Overview - Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 3 | www.emule-project.net |
|
| Details | Domain | 2 | api.account.xiaomi.com |
|
| Details | sha256 | 4 | c5c1ca4382f397481174914b1931e851a9c61f029e6b3eb8a65c9e92ddf7aa4c |
|
| Details | sha256 | 4 | a0664ac662802905329ec6ab3b3ae843f191e6555b707f305f8f5a0599ca3f68 |
|
| Details | sha256 | 4 | 93a01fbbdd63943c151679d037d32b1d82a55d66c6cb93c40ff63f2b770e5ca9 |
|
| Details | sha256 | 2 | 791c59a0d6456ac1d9976fe82dc6b13f3e5980c6cfa2fd9d58a3cc849755ea9f |
|
| Details | sha256 | 1 | 4b1948bc4fe200d493a106474f460a744fce2be0c5e33f97fc09aaafb84f6f9a |
|
| Details | sha256 | 4 | 3cc9d9a12f3b884582e5c4daf7d83c4a510172a836de90b87439388e3cde3682 |
|
| Details | CVE | 3 | cve-2022-20852 |
|
| Details | CVE | 2 | cve-2022-20820 |
|
| Details | Domain | 3 | www.kingsvc.cc |
|
| Details | Domain | 3 | www.afuocolento.it |
|
| Details | Domain | 2 | www.mbrainingevents.com |
|
| Details | CVE | 1 | cve-2021-20613 |
|
| Details | File | 1 | 脚本将根据系统位数的差别从远程下载对应文件到%temp%skype.jpg |
|
| Details | File | 1 | 并利用regsvr32加载skype.jpg |
|
| Details | File | 1 | %appdata%\mircosoft\windows\winx\config.txt |
|
| Details | File | 1 | 则初始化c2并加密存入config.txt |
|
| Details | File | 3 | detail32.jpg |
|
| Details | md5 | 1 | bc13fc599bb594bc19ac9e6fde0c28c6 |
|
| Details | md5 | 1 | e3ef607182564bb158287cafb7b11be7 |
|
| Details | md5 | 2 | 8451be72b75a38516e7ba7972729909e |
|
| Details | md5 | 2 | fe2d05365f059d48fd972c79afeee682 |
|
| Details | md5 | 1 | 4662dfa19bd590b1088befa28426a161 |
|
| Details | md5 | 1 | b5a31d89f5b83d37c921d159364c968c |