ioc[.]one - OSINT Cyber Threat Intelligence Database

FluBot Malware Analysis Report

Show in Graph

Common Information

Type	Value
UUID	3ff63085-23a3-48ec-af3b-cdb15699dc38
Fingerprint	dcb888b6797fb7acd43d72140a3cfc9cca08c3148965403e52618cb5fe8465e9
Analysis status	DONE
Considered CTI value	2
Text language
Published	March 5, 2021, 8:25 a.m.
Added to db	March 9, 2024, 11:42 p.m.
Last updated	Aug. 30, 2024, 10:36 p.m.
Headline	FluBot Malware Analysis Report
Title	FluBot Malware Analysis Report
Detected Hints/Tags/Attributes	72/3/232

Source URLs

	Redirection	Url
Details	Source	https://25491742.fs1.hubspotusercontent-eu1.net/hubfs/25491742/%5BFLUBOT%5D%20New%20Massive%20Mobile%20Malware%20Ring%20Targeting%20Europe.pdf
Details	Source	https://raw.githubusercontent.com/prodaft/malware-ioc/master/FluBot/FluBot.pdf

URL Provider

Details	Provider	Source level domain
Details	githubusercontent.com	raw.githubusercontent.com
Details	hubspotusercontent-eu1.net	25491742.fs1.hubspotusercontent-eu1.net

