Syrian Malware, the ever-evolving threat
Common Information
| Type | Value |
|---|---|
| UUID | 44d707a8-9086-469b-9f51-2bce0981a0fd |
| Fingerprint | 237e85532a279e8a82d8d2d50118a144b1ef65657867e382c093437082eccde3 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Aug. 14, 2014, 10:18 p.m. |
| Added to db | Oct. 1, 2024, 2:21 p.m. |
| Last updated | Oct. 1, 2024, 2:44 p.m. |
| Headline | Syrian Malware, the ever-evolving threat |
| Title | Syrian Malware, the ever-evolving threat |
| Detected Hints/Tags/Attributes | 185/2/262 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Autonomous System Number | 1 | AS6453 |
|
| Details | Domain | 338 | kaspersky.com |
|
| Details | Domain | 335 | www.facebook.com |
|
| Details | Domain | 1 | hacars11.no-ip.biz |
|
| Details | Domain | 1 | all4syrian.com |
|
| Details | Domain | 1174 | gmail.com |
|
| Details | Domain | 1 | xtr.all4syrian.com |
|
| Details | Domain | 1 | vip.all4syrian.com |
|
| Details | Domain | 67 | www.dropbox.com |
|
| Details | Domain | 1 | www.cyber-arabs.com |
|
| Details | Domain | 4 | ge.tt |
|
| Details | Domain | 768 | www.youtube.com |
|
| Details | Domain | 2 | ar.rghost.net |
|
| Details | Domain | 1 | arabs.com |
|
| Details | Domain | 8 | zapto.org |
|
| Details | Domain | 2 | thejoe.publicvm.com |
|
| Details | Domain | 2 | gulfup.com |
|
| Details | Domain | 1 | orangealert.zip |
|
| Details | Domain | 1 | abalse.no-ip.biz |
|
| Details | Domain | 1 | cmp.online-hd.tv |
|
| Details | Domain | 1 | alosh66.linkpc.net |
|
| Details | Domain | 1 | basharalassad1.no |
|
| Details | Domain | 1 | tn4.mooo.com |
|
| Details | Domain | 2 | tn5.linkpc.net |
|
| Details | Domain | 1 | fernando85.no-ip.biz |
|
| Details | Domain | 1 | meroassad.no-ip.biz |
|
| Details | Domain | 1 | ahmdddd.no-ip.biz |
|
| Details | Domain | 1 | shadye.zapto.org |
|
| Details | Domain | 2 | hacker1987.zapto.org |
|
| Details | Domain | 1 | shaaa1983.zapto.org |
|
| Details | Domain | 1 | beespy.no-ip.org |
|
| Details | Domain | 2 | aliallosh.sytes.net |
|
| Details | Domain | 1 | hhhhhkrufnrrrs1982.zapto.org |
|
| Details | Domain | 1 | basharalassad1.no-ip.biz |
|
| Details | Domain | 2 | tn1.linkpc.net |
|
| Details | Domain | 1 | tn2.linkpc.net |
|
| Details | Domain | 1 | nowarsytia.no-ip.org |
|
| Details | 147 | intelreports@kaspersky.com |
||
| Details | 1 | aloshalaa@gmail.com |
||
| Details | 1 | okpa1984@gmail.com |
||
| Details | File | 58 | password.txt |
|
| Details | File | 1 | data-base.db |
|
| Details | File | 1 | data-base.xsl |
|
| Details | File | 8 | system32.exe |
|
| Details | File | 56 | iexplorer.exe |
|
| Details | File | 5 | trojan.exe |
