April04_forpdf.pmd
Common Information
| Type | Value |
|---|---|
| UUID | 05644f51-5d0f-49f6-8334-9121b97bb8b3 |
| Fingerprint | 48c042b88efaba52c906774390c7b4ca4876a794ec3edff9d1faecc493daaaf5 |
| Analysis status | DONE |
| Considered CTI value | 1 |
| Text language | |
| Published | March 29, 2004, 3:20 p.m. |
| Added to db | April 18, 2024, 8:59 a.m. |
| Last updated | Aug. 31, 2024, 12:44 a.m. |
| Headline | April04_forpdf.pmd |
| Title | April04_forpdf.pmd |
| Detected Hints/Tags/Attributes | 219/3/128 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://www.virusbulletin.com/uploads/pdf/magazine/2004/200404.pdf |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | www.clearswift.com |
|
| Details | Domain | 404 | www.virusbtn.com |
|
| Details | Domain | 2 | www.checkvir.com |
|
| Details | Domain | 1 | www.nod-32.com |
|
| Details | Domain | 3 | www.bullguard.com |
|
| Details | Domain | 1 | www.eset.info |
|
| Details | Domain | 369 | microsoft.com |
|
| Details | Domain | 20 | intel.com |
|
| Details | Domain | 707 | google.com |
|
| Details | Domain | 5 | www.dshield.org |
|
| Details | Domain | 397 | www.microsoft.com |
|
| Details | Domain | 1 | studentweb.ncf.edu |
|
| Details | Domain | 1 | scanner.zip |
|
| Details | Domain | 1 | www.marshall911.com |
|
| Details | Domain | 2 | install.com |
|
| Details | Domain | 3 | linux.org |
|
| Details | Domain | 124 | www.ibm.com |
|
| Details | Domain | 13 | vil.nai.com |
|
| Details | Domain | 1 | filename.so |
|
| Details | Domain | 3 | www.dazuko.org |
|
| Details | Domain | 337 | virusbtn.com |
|
| Details | Domain | 20 | www.dallascon.com |
|
| Details | Domain | 66 | www.eicar.org |
|
| Details | Domain | 2 | www.cla.org |
|
| Details | Domain | 8 | www.informaticahabana.com |
|
| Details | Domain | 222 | www.blackhat.com |
|
| Details | Domain | 132 | www.rsaconference.com |
|
| Details | Domain | 3 | www.technosecurity.com |
|
| Details | Domain | 4 | www3.gartner.com |
|
| Details | Domain | 59 | www.gocsi.com |
|
| Details | Domain | 3 | www.internetworld.com |
|
| Details | Domain | 10 | misti.com |
|
| Details | Domain | 6 | www.laas.fr |
|
| Details | Domain | 39 | www.wsj.com |
|
| Details | Domain | 8 | www.isipp.com |
|
| Details | Domain | 48 | www.ceas.cc |
|
| Details | Domain | 8 | slashdot.org |
|
| Details | Domain | 1 | www.nuclearelephant.com |
|
| Details | Domain | 2 | crm114.sourceforge.net |
|
| Details | Domain | 2 | www.ripe.net |
|
| Details | Domain | 831 | example.com |
|
| Details | Domain | 1 | example-company.com |
|
| Details | 330 | editorial@virusbtn.com |
||
| Details | 4 | yhynes@misti.com |
||
| Details | File | 1 | 306.aspx |
|
| Details | File | 15 | download.aspx |
|
| Details | File | 1 | eset.inf |
|
| Details | File | 1122 | svchost.exe |
|
| Details | File | 1 | temp.htm |
|
| Details | File | 3 | taskmon.exe |
|
| Details | File | 3 | shimgapi.dll |
|
| Details | File | 1260 | explorer.exe |
|
| Details | File | 1 | ctfmon.dll |
|
| Details | File | 1 | %systemroot%\system32\webcheck.dll |
|
| Details | File | 1 | %windir%\system\webcheck.dll |
|
| Details | File | 1 | wkspatch.exe |
|
| Details | File | 3 | mprapi.dll |
|
| Details | File | 3 | rtutils.dll |
|
| Details | File | 130 | ws2_32.dll |
|
| Details | File | 4 | wshtcpip.dll |
|
| Details | File | 1 | intrenat.exe |
|
| Details | File | 5 | worm.exe |
|
| Details | File | 3 | webcheck.dll |
|
| Details | File | 1 | scanner.zip |
|
| Details | File | 14 | debug.exe |