Attributes

Details	Type	#Events	Value
Details	Domain	1	com.clubbing.photos
Details	Domain	1	com.redtube.music
Details	Domain	4126	github.com
Details	Domain	2	xjnwqdospderqtk.ru
Details	Domain	2	nfiuerwtftasnuk.com
Details	Domain	1	2020.techbharat.org.in
Details	Domain	1	amirapache.ir
Details	Domain	1	anapa-dive.ru
Details	Domain	1	audioquran.kz
Details	Domain	1	boutique.creolegarden.com
Details	Domain	1	buguilou.com
Details	Domain	1	canhair.net
Details	Domain	1	cloudstrading.com
Details	Domain	1	developer.team1global.com.au
Details	Domain	1	ekremakin.org
Details	Domain	1	elektroprommash.ru
Details	Domain	1	freeavporn.com
Details	Domain	1	grahaksamachar.in
Details	Domain	1	idea-soft.it
Details	Domain	1	imw6.com
Details	Domain	1	imwedsonpassos.com.br
Details	Domain	1	isabelsantos123.pt
Details	Domain	1	itaperunatem.com.br
Details	Domain	1	lamoraleja.com.co
Details	Domain	1	landing.kofacins.com
Details	Domain	1	ln-lighting.com
Details	Domain	1	mimi-mi.studio
Details	Domain	1	muaadzawy.com
Details	Domain	1	ouyangpengcheng.xyz
Details	Domain	1	palinkapatika.com
Details	Domain	1	pescadorsportsgroup.com
Details	Domain	1	portalcalamuchita.com.ar
Details	Domain	1	printing-packingshow.ir
Details	Domain	1	raku-plus.com
Details	Domain	1	rpgbundle.info
Details	Domain	1	sailorcrossfitmdp.com
Details	Domain	1	skipshopping.net
Details	Domain	1	srinterior.co.in
Details	Domain	1	studiobonazzi.eu
Details	Domain	1	telec.com.pk
Details	Domain	1	teologianaweb.com.br
Details	Domain	2	thejoblessemperor.in
Details	Domain	1	valks3d.com.br
Details	Domain	1	videoeditorhub.com
Details	Domain	1	www.export-barazande.com
Details	Domain	1	www.internetpathshala.co
Details	Domain	1	www.larrecantofeliz.com.br
Details	Domain	1	www.old.danacadesign.com
Details	Domain	1	www.payamesavadkooh.ir
Details	Domain	1	www.pudhuveedu.in
Details	Domain	1	www.raeloficial.com
Details	Domain	1	www.recycom.gr
Details	Domain	2	www.zyzlk.com
Details	Domain	2	wxz14.com
Details	Domain	1	xref.icu
Details	Domain	1	yangbin.100cuo.com
Details	Domain	1	yulu1953.cn
Details	Domain	1	42sf.net
Details	Domain	1	84blog.xyz
Details	Domain	1	aitao.site
Details	Domain	1	alercehistorico.cl
Details	Domain	1	amzstudy.com
Details	Domain	1	apartners.vn
Details	Domain	1	brighterdaysfi.com
Details	Domain	1	byalex-photography.co.uk
Details	Domain	1	cbd-and-epilepsy.com
Details	Domain	1	cbd-and-seizures.com
Details	Domain	1	contornosdesign.pt
Details	Domain	1	cssincronbucuresti.ro
Details	Domain	1	delhi.tie.org
Details	Domain	1	dgeneration.in
Details	Domain	1	dumeiwu.com
Details	Domain	1	elitekidsbookzone.sch.ng
Details	Domain	1	escuelaargentina.cl
Details	Domain	1	fraternitykerala.org
Details	Domain	1	garveylibertyhall.com
Details	Domain	1	getblogour.com
Details	Domain	1	gladiadoresdevendas.com.br
Details	Domain	1	hentaivillage.com
Details	Domain	1	illuminaticult.org
Details	Domain	1	imrt.ac.in
Details	Domain	1	industrial-land.vn
Details	Domain	1	jexchange.ga
Details	Domain	1	kidimy.org
Details	Domain	1	lacasa-dh.nl
Details	Domain	1	londonroofingpros.co.uk
Details	Domain	1	machupicchutraveling.com
Details	Domain	1	mucc.com.au
Details	Domain	1	mvpmsadhyapak.in
Details	Domain	1	nakoblog.info
Details	Domain	1	nen.vacad.net
Details	Domain	1	pic.tnell.com
Details	Domain	1	rishipes.co.nz
Details	Domain	1	ryansa.com
Details	Domain	1	sdlformazione.it
Details	Domain	1	sprintintercom.com.au
Details	Domain	1	telugufusion.com
Details	Domain	1	tuyennvtb.com
Details	Domain	1	twospoonsfleet.co.uk
Details	Domain	1	visotka.in
Details	Domain	1	weboyal.com
Details	Domain	1	www.admh.in
Details	Domain	1	www.agroescape.com
Details	Domain	1	www.divam.ir
Details	Domain	1	www.nbkangxi.com
Details	Domain	1	www.omvshop.com
Details	Domain	1	www.spave.com.pk
Details	Domain	1	www.wwworks.com.au
Details	Domain	1	www.ylem222.com
Details	Domain	1	xatziemmanouiltools.gr
Details	Domain	1	thvitstore-c7a.com
Details	File	16	permission.bin
Details	File	1	dga_gen.py
Details	File	1	getreq.js
Details	File	1	rpgbundle.inf
Details	File	1	nakoblog.inf
Details	Github username	2	prodaft
Details	md5	1	1a2a4044cf18eed59e66c413db766145
Details	sha256	2	30937927e8891f8c0fd2c7b6be5fbc5a05011c34a7375e91aad384b82b9e6a67
Details	sha256	1	1eb54ee1328ad5563e0e85a8ecff13cd2e642f5c6fc42e0e1038aeac0ee8cf2f
Details	sha256	1	2277d20669267bbe9ff8a656258af0a33563c18c45cef3624eab67cf123c29a7
Details	sha256	1	3bb0dbdb9ec7822dc53af230de0bdb908a558993619ac788c90eeeb5af6a1e14
Details	Url	1	https://github.com/prodaft/malware-ioc/blob/master/flubot/dga_gen.py
Details	Url	1	https://github.com/prodaft/malware-ioc/blob/master/flubot/getreq.js
Details	Url	1	http://2020.techbharat.org.in/status
