Capitalizing on Coronavirus Panic, Threat Actors Target Victims Worldwide
Common Information
| Type | Value |
|---|---|
| UUID | 21343bf9-5d32-4a70-a96a-a2e28db3bd14 |
| Fingerprint | a3ecd97c758c76ff2b5b8a367493d2f90b7f320232ed06615745e0b7de8bced0 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | March 17, 2020, 2:11 p.m. |
| Added to db | March 10, 2024, 12:53 a.m. |
| Last updated | Aug. 30, 2024, 10:30 p.m. |
| Headline | Capitalizing on Coronavirus Panic, Threat Actors Target Victims Worldwide |
| Title | Capitalizing on Coronavirus Panic, Threat Actors Target Victims Worldwide |
| Detected Hints/Tags/Attributes | 111/3/176 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://go.recordedfuture.com/hubfs/reports/cta-2020-0312-2.pdf |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 375 | cve-2017-11882 |
|
| Details | Domain | 546 | www.recordedfuture.com |
|
| Details | Domain | 4 | cdc-gov.org |
|
| Details | Domain | 1 | cdcgov.org |
|
| Details | Domain | 6 | cdc.gov |
|
| Details | Domain | 1 | ac19.ir |
|
| Details | Domain | 4 | who.int |
|
| Details | Domain | 2 | healing-yui223.com |
|
| Details | Domain | 1 | www.schooluniformtrading.com.au |
|
| Details | Domain | 2 | onthefx.com |
|
| Details | Domain | 2 | urbanandruraldesign.com.au |
|
| Details | Domain | 2 | gocycle.com.au |
|
| Details | Domain | 1 | mallinckrodt.xyz |
|
| Details | Domain | 119 | yandex.ru |
|
| Details | Domain | 2 | erasmus-plius.tomasjs.com |
|
| Details | Domain | 2 | easytogets.com |
|
| Details | Domain | 2 | drhuzaifa.com |
|
| Details | Domain | 2 | dewarejeki.info |
|
| Details | Domain | 2 | dewakartu.info |
|
| Details | Domain | 3 | insiderppe.cloudapp.net |
|
| Details | Domain | 12 | kbfvzoboss.bid |
|
| Details | Domain | 3 | cloud-security.ggpht.ml |
|
| Details | Domain | 1 | coronavirusoutbreakmap.com |
|
| Details | Domain | 1 | www.coronavirusoutbreakmap.com |
|
| Details | Domain | 1 | corona-virus.healthcare |
|
| Details | Domain | 1 | coronavirusprotectionmasks.org |
|
| Details | Domain | 1 | www.coronavirusprotectionmasks.org |
|
| Details | Domain | 1 | coronavirus.1point3acres.com |
|
| Details | Domain | 1 | coronavirus.dev |
|
| Details | Domain | 1 | wuhancoronavirus.blogspot.com |
|
| Details | Domain | 1 | coronavirusdata.org |
|
| Details | Domain | 1 | www.coronavirusdata.org |
|
| Details | Domain | 1 | coronamap.live |
|
| Details | Domain | 1 | coronamap.site |
|
| Details | Domain | 1 | coronatoken.org |
|
| Details | Domain | 1 | bestcoronavirusprotect.tk |
|
| Details | Domain | 1 | coronavirusnigeria.ng4n.com |
|
| Details | Domain | 1 | corona.yagi.news |
|
| Details | Domain | 1 | info-coronavirus.be |
|
| Details | Domain | 1 | www.info-coronavirus.be |
|
| Details | Domain | 1 | coronavirusnews.world |
|
| Details | Domain | 1 | coronavirus.app |
|
| Details | Domain | 1 | endcoronavirus.org |
|
| Details | Domain | 1 | coronavirus-reports.com |
|
| Details | Domain | 1 | coronavirus-map.com |
|
| Details | Domain | 1 | www.endcoronavirus.org |
|
| Details | Domain | 1 | coronavirusreport.buzz |
|
| Details | Domain | 1 | www.coronavirusreport.buzz |
|
| Details | Domain | 1 | coronavirusupdates.eu |
|
| Details | Domain | 1 | coronavirus-monitor.ru |
|
| Details | Domain | 1 | coronavirus123.com |
|
| Details | Domain | 3 | coronavirusstatus.space |
|
