MacProStorage02:_2018ROW:Bitdefender-Whitepaper-TERDOT-crea2079-A4-en_EN:Bitdefender-Whitepaper-TERDOT-crea2079-A4-en_EN.indd
Common Information
| Type | Value |
|---|---|
| UUID | 867b43c5-35d6-4817-8883-c4a3e579f4e7 |
| Fingerprint | df7e8bdd98e6ed107e4ec1f8411fcff6c0a88191a4b3b203afbc61c543c12b3b |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Nov. 1, 2017, 4:27 p.m. |
| Added to db | March 12, 2024, 6:05 p.m. |
| Last updated | Aug. 31, 2024, 1:41 a.m. |
| Headline | MacProStorage02:_2018ROW:Bitdefender-Whitepaper-TERDOT-crea2079-A4-en_EN:Bitdefender-Whitepaper-TERDOT-crea2079-A4-en_EN.indd |
| Title | MacProStorage02:_2018ROW:Bitdefender-Whitepaper-TERDOT-crea2079-A4-en_EN:Bitdefender-Whitepaper-TERDOT-crea2079-A4-en_EN.indd |
| Detected Hints/Tags/Attributes | 192/3/230 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 55 | live.com |
|
| Details | Domain | 46 | vk.com |
|
| Details | Domain | 1 | piroco.com |
|
| Details | Domain | 1 | stream.vanindsdb.com |
|
| Details | Domain | 1 | stream.zoeltwsaw.com |
|
| Details | Domain | 1 | stream.salmftw.com |
|
| Details | Domain | 1 | stream.glawdfhow.com |
|
| Details | Domain | 1 | stream.gizdosales.com |
|
| Details | Domain | 1 | ubyrttgf.click |
|
| Details | Domain | 1 | cxqytmtflyj.click |
|
| Details | Domain | 1 | vfdyth.click |
|
| Details | Domain | 1 | ubyrttgrdf.bid |
|
| Details | Domain | 1 | obesca.com |
|
| Details | Domain | 1 | newstodayinasia88.asia |
|
| Details | Domain | 2 | resdomactivationa.asia |
|
| Details | Domain | 1 | ubyrbfghghvh.click |
|
| Details | Domain | 1 | ubyrbtrgcc.click |
|
| Details | Domain | 1 | pirococo2.com |
|
| Details | Domain | 1 | pirococo3.com |
|
| Details | Domain | 1 | login.webmail.com.am |
|
| Details | Domain | 1 | resdomactivationa8.asia |
|
| Details | Domain | 2 | yidckntbrmhuuhmq.com |
|
| Details | Domain | 1 | cxqyvqjtmtflyj.com |
|
| Details | Domain | 2 | 10cyberprojects2016.asia |
|
| Details | Domain | 1 | soelxtmj.click |
|
| Details | Domain | 1 | gegbghtyg.eu |
|
| Details | Domain | 1 | 10cyberprojects20161.asia |
|
| Details | Domain | 1 | richardbbenoit.com |
|
| Details | Domain | 2 | masterhost1333.asia |
|
| Details | Domain | 2 | masterhost8981.asia |
|
| Details | Domain | 1 | comodotrl.com |
|
| Details | Domain | 1 | intaxcdn.am |
|
| Details | Domain | 2 | remembermetoday4.asia |
|
| Details | Domain | 1 | clork.ru |
|
| Details | Domain | 1 | startupproject33677.asia |
|
| Details | Domain | 1 | cwhht.com |
|
| Details | Domain | 1 | axe.maintop.top |
|
| Details | Domain | 1 | stream.afnfoundation.cf |
|
| Details | Domain | 1 | ausecurposcom.com |
|
| Details | Domain | 1 | banneradspr.xyz |
|
| Details | Domain | 1 | wartelio.top |
|
| Details | Domain | 1 | prisectos.top |
|
| Details | Domain | 1 | ugaugacongo.ru |
|
| Details | Domain | 1 | startupproject20166.asia |
|
| Details | Domain | 1 | dayspirit.at |
|
| Details | Domain | 1 | multifacto.com |
|
| Details | Domain | 1 | zompokrtut.ru |
|
| Details | Domain | 1 | deatroleo.xyz |
|
| Details | Domain | 1 | aspecto.top |
|
| Details | Domain | 1 | valinados.top |
|
| Details | Domain | 1 | ugaugacong.ru |
|
| Details | Domain | 25 | enterprise.bitdefender.com |
|
| Details | Domain | 128 | www.bitdefender.com |
