ioc[.]one - OSINT Cyber Threat Intelligence Database

日本を狙うばらまきメールキャンペーンの脅威動向分析と対策

Show in Graph

Common Information

Type	Value
UUID	86e89d9e-ef75-40bf-9f45-2976ed0c584e
Fingerprint	938b28b050bdd05e1c4c1447c664fcf0b265c51a345af0f71f08c8fb989d8218
Analysis status	DONE
Considered CTI value	0
Text language
Published	Jan. 15, 2020, 2:02 p.m.
Added to db	March 12, 2024, 7:37 p.m.
Last updated	Aug. 31, 2024, 4:48 a.m.
Headline	日本を狙うばらまきメールキャンペーンの脅威動向分析と対策
Title	日本を狙うばらまきメールキャンペーンの脅威動向分析と対策
Detected Hints/Tags/Attributes	43/1/31

Source URLs

	Redirection	Url
Details	Source	https://jsac.jpcert.or.jp/archive/2020/pdf/JSAC2020_5_sajo-takeda-niwa_jp.pdf

URL