|
| Details | File | 2 | empty.exe |
|
| Details | File | 2 | kimawi.exe |
|
| Details | File | 2 | kimawi.jpg |
|
| Details | File | 73 | trojan.msi |
|
| Details | File | 1 | security.rar |
|
| Details | File | 1 | firewall.rar |
|
| Details | File | 1 | vpn.rar |
|
| Details | File | 1 | internet%20security.rar |
|
| Details | File | 1 | ssh%20vpn.rar |
|
| Details | File | 2 | thejoe.pub |
|
| Details | File | 1 | pc%e2%80%aeexe%e2%80%aeexe.rar |
|
| Details | File | 2 | 2014.exe |
|
| Details | File | 1 | njserver.exe |
|
| Details | File | 1 | shitanoxxx.exe |
|
| Details | File | 1 | shitano.exe |
|
| Details | File | 87 | skype.exe |
|
| Details | File | 1 | syriatel.exe |
|
| Details | File | 1 | orangealert.zip |
|
| Details | File | 5 | master.exe |
|
| Details | File | 1 | gfbf.exe |
|
| Details | File | 1 | 202.exe |
|
| Details | File | 1 | srgf2.exe |
|
| Details | File | 1 | vmfp4.exe |
|
| Details | File | 1 | oytu4.exe |
|
| Details | File | 1 | ssss.exe |
|
| Details | File | 1 | oooo.exe |
|
| Details | File | 18 | stub.exe |
|
| Details | File | 47 | winrar.exe |
|
| Details | File | 7 | tr.exe |
|
| Details | File | 1 | windowsapplication1.exe |
|
| Details | File | 1 | syria.exe |
|
| Details | File | 53 | server.exe |
|
| Details | File | 1 | cleaan.exe |
|
| Details | File | 271 | chrome.exe |
|
| Details | File | 1 | asa.exe |
|
| Details | File | 1 | feras.exe |
|
| Details | File | 13 | clean.exe |
|
| Details | File | 1 | application1.exe |
|
| Details | File | 2 | msrsaap.exe |
|
| Details | File | 2 | f2.exe |
|
| Details | File | 156 | 1.exe |
|
| Details | File | 2 | f3.exe |
|
| Details | File | 1 | yamen.exe |
|
| Details | File | 1260 | explorer.exe |
|
| Details | File | 7 | 13.exe |
|
| Details | File | 10 | e.exe |
|
| Details | File | 1 | ashdgasd.exe |
|
| Details | File | 1 | yaali.exe |
|
| Details | File | 1 | doduu.exe |
|
| Details | File | 1 | rsha.exe |
|
| Details | File | 1 | juydghj.exe |
|
| Details | File | 1 | freedom.exe |
|
| Details | File | 2 | fff.exe |
|
| Details | File | 3 | fun.exe |
|
| Details | File | 1 | lu04mtrd.exe |
|
| Details | File | 3 | rat.exe |
|
| Details | md5 | 1 | f0a8a1556efbb106b6297700d4cce61b |
|
| Details | md5 | 1 | 95a5c3e91bbb4a3a323433841fbef82a |
|
| Details | md5 | 1 | 9424b355a3670fd7749d3d25cbea18cb |
|
| Details | md5 | 1 | 38e3bc8776915dbd2e55a4d90f85a872 |
|
| Details | md5 | 1 | 23ae669639c1d970aaee6f9f551b82b1 |
|
| Details | md5 | 1 | abf93ad254cd01997935863c9e556af8 |
|
| Details | md5 | 1 | 96ca1d7e45b03f438804d3b46d22df8a |
|
| Details | md5 | 1 | 1827acc1cf53e6ac9d9b638fc81f50a1 |
|