|
| Details | File | 269 | msiexec.exe |
|
| Details | File | 1260 | explorer.exe |
|
| Details | File | 4 | client32.dll |
|
| Details | File | 2 | client64.dll |
|
| Details | File | 21 | loader.dll |
|
| Details | File | 30 | taskeng.exe |
|
| Details | File | 63 | ctfmon.exe |
|
| Details | File | 55 | dwm.exe |
|
| Details | File | 263 | iexplore.exe |
|
| Details | File | 31 | microsoftedgecp.exe |
|
| Details | File | 271 | chrome.exe |
|
| Details | File | 73 | opera.exe |
|
| Details | File | 199 | firefox.exe |
|
| Details | File | 3 | webkit2webprocess.exe |
|
| Details | File | 83 | crypt32.dll |
|
| Details | File | 226 | certutil.exe |
|
| Details | File | 10 | cert8.db |
|
| Details | File | 5 | b.bin |
|
| Details | File | 1 | rembt.bin |
|
| Details | File | 6 | z.php |
|
| Details | File | 1 | b2.bin |
|
| Details | File | 1 | login.webm |
|
| Details | File | 1 | webmail_logo.png |
|
| Details | File | 1 | 01tdu.bin |
|
| Details | File | 1 | b42363b.bin |
|
| Details | File | 1 | b59005b.bin |
|
| Details | File | 1 | enterprise.pdf |
|
| Details | File | 1 | settings1.bin |
|
| Details | File | 1 | 00b.jpg |
|
| Details | File | 1 | mbb.jpg |
|
| Details | File | 1 | bot.bin |
|
| Details | File | 1 | b18.bin |
|
| Details | File | 1 | ipd.bin |
|
| Details | File | 1 | dpr.bin |
|
| Details | File | 1 | 01t.bin |
|
| Details | File | 1 | settings2.bin |
|
| Details | File | 5 | settings.bin |
|
| Details | File | 1 | b550104j.bin |
|
| Details | File | 1 | bpst.bin |
|
| Details | File | 5 | c.bin |
|
| Details | File | 1 | applecfg.bin |
|
| Details | File | 1 | c2.bin |
|
| Details | File | 1 | buttons.png |
|
| Details | File | 1 | c64374i.bin |
|
| Details | File | 1 | 01ttdunews.bin |
|
| Details | File | 1 | personal.jpg |
|
| Details | File | 1 | c3769837c.bin |
|
| Details | File | 2 | stat.bin |
|
| Details | File | 1 | ctim.bin |
|
| Details | File | 1 | dsr.bin |
|
| Details | File | 13 | config.bin |
|
| Details | File | 1 | c112683e.bin |
|
| Details | File | 1 | 00c.jpg |
|
| Details | File | 1 | 01tt.bin |
|
| Details | File | 1 | c23.bin |
|
| Details | File | 1 | cb.jpg |
|
| Details | File | 2 | config1.bin |
|
| Details | File | 1 | config2.bin |
|
| Details | IPv4 | 12 | 192.0.0.0 |
|
| Details | IPv4 | 45 | 127.0.0.0 |
|
| Details | IPv4 | 1441 | 127.0.0.1 |
|
| Details | IPv4 | 1 | 210.211.108.163 |
|
| Details | IPv4 | 1 | 118.193.16.24 |
|
| Details | Url | 1 | https://piroco.com/b.bin |
|
| Details | Url | 1 | https://stream.vanindsdb.com/b2 |
|
| Details | Url | 1 | https://stream.zoeltwsaw.com/b2 |
|
| Details | Url | 1 | https://stream.salmftw.com/b2 |
|
| Details | Url | 1 | https://stream.glawdfhow.com/b2 |
|
| Details | Url | 1 | https://stream.gizdosales.com/b2 |
|
| Details | Url | 1 | http://ubyrttgf.click/main/file/rembt.bin |
|
| Details | Url | 1 | http://cxqytmtflyj.click/main/file/rembt.bin |
|
| Details | Url | 1 | http://vfdyth.click/main/file/rembt.bin |
|
| Details | Url | 1 | http://ubyrttgrdf.bid/main/file/rembt.bin |
|
| Details | Url | 1 | https://obesca.com/b.bin |
|
| Details | Url | 1 | https://stream.gizdosales.com/f/z.php?f=b1 |
|
| Details | Url | 1 | http://newstodayinasia88.asia/00/b.bin |
|
