. Downloaded Neutrino Bot (AKA Kasidet). | ||
| Details | Website | 2017-04-03 | 35 | Good Man Gate Leads to RIG EK, Drops ZeusVM (KINS) | ||
| Details | Website | 2017-03-27 | 29 | RIG EK at 5.200.52.238 Drops Ransom Locker | ||
| Details | Website | 2017-03-16 | 20 | SAGE 2.2 Ransomware from Good Man Gate | ||
| Details | Website | 2017-03-02 | 167 | RIG EK at 92.53.105.43 Drops ASN1 Ransomware | ||
| Details | Website | 2017-02-28 | 30 | EITest Leads to RIG EK at 188.225.36.251. EK Drops CryptoShield 2.0 Ransomware. |