| Details | md5 | 1 | 8995ff66bacaf76d1c24660f3092583c |
|
| Details | md5 | 1 | 10300846f75eb36ad87091ed7f04b5d8 |
|
| Details | md5 | 1 | 3828971a77d94b6a226064ede528e408 |
|
| Details | md5 | 1 | 796cafc1983bc4e8a5d80d390d3cd33a |
|
| Details | md5 | 1 | ec62a59b10b0e587529d431db18d7b77 |
|
| Details | md5 | 1 | ad9a18e1db0b43cb38da786eb3bf7c00 |
|
| Details | md5 | 1 | 1a6061d02794969ba7d57f808a64c1c2 |
|
| Details | md5 | 1 | ac54c78f37eec21d167b1571fc442e84 |
|
| Details | md5 | 1 | cddaf92765fd465fcea63a6e4a4e4cbc |
|
| Details | md5 | 1 | 037d1cf1f8231f41dd6ae425488445fc |
|
| Details | md5 | 1 | 23e936f189611430fffbdd8e1f2a077f |
|
| Details | md5 | 1 | 3f86102e70a3d2fc2f94137599e8d9c2 |
|
| Details | md5 | 1 | d3f957963f56b8bc5e883984857379d4 |
|
| Details | md5 | 1 | 4c881505fe577e8d94227bb3e39b9f75 |
|
| Details | md5 | 1 | e81bdf099a5e31f955d1d582dabed1d2 |
|
| Details | md5 | 1 | ef644d0b444d894d10e7fa8a5072a2e3 |
|
| Details | md5 | 1 | 05574551467d6730800f7d098b17c98a |
|
| Details | md5 | 1 | c46f72cb68b8d729fea8952fc01e1f13 |
|
| Details | md5 | 1 | 409a0b6954d4ff1000a6d7b78cde2b44 |
|
| Details | md5 | 1 | 0125a39deb6c0fb37853faa9a90162d3 |
|
| Details | md5 | 1 | 12d63168bac9de71bb9142aa9cf0e533 |
|
| Details | md5 | 1 | debb0beac6414b681d050f2fbc2f2719 |
|
| Details | md5 | 1 | 40527942833ac6ffa25e4f875ab0bd17 |
|
| Details | md5 | 1 | 0d4bbd0d646cedea1c3eb5d2079ce804 |
|
| Details | md5 | 1 | 12cbe97c89634db754bae817e3b177b3 |
|
| Details | md5 | 1 | 7ba45daccca21db2e353b9144b29f2e8 |
|
| Details | md5 | 1 | f73c643863b20d5843da4636330ff30e |
|
| Details | md5 | 1 | 86e6cc8827bce4837a55ad76133f3125 |
|
| Details | md5 | 1 | d96606d128ee726760f84eb8d37918b6 |
|
| Details | md5 | 1 | e5c13f46b8fe119f77d0144c78ca9f60 |
|
| Details | md5 | 1 | 45d4479bdd7d9a3e06e955ad358f1b6a |
|
| Details | md5 | 1 | e65107c5aeea5c3b3a59d4912905c3de |
|
| Details | md5 | 1 | f457f4ee2e2532466f180b86fb01c91d |
|
| Details | md5 | 1 | c71ccf5b1354d847fd7fae1e5668ea77 |
|
| Details | md5 | 1 | 3eb93fd8129aadbcce8d303047a18c9f |
|
| Details | md5 | 1 | bc00e320aebb6f780ac4e70a6e183978 |
|
| Details | md5 | 1 | b5c7a04ae3eed7fd9f076d2a400ba660 |
|
| Details | md5 | 1 | 1a44d73596b0f6755b4ed9651708c9e9 |
|
| Details | md5 | 1 | b717adfd7a4997ebae49308171d09b1f |
|
| Details | md5 | 1 | fa77151f7677e1602338e57c13aeab13 |
|
| Details | md5 | 1 | b7be9a74048fd64f0562a94e5fa66db2 |
|
| Details | md5 | 1 | cd92e50ba570b6cc018fbafb6ea7e0ad |
|
| Details | md5 | 1 | 24db21293792639a3567bf8c1f651885 |
|
| Details | md5 | 1 | fb2fbca3be381bb1a0b410f66e04f114 |
|
| Details | md5 | 1 | d2561f4259da6784894ffb1a559c6952 |
|