| Details | Url | 1 | http://resdomactivationa.asia/00/b.bin |
|
| Details | Url | 1 | http://ubyrbfghghvh.click/main/file/rembt.bin |
|
| Details | Url | 1 | http://ubyrbtrgcc.click/main/file/rembt.bin |
|
| Details | Url | 1 | https://pirococo2.com/b2.bin |
|
| Details | Url | 1 | https://pirococo3.com/b2.bin |
|
| Details | Url | 1 | https://piroco.com/b2.bin |
|
| Details | Url | 1 | https://login.webmail.com.am/styles/webmail_logo.png |
|
| Details | Url | 1 | http://resdomactivationa8.asia/00/b.bin |
|
| Details | Url | 1 | http://yidckntbrmhuuhmq.com/00/b.bin |
|
| Details | Url | 1 | http://cxqyvqjtmtflyj.com/main/file/rembt.bin |
|
| Details | Url | 1 | http://210.211.108.163/~chobt/images/temp/01tdu.bin |
|
| Details | Url | 1 | http://10cyberprojects2016.asia/b.bin |
|
| Details | Url | 1 | http://soelxtmj.click/main/file/rembt.bin |
|
| Details | Url | 1 | http://gegbghtyg.eu/main/file/rembt.bin |
|
| Details | Url | 1 | http://10cyberprojects20161.asia/00/b.bin |
|
| Details | Url | 1 | https://richardbbenoit.com/ttt/b42363b.bin |
|
| Details | Url | 1 | http://masterhost1333.asia/b.bin |
|
| Details | Url | 1 | http://masterhost8981.asia/b.bin |
|
| Details | Url | 1 | http://comodotrl.com/cgi/b59005b.bin |
|
| Details | Url | 1 | https://intaxcdn.am/2016/enterprise.pdf |
|
| Details | Url | 2 | http://remembermetoday4.asia/00/b.bin |
|
| Details | Url | 1 | https://clork.ru/xen/settings1.bin |
|
| Details | Url | 1 | http://startupproject33677.asia/00/b.bin |
|
| Details | Url | 1 | http://118.193.16.24/cwhht.com/cache/db/00b.jpg |
|
| Details | Url | 1 | http://210.211.108.163/~chobt/images/temp/mbb.jpg |
|
| Details | Url | 1 | http://axe.maintop.top/bot.bin |
|
| Details | Url | 1 | https://stream.afnfoundation.cf/f/z.php?f=b1 |
|
| Details | Url | 1 | http://ausecurposcom.com/cxx/b18.bin |
|
| Details | Url | 1 | https://banneradspr.xyz/ipd.bin |
|
| Details | Url | 1 | https://wartelio.top/dpr.bin |
|
| Details | Url | 1 | https://prisectos.top/dpr.bin |
|
| Details | Url | 1 | https://intaxcdn.am/contents/enterprise.pdf |
|
| Details | Url | 1 | http://210.211.108.163/~chobt/images/temp/01t.bin |
|
| Details | Url | 1 | https://ugaugacongo.ru/xen/settings2.bin |
|
| Details | Url | 1 | http://startupproject20166.asia/b.bin |
|
| Details | Url | 1 | https://dayspirit.at/xen/settings.bin |
|
| Details | Url | 1 | http://multifacto.com/cutt/b550104j.bin |
|
| Details | Url | 1 | http://zompokrtut.ru/bpst.bin |
|
| Details | Url | 1 | https://deatroleo.xyz/dpr.bin |
|
| Details | Url | 1 | https://aspecto.top/dpr.bin |
|
| Details | Url | 1 | https://valinados.top/dpr.bin |
|
| Details | Url | 1 | https://piroco.com/c.bin |
|
| Details | Url | 1 | https://stream.vanindsdb.com/c2 |
|
| Details | Url | 1 | https://stream.zoeltwsaw.com/c2 |
|
| Details | Url | 1 | https://stream.glawdfhow.com/c2 |
|
| Details | Url | 1 | https://stream.salmftw.com/c2 |
|
| Details | Url | 1 | https://stream.gizdosales.com/c2 |
|
| Details | Url | 1 | http://cxqytmtflyj.click/main/file/applecfg.bin |
|
| Details | Url | 1 | http://ubyrttgrdf.bid/main/file/applecfg.bin |
|
| Details | Url | 1 | http://vfdyth.click/main/file/applecfg.bin |
|
| Details | Url | 1 | http://ubyrttgf.click/main/file/applecfg.bin |