|
| Details | File | 2126 | cmd.exe |
|
| Details | File | 748 | kernel32.dll |
|
| Details | File | 7 | mirc32.exe |
|
| Details | File | 2 | shell32.exe |
|
| Details | File | 1 | v_100181.htm |
|
| Details | File | 1 | v_100519.htm |
|
| Details | File | 1 | v_100983.htm |
|
| Details | File | 1 | v_100854.htm |
|
| Details | File | 82 | test_sets.html |
|
| Details | File | 85 | protocol.html |
|
| Details | File | 384 | www.inf |
|
| Details | File | 7 | events.php |
|
| Details | File | 1 | mailflows.pdf |
|
| Details | File | 1 | iadbquery.php |
|
| Details | File | 1 | codelist.php |
|
| Details | IPv4 | 1 | 82.192.165.54 |
|
| Details | IPv4 | 1 | 5.0.1.0 |
|
| Details | Mandiant Temporary Group Assumption | 1 | TEMP.HTM |
|
| Details | Url | 1 | http://www.clearswift.com/news/pressreleases/306.aspx |
|
| Details | Url | 149 | http://www.virusbtn.com/prevalence/. |
|
| Details | Url | 2 | http://www.checkvir.com/. |
|
| Details | Url | 1 | http://www.nod-32.com |
|
| Details | Url | 1 | http://www.bullguard.com/download.aspx |
|
| Details | Url | 1 | http://www.eset.info |
|
| Details | Url | 64 | http://www.virusbtn.com/. |
|
| Details | Url | 1 | http://studentweb.ncf.edu/rolf.rolles/scanner.zip |
|
| Details | Url | 1 | http://www.marshall911.com/~info/troj/debug.exe |
|
| Details | Url | 1 | http://www.marshall911.com |
|
| Details | Url | 1 | http://vil.nai.com/vil/content/v_100181.htm |
|
| Details | Url | 1 | http://vil.nai.com/vil/content/v_100519.htm |
|
| Details | Url | 1 | http://vil.nai.com/vil/content/v_100983.htm |
|
| Details | Url | 1 | http://vil.nai.com/vil/content/v_100854.htm |
|
| Details | Url | 3 | http://www.dazuko.org |
|
| Details | Url | 1 | http://www.virusbtn.com/comparatives/linux/2004 |
|
| Details | Url | 18 | http://www.virusbtn.com/comparatives/win95/199801 |
|
| Details | Url | 18 | http://www.dallascon.com/. |
|
| Details | Url | 24 | http://www.eicar.org/. |
|
| Details | Url | 2 | http://www.cla.org/. |
|
| Details | Url | 8 | http://www.informaticahabana.com/. |
|
| Details | Url | 134 | http://www.blackhat.com/. |
|
| Details | Url | 39 | http://www.rsaconference.com/. |
|
| Details | Url | 3 | http://www.technosecurity.com/. |
|
| Details | Url | 3 | http://www3.gartner.com/. |
|
| Details | Url | 4 | http://www.gocsi.com |
|
| Details | Url | 3 | http://www.internetworld.com/. |
|
| Details | Url | 3 | http://www.laas.fr/sec2004 |
|
| Details | Url | 52 | http://www.gocsi.com/. |
|
| Details | Url | 3 | http://www.wsj.com |
|
| Details | Url | 5 | http://www.isipp.com/events.php |
|
| Details | Url | 36 | http://www.ceas.cc/. |
|
| Details | Url | 1 | http://slashdot.org |
|
| Details | Url | 1 | http://www.nuclearelephant.com |
|
| Details | Url | 2 | http://crm114.sourceforge.net |
|
| Details | Url | 1 | http://www.ripe.net/ripe/meetings/ripe-47/mailflows.pdf |
|
| Details | Url | 1 | http://www.microsoft.com/spam/. |
|
| Details | Url | 1 | http://www.isipp.com/iadbquery.php |
|
| Details | Url | 1 | http://www.isipp.com/codelist.php |
|
| Details | Windows Registry Key | 37 | HKLM\SYSTEM |
|
| Details | Windows Registry Key | 3 | HKCU\CLSID |
|
| Details | Windows Registry Key | 1 | HKLM\SOFTWARE\Microsoft\Updates\Windows |
|
| Details | Windows Registry Key | 25 | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft |
|
| Details | Windows Registry Key | 1 | HKEY_CURRENT_USER\SOFTW |
|
| Details | Windows Registry Key | 31 | HKCU\Software\Microsoft\Windows |