| Details | md5 | 1 | dd0965b9bb4d8fa833b59ab41b405c0b |
|
| Details | md5 | 1 | da98248ab1e4a287ac46023eacd08f5b |
|
| Details | md5 | 1 | ab75661f837537c4efb20ba6e99f23de |
|
| Details | md5 | 1 | ebb2acc6e6ff596dea4f034e6e941eea |
|
| Details | md5 | 1 | ed9b62e17543b948da81c75ad4db88ad |
|
| Details | md5 | 1 | 1b1bdfdd0c5218354d7c979afbbf4a76 |
|
| Details | md5 | 1 | 0d2f0807233cff088cf69f553553c3bc |
|
| Details | md5 | 1 | 430c8f11ce5a77e154ebcd0d7eb1501d |
|
| Details | md5 | 1 | 6ec76cfd10c6ee8e3d8fd81e445abb7b |
|
| Details | md5 | 1 | b4eb0cb0fae200d09e6744f0ede10810 |
|
| Details | md5 | 1 | 288a4ee20880be85af60b1bad4d1d4d7 |
|
| Details | md5 | 1 | 08947709640922b2d8e3b8d0e5b8e84e |
|
| Details | md5 | 1 | 21ec25f685843ec03fdba24837fc61e4 |
|
| Details | md5 | 1 | a7caf08fba073ac3e92d1faea340cb59 |
|
| Details | md5 | 1 | e1f2b15ec9f9a282065c931ec32a44b0 |
|
| Details | md5 | 1 | c85480f1e4731f98e28dc007056615a4 |
|
| Details | md5 | 1 | cd97b9b7494470274e7df66059348d6d |
|
| Details | md5 | 1 | 54c178ba89d752be2ae3307fd40db45f |
|
| Details | md5 | 1 | 93195146c13ba6fd75b3c0062e3abf05 |
|
| Details | md5 | 1 | f387eb11a402c9abb8700604906c00d6 |
|
| Details | md5 | 1 | a57f6c06ba7ca5758f1ca48eaa0a9cc5 |
|
| Details | md5 | 1 | b8e7f3b4cbe8e58b0509fc7fde71ddbf |
|
| Details | md5 | 1 | 387a285597d3ac51637f6ecc07ba0d5b |
|
| Details | md5 | 1 | faebf06b7113f47ec2f3089879d765b4 |
|
| Details | md5 | 1 | 3eeb1677da86e97a12205ff237a3df7d |
|
| Details | md5 | 1 | ab5bf9780d365c648fe39e70dc317ca5 |
|
| Details | md5 | 1 | 402d806f1b61753bba0ea9bc7a8f76c2 |
|
| Details | md5 | 1 | 217fe391d46cfd84653e36bc05a32f44 |
|
| Details | md5 | 1 | fd42186ffe642d10ea03d5cbec0cb3a0 |
|
| Details | md5 | 1 | f8f868b750a24f1a5be6083e80b06f30 |
|
| Details | md5 | 1 | ec165a9be618283b6f37646761002f32 |
|
| Details | md5 | 1 | ea4542ef5fa6a2682b8c00f97c88ed70 |
|
| Details | md5 | 1 | deb4c47abfc873f163693e2cfc9c7800 |
|
| Details | md5 | 1 | a91cf2847fa49fa5422244f85af0d3c5 |
|
| Details | md5 | 1 | af77e56fbf9259c5242adb964d0773a5 |
|
| Details | md5 | 1 | 8918b499ef2015f6988e806da0df8f12 |
|
| Details | md5 | 1 | 4851de5e6d72f428c4e557b91417c1b4 |
|
| Details | md5 | 1 | ab3da3252b698b3c7903a824b11418ed |
|
| Details | md5 | 2 | 6c3e84a601b48eefc716936aee7c8374 |
|
| Details | md5 | 1 | f9acce2596443c80254a016f426b1c41 |
|
| Details | md5 | 1 | ce47d484447dff1036e2100883320431 |
|
| Details | md5 | 1 | 52c3674e584ea31aef53b7dc4b2a33c5 |
|
| Details | md5 | 1 | 978ad00b35e8ea6f280cd375778884d3 |
|
| Details | md5 | 1 | a3493689114f75a61a8102d875001429 |
|
| Details | md5 | 1 | 946ab0068e5ab64c3c19fb171f55b31a |
|