|
| Details | Url | 1 | https://obesca.com/c.bin |
|
| Details | Url | 1 | https://stream.gizdosales.com/f/z.php?f=c1 |
|
| Details | Url | 1 | http://newstodayinasia88.asia/00/c.bin |
|
| Details | Url | 1 | http://resdomactivationa.asia/00/c.bin |
|
| Details | Url | 1 | http://ubyrbfghghvh.click/main/file/applecfg.bin |
|
| Details | Url | 1 | https://pirococo2.com/c2.bin |
|
| Details | Url | 1 | http://ubyrbtrgcc.click/main/file/applecfg.bin |
|
| Details | Url | 1 | https://pirococo3.com/c2.bin |
|
| Details | Url | 1 | https://piroco.com/c2.bin |
|
| Details | Url | 1 | https://login.webmail.com.am/styles/buttons.png |
|
| Details | Url | 1 | http://yidckntbrmhuuhmq.com/00/c.bin |
|
| Details | Url | 1 | http://cxqyvqjtmtflyj.com/main/file/applecfg.bin |
|
| Details | Url | 1 | http://resdomactivationa8.asia/00/c.bin |
|
| Details | Url | 1 | http://10cyberprojects20161.asia/00/c.bin |
|
| Details | Url | 1 | http://remembermetoday4.asia/00/c.bin |
|
| Details | Url | 1 | http://comodotrl.com/cgi/c64374i.bin |
|
| Details | Url | 1 | http://masterhost8981.asia/c.bin |
|
| Details | Url | 1 | http://soelxtmj.click/main/file/applecfg.bin |
|
| Details | Url | 1 | http://masterhost1333.asia/c.bin |
|
| Details | Url | 1 | http://gegbghtyg.eu/main/file/applecfg.bin |
|
| Details | Url | 1 | http://210.211.108.163/~chobt/images/temp/01ttdunews.bin |
|
| Details | Url | 1 | https://intaxcdn.am/2016/personal.jpg |
|
| Details | Url | 1 | https://richardbbenoit.com/ttt/c3769837c.bin |
|
| Details | Url | 1 | http://10cyberprojects2016.asia/c.bin |
|
| Details | Url | 1 | https://banneradspr.xyz/stat.bin |
|
| Details | Url | 1 | http://zompokrtut.ru/ctim.bin |
|
| Details | Url | 1 | https://aspecto.top/dsr.bin |
|
| Details | Url | 1 | http://startupproject20166.asia/c.bin |
|
| Details | Url | 1 | https://dayspirit.at/xen/config.bin |
|
| Details | Url | 1 | https://intaxcdn.am/contents/personal.jpg |
|
| Details | Url | 1 | http://startupproject33677.asia/00/c.bin |
|
| Details | Url | 1 | http://multifacto.com/cutt/c112683e.bin |
|
| Details | Url | 1 | http://axe.maintop.top/config.bin |
|
| Details | Url | 1 | https://prisectos.top/dsr.bin |
|
| Details | Url | 1 | https://valinados.top/dsr.bin |
|
| Details | Url | 1 | https://stream.afnfoundation.cf/f/z.php?f=c1 |
|
| Details | Url | 1 | http://118.193.16.24/cwhht.com/cache/db/00c.jpg |
|
| Details | Url | 1 | http://210.211.108.163/~chobt/images/temp/01tt.bin |
|
| Details | Url | 1 | http://ausecurposcom.com/cxx/c23.bin |
|
| Details | Url | 1 | http://210.211.108.163/~chobt/images/temp/cb.jpg |
|
| Details | Url | 1 | https://deatroleo.xyz/dsr.bin |
|
| Details | Url | 1 | https://clork.ru/xen/config1.bin |
|
| Details | Url | 1 | https://wartelio.top/dsr.bin |
|
| Details | Url | 1 | https://ugaugacong.ru/xen/config2.bin |
|
| Details | Url | 17 | http://www.bitdefender.com |
|
| Details | Windows Registry Key | 26 | HKCU\Software\Microsoft |
|
| Details | Windows Registry Key | 14 | HKLM\Software\Microsoft |
|
| Details | Windows Registry Key | 2 | HKCU\Software\Microsoft\Windows\Currentversion\Run |
|
| Details | Windows Registry Key | 1 | HKCU\Software\Microsoft\Test |
|
| Details | Windows Registry Key | 36 | HKCU\Software |