Details	Url	1	http://amirapache.ir/pkg
Details	Url	1	http://anapa-dive.ru/pkge
Details	Url	1	http://audioquran.kz/www
Details	Url	1	http://boutique.creolegarden.com/fedex
Details	Url	1	http://buguilou.com/p
Details	Url	1	http://canhair.net/parcel
Details	Url	1	http://cloudstrading.com/fedex
Details	Url	1	http://developer.team1global.com.au/pack
Details	Url	1	http://ekremakin.org/pack
Details	Url	1	http://elektroprommash.ru/pack
Details	Url	1	http://freeavporn.com/fedex
Details	Url	1	http://grahaksamachar.in/p
Details	Url	1	http://idea-soft.it/p
Details	Url	1	http://imw6.com/pack
Details	Url	1	http://imwedsonpassos.com.br/parcel
Details	Url	1	http://isabelsantos123.pt/p
Details	Url	1	http://itaperunatem.com.br/pkge
Details	Url	1	http://lamoraleja.com.co/status
Details	Url	1	http://landing.kofacins.com/pack
Details	Url	1	http://ln-lighting.com/pkg
Details	Url	1	http://mimi-mi.studio/pkg
Details	Url	1	http://muaadzawy.com/pkg
Details	Url	1	http://ouyangpengcheng.xyz/p
Details	Url	1	http://palinkapatika.com/pack
Details	Url	1	http://pescadorsportsgroup.com/pkg
Details	Url	1	http://portalcalamuchita.com.ar/pack
Details	Url	1	http://printing-packingshow.ir/fedex
Details	Url	1	http://raku-plus.com/pack
Details	Url	1	http://rpgbundle.info/status
Details	Url	1	http://sailorcrossfitmdp.com/fedex
Details	Url	1	http://skipshopping.net/fedex
Details	Url	1	http://srinterior.co.in/pkg
Details	Url	1	http://studiobonazzi.eu/fedex
Details	Url	1	http://telec.com.pk/pkg
Details	Url	1	http://teologianaweb.com.br/pkg
Details	Url	1	http://thejoblessemperor.in/pkg
Details	Url	1	http://valks3d.com.br/fedex
Details	Url	1	http://videoeditorhub.com/pkg
Details	Url	1	http://www.export-barazande.com/fedex
Details	Url	1	http://www.internetpathshala.co/p
Details	Url	1	http://www.larrecantofeliz.com.br/fedex
Details	Url	1	http://www.old.danacadesign.com/fedex
Details	Url	1	http://www.payamesavadkooh.ir/pack
Details	Url	1	http://www.pudhuveedu.in/p
Details	Url	1	http://www.raeloficial.com/pkg
Details	Url	1	http://www.recycom.gr/pack
Details	Url	1	http://www.zyzlk.com/p
Details	Url	1	http://www.zyzlk.com/pack
Details	Url	1	http://wxz14.com/p
Details	Url	1	http://xref.icu:9090/pkg
Details	Url	1	http://yangbin.100cuo.com/pack
Details	Url	1	http://yulu1953.cn/fedex
Details	Url	1	https://42sf.net/pack
Details	Url	1	https://84blog.xyz/pkg
Details	Url	1	https://aitao.site/pkg
Details	Url	1	https://alercehistorico.cl/pkg
Details	Url	1	https://amzstudy.com/pack
Details	Url	1	https://apartners.vn/pack
Details	Url	1	https://brighterdaysfi.com/fedex
Details	Url	1	https://byalex-photography.co.uk/pack
Details	Url	1	https://cbd-and-epilepsy.com/pack
Details	Url	1	https://cbd-and-seizures.com/p
Details	Url	1	https://contornosdesign.pt/pkg
Details	Url	1	https://cssincronbucuresti.ro/pkg
Details	Url	1	https://delhi.tie.org/p
Details	Url	1	https://dgeneration.in/pack
Details	Url	1	https://dumeiwu.com/p
Details	Url	1	https://elitekidsbookzone.sch.ng/pack
Details	Url	1	https://escuelaargentina.cl/p
Details	Url	1	https://fraternitykerala.org/pkg
Details	Url	1	https://garveylibertyhall.com/pack
Details	Url	1	https://getblogour.com/fedex
Details	Url	1	https://gladiadoresdevendas.com.br/pack
Details	Url	1	https://hentaivillage.com/parcel
Details	Url	1	https://illuminaticult.org/fedex
Details	Url	1	https://imrt.ac.in/pack
Details	Url	1	https://imrt.ac.in/pkg
Details	Url	1	https://industrial-land.vn/pack
Details	Url	1	https://jexchange.ga/pack
Details	Url	1	https://kidimy.org/pkg
Details	Url	1	https://lacasa-dh.nl/pack
Details	Url	1	https://londonroofingpros.co.uk/fedex
Details	Url	1	https://machupicchutraveling.com/pkg
Details	Url	1	https://mucc.com.au/p
Details	Url	1	https://mvpmsadhyapak.in/p
Details	Url	1	https://nakoblog.info/fedex
Details	Url	1	https://nen.vacad.net/pkg
Details	Url	1	https://pic.tnell.com/pkg
Details	Url	1	https://rishipes.co.nz/pack
Details	Url	1	https://ryansa.com/pkg
Details	Url	1	https://sdlformazione.it/p
Details	Url	1	https://sprintintercom.com.au/fedex
Details	Url	1	https://telugufusion.com/pkg
Details	Url	1	https://tuyennvtb.com/p
Details	Url	1	https://twospoonsfleet.co.uk/p
Details	Url	1	https://visotka.in/pack
Details	Url	1	https://weboyal.com/p
Details	Url	1	https://www.admh.in/fedex
Details	Url	1	https://www.agroescape.com/pkg
Details	Url	1	https://www.divam.ir/pack
Details	Url	1	https://www.nbkangxi.com/pack
Details	Url	1	https://www.omvshop.com/pkge
Details	Url	1	https://www.spave.com.pk/p
Details	Url	1	https://www.wwworks.com.au/p
Details	Url	1	https://www.ylem222.com/p
Details	Url	1	https://xatziemmanouiltools.gr/pkg
Details	Url	1	https://xn–thvitstore-c7a.com/pkg