| Details | md5 | 1 | 69133513990f6e186cded6745cfade2f |
|
| Details | md5 | 1 | 846983dc879f12e9dd0500434769856f |
|
| Details | md5 | 1 | bb5d66b921a4499c23a339ba2690650f |
|
| Details | md5 | 1 | 0e8e1d9bd9d7ae36cda747d6fdd284a3 |
|
| Details | md5 | 1 | 31aeb34a57ae6b79ffa3d962316f3ec8 |
|
| Details | IPv4 | 1 | 31.9.48.7 |
|
| Details | IPv4 | 1 | 31.9.48.0 |
|
| Details | IPv4 | 1 | 31.8.47.7 |
|
| Details | IPv4 | 1 | 31.8.48.7 |
|
| Details | IPv4 | 1 | 95.212.148.21 |
|
| Details | IPv4 | 2 | 31.9.48.146 |
|
| Details | IPv4 | 1 | 64.4.10.33 |
|
| Details | IPv4 | 1 | 95.212.148.233 |
|
| Details | IPv4 | 1 | 31.9.48.164 |
|
| Details | IPv4 | 1 | 31.9.48.11 |
|
| Details | IPv4 | 1 | 108.161.189.5 |
|
| Details | IPv4 | 1 | 31.9.48.141 |
|
| Details | IPv4 | 1 | 31.9.48.147 |
|
| Details | IPv4 | 1 | 31.9.48.84 |
|
| Details | IPv4 | 1 | 188.139.228.179 |
|
| Details | IPv4 | 1 | 178.52.194.35 |
|
| Details | IPv4 | 1 | 178.52.223.166 |
|
| Details | IPv4 | 1 | 178.52.158.22 |
|
| Details | IPv4 | 1 | 46.213.188.88 |
|
| Details | IPv4 | 1 | 94.252.216.187 |
|
| Details | IPv4 | 1 | 193.227.183.171 |
|
| Details | IPv4 | 1 | 46.53.11.244 |
|
| Details | IPv4 | 2 | 46.213.210.210 |
|
| Details | IPv4 | 1 | 178.52.0.233 |
|
| Details | IPv4 | 1 | 178.52.30.28 |
|
| Details | IPv4 | 1 | 46.57.188.15 |
|
| Details | IPv4 | 2 | 216.6.0.28 |
|
| Details | IPv4 | 1 | 31.9.48.119 |
|
| Details | IPv4 | 1 | 178.52.203.80 |
|
| Details | IPv4 | 1 | 81.9.48.11 |
|
| Details | IPv4 | 1 | 69.65.5.104 |
|
| Details | IPv4 | 1 | 65.49.68.142 |
|
| Details | IPv4 | 1 | 46.57.213.64 |
|
| Details | IPv4 | 1 | 95.212.148.74 |
|
| Details | IPv4 | 1 | 82.137.200.48 |
|
| Details | IPv4 | 1 | 200.17.216.14 |
|
| Details | IPv4 | 1 | 178.52.108.207 |
|
| Details | IPv4 | 1 | 178.52.166.61 |
|
| Details | IPv4 | 1 | 178.52.254.161 |
|
| Details | IPv4 | 1 | 31.9.48.1 |
|
| Details | IPv4 | 1 | 46.213.100.97 |
|
| Details | IPv4 | 1 | 46.213.123.97 |
|
| Details | IPv4 | 1 | 94.252.217.145 |
|
| Details | IPv4 | 1 | 178.52.165.92 |
|
| Details | IPv4 | 1 | 46.213.235.105 |
|
| Details | Pdb | 1 | syriatel.pdb |
|
| Details | Pdb | 3 | e.pdb |
|
| Details | Pdb | 1 | syria.pdb |
|
| Details | Url | 21 | https://www.facebook.com |
|
| Details | Url | 1 | https://www.dropbox.com/s |
|
| Details | Url | 6 | https://www.dropbox.com |
|
| Details | Url | 1 | https://www.facebook.com/photo. |
|
| Details | Url | 1 | http://ge.tt/14hnebg1/v/0 |
|
| Details | Url | 4 | http://www.youtube.com |
|
| Details | Url | 1 | http://ar.rghost.net/54001947 |
|
| Details | Url | 1 | https://www.facebook.com/alhyytal |
|
| Details | Url | 1 | http://ge.tt/1v3nb7y/v/0 |