Macintosh HD:Users:Shared:dd:4work:Bitdefender-PR-Whitepaper-Abode-creat4625-en_EN:Bitdefender-PR-Whitepaper-Abode-creat4625-en_EN.indd
Common Information
| Type | Value |
|---|---|
| UUID | 7b07fb79-a121-4dbb-8b05-135056a3a8a8 |
| Fingerprint | 6d781eeb47c8e02c04987dbca73e8ecdc429a372b879d9a01e6fc70d1d59f8b2 |
| Analysis status | DONE |
| Considered CTI value | 1 |
| Text language | |
| Published | None |
| Added to db | March 11, 2024, 7:22 p.m. |
| Last updated | Aug. 31, 2024, 6:16 a.m. |
| Headline | Macintosh HD:Users:Shared:dd:4work:Bitdefender-PR-Whitepaper-Abode-creat4625-en_EN:Bitdefender-PR-Whitepaper-Abode-creat4625-en_EN.indd |
| Title | Macintosh HD:Users:Shared:dd:4work:Bitdefender-PR-Whitepaper-Abode-creat4625-en_EN:Bitdefender-PR-Whitepaper-Abode-creat4625-en_EN.indd |
| Detected Hints/Tags/Attributes | 105/4/37 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 128 | www.bitdefender.com |
|
| Details | Domain | 58 | redcanary.com |
|
| Details | Domain | 224 | unit42.paloaltonetworks.com |
|
| Details | Domain | 6 | vmpsoft.com |
|
| Details | Domain | 3 | www.oreans.com |
|
| Details | Domain | 1 | back.engineering |
|
| Details | Domain | 4127 | github.com |
|
| Details | File | 2 | msh.exe |
|
| Details | File | 1 | bdqgbmsn.exe |
|
| Details | File | 4 | msn.exe |
|
| Details | File | 2 | mscrlib.exe |
|
| Details | File | 1 | vbmscrlib.exe |
|
| Details | File | 1 | wrbmscorlib.dll |
|
| Details | File | 96 | wallet.dat |
|
| Details | File | 2 | outllook.exe |
|
| Details | File | 1 | %appdata%\outllook.exe |
|
| Details | File | 1 | svx.exe |
|
| Details | File | 6 | svc.exe |
|
| Details | File | 82 | taskkill.exe |
|
| Details | File | 271 | chrome.exe |
|
| Details | File | 1 | taskui.exe |
|
| Details | File | 2 | bonanza.exe |
|
| Details | File | 4 | themida.php |
|
| Details | Github username | 2 | ntquery |
|
| Details | Github username | 1 | ventaz |
|
| Details | md5 | 1 | 4d4a0052d093cc743db0776e04f7e449 |
|
| Details | Url | 2 | http://minecraftsquid.hopto.org/ifo.php |
|
| Details | Url | 1 | https://redcanary.com/blog/kmspico-cryptbot |
|
| Details | Url | 1 | https://unit42.paloaltonetworks.com/westeal |
|
| Details | Url | 3 | https://vmpsoft.com |
|
| Details | Url | 3 | https://www.oreans.com/themida.php |
|
| Details | Url | 1 | https://back.engineering/17/05/2021 |
|
| Details | Url | 1 | https://back.engineering/21/06/2021 |
|
| Details | Url | 2 | https://github.com/ntquery/scylla |
|
| Details | Url | 1 | https://github.com/ventaz/themidie |
|
| Details | Windows Registry Key | 112 | HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run |
|
| Details | Windows Registry Key | 11 | HKEY_CURRENT_USER\Software\Microsoft\Internet |