| Details | Domain | 1 | coronaviruszone.com |
|
| Details | Domain | 1 | coronavirusofficialnews.com |
|
| Details | Domain | 1 | flashnewscoronavirus.blogspot.com |
|
| Details | Domain | 2 | coronatracker.com |
|
| Details | Domain | 3 | survivecoronavirus.org |
|
| Details | Domain | 1 | corona.help |
|
| Details | Domain | 1 | coronaboard-env.csgy3mxprm.eu-west-1.elasticbeanstalk.com |
|
| Details | Domain | 1 | coronavirusinformationforus.blogspot.com |
|
| Details | Domain | 1 | www.coronatracker.com |
|
| Details | Domain | 1 | blogcoronacl.canalcero.digital |
|
| Details | Domain | 1 | virus-corona.org |
|
| Details | Domain | 1 | coronavirusupdates.online |
|
| Details | Domain | 2 | coronavirus.zone |
|
| Details | Domain | 1 | coronavirusthermometer.com |
|
| Details | Domain | 1 | coronavirusawerness.blogspot.com |
|
| Details | Domain | 1 | coronavirustoday.com |
|
| Details | Domain | 1 | coronavirus.cc |
|
| Details | Domain | 1 | corona-virus.tokyo |
|
| Details | Domain | 1 | www.coronavirustoday.com |
|
| Details | Domain | 1 | coronavirus-testing.com |
|
| Details | Domain | 1 | stopcorona.org |
|
| Details | Domain | 1 | coronavirusecuador.com |
|
| Details | Domain | 1 | viruscorona.co.uk |
|
| Details | Domain | 1 | coronastop28.com |
|
| Details | Domain | 1 | coronavirusepidemia.blogspot.com |
|
| Details | Domain | 1 | coronanow.kr |
|
| Details | Domain | 1 | corona.kpwashingtonresearch.org |
|
| Details | Domain | 1 | coronaviruses.com.au |
|
| Details | Domain | 1 | mycoronavirus.world |
|
| Details | Domain | 1 | coronavirus-in.space |
|
| Details | Domain | 1 | coronawatch.eu |
|
| Details | Domain | 1 | coronavirus.cms.am |
|
| Details | Domain | 1 | www.coronawatch.eu |
|
| Details | Domain | 1 | trackcorona.net |
|
| Details | Domain | 1 | coronavirustechhandbook.com |
|
| Details | Domain | 1 | coronavirus.tghn.org |
|
| Details | Domain | 1 | coronawatch.now.sh |
|
| Details | Domain | 1 | trackcorona.live |
|
| Details | Domain | 1 | coronavirusupdate.tk |
|
| Details | Domain | 1 | corona.kompa.ai |
|
| Details | Domain | 1 | whereisthecoronavirus.com |
|
| Details | Domain | 1 | thecoronaviruslive.info |
|
| Details | Domain | 1 | coronastats.net |
|
| Details | Domain | 1 | coronalive.just-shared.top |
|
| Details | Domain | 1 | coronavirus19news.com |
|
| Details | Domain | 1 | coronavirus.page |
|
| Details | Domain | 1 | coronavirusdefense.com |
|
| Details | Domain | 1 | www.thecoronaviruslive.info |
|
| Details | Domain | 2 | coronavirusaware.xyz |
|
| Details | Domain | 1 | coronavirus.koudaitour.com |
|
| Details | Domain | 1 | coronavirusabc.com |
|
| Details | Domain | 1 | www.trackcorona.live |
|
| Details | Domain | 1 | corona-nearby.com |
|
| Details | Domain | 1 | coronabye.com |
|
| Details | Domain | 1 | trackcoronavirus.com |
|
| Details | Domain | 1 | preventcoronaviruses.blogspot.com |
|
| Details | Domain | 1 | www.coronavirusabc.com |
|
| Details | Domain | 2 | vaccine-coronavirus.com |
|
| Details | Domain | 1 | coronavirus-realtime.com |
|
| Details | Domain | 1 | whatcoronavirus.com |
|
| Details | Domain | 1 | wuhan-virus-coronavirus-advice.blogspot.com |
|
| Details | Domain | 1 | corona.sums.ac.ir |
|
| Details | 1 | cdc-covid19@cdc.gov |
||
| Details | 1 | postmaster@mallinckrodt.xyz |
||
| Details | 1 | brentpaul403@yandex.ru |
||
| Details | File | 6 | covid-19.doc |
|
| Details | File | 3 | advisory.pdf |
|
| Details | File | 2125 | cmd.exe |
|
| Details | File | 1 | precautions.rar |
|
| Details | File | 1 | precautions.exe |
|
| Details | File | 1 | dewarejeki.inf |
|
| Details | File | 1 | dewakartu.inf |
|
| Details | File | 2 | wx9u79.php |
|
| Details | File | 1 | vc2tmy.php |
|
| Details | File | 1 | f21678535239.doc |
|
| Details | File | 1 | f21678535350.doc |
|
| Details | File | 82 | fre.php |
|
| Details | File | 3 | covid-19.rar |
|
| Details | md5 | 1 | 05adf4a08f16776ee0b1c271713a7880 |
|
| Details | md5 | 1 | Ef07feae7c00a550f97ed4824862c459 |
|
| Details | md5 | 1 | 8C809B4AC6D95CE85A0F04CD04B7A7EA |
|
| Details | md5 | 1 | 586FB4A6FFDFEB423F1F1782AAA9BB9F |
|
| Details | md5 | 1 | 8800EBD065B52468FA778B4527437F5A |
|
| Details | md5 | 1 | 379959D80D0BFC45AAB6437474D1F727 |
|
| Details | md5 | 1 | 2dfb086bc73c259cac18a9cb1f9dbbc8 |
|
| Details | md5 | 1 | 6c73d338ec64e0e44bd54ea61b6988b2 |
|
| Details | sha256 | 1 | 1db31ada5f1ac2411ef33790244343946b741cd603745257a4612c5d2e6a4052 |
|
| Details | sha256 | 1 | 9aea43b22f214228caf4fc714f426c0a140b7dd70b010bf3778cd1c0ec440851 |
|
| Details | sha256 | 1 | 1545401f661f9326f5c604e1a025e811079ba4eace9d3830a05c5e4aa666803e |
|
| Details | sha256 | 1 | 62dd16724874e0b05257118fb06427a6aeb839602bce52e6a139dc379f538bed |
|
| Details | sha256 | 1 | 09400e30105b10cd484a2159e8496accd779045ac6775b351b80949a54e772df |
|
| Details | sha256 | 2 | 5b12f8d817b5f98eb51ef675d5f31d3d1e34bf06befba424f08a5b28ce98d45a |
|
| Details | sha256 | 2 | 3b701eac4e3a73aec109120c97102c17edf88a20d1883dd5eef6db60d52b8d92 |
|
| Details | IPv4 | 1 | 150.95.52.104 |
|
| Details | IPv4 | 1 | 118.127.3.247 |
|
| Details | IPv4 | 1 | 153.120.181.196 |
|
| Details | IPv4 | 1 | 112.140.180.26 |
|
| Details | IPv4 | 1 | 13.239.26.132 |
|
| Details | IPv4 | 3 | 109.236.109.159 |
|
| Details | IPv4 | 2 | 85.96.49.152 |
|
| Details | IPv4 | 2 | 186.10.98.177 |
|
| Details | IPv4 | 2 | 185.234.73.125 |
|
| Details | IPv4 | 2 | 23.19.227.235 |
|
| Details | IPv4 | 1 | 45.128.134.14 |
|
| Details | IPv4 | 2 | 198.23.200.241 |
|
| Details | IPv4 | 1 | 123.161.61.55 |
|
| Details | IPv4 | 2 | 145.239.23.7 |
|
| Details | IPv4 | 23 | 192.35.177.64 |
|
| Details | Url | 1 | https://healing-yui223.com/cd.php |
|
| Details | Url | 1 | https://www.schooluniformtrading.com.au/cdcgov/files |
|
| Details | Url | 2 | https://onthefx.com/cd.php |
|
| Details | Url | 2 | https://urbanandruraldesign.com.au/cdcgov/files |
|
| Details | Url | 2 | https://gocycle.com.au/cdcgov/files |
|
| Details | Url | 1 | http://109.236.109.159:8080/vnx8v |
|
| Details | Url | 2 | http://85.96.49.152/6ou9ipbijtsu1 |
|
| Details | Url | 2 | http://186.10.98.177/fahth2y |
|
| Details | Url | 2 | http://erasmus-plius.tomasjs.com/wp-admin/kfespccg |
|
| Details | Url | 2 | http://easytogets.com/xfxvqq/uxbkabm |
|
| Details | Url | 2 | http://drhuzaifa.com/wp-includes/2i48k7-evv28gw-205510 |
|
| Details | Url | 2 | http://dewarejeki.info/wp-includes/up58jauc-pum2w-630352 |
|
| Details | Url | 2 | http://dewakartu.info/wp-includes/brvmfyvir |
|
| Details | Url | 2 | https://185.234.73.125/wmb03o/wx9u79.php |
|
| Details | Url | 1 | https://45.128.134.14/c821al/vc2tmy.php? |
|
| Details | Url | 2 | http://198.23.200.241/~power13/.xoiaspxo/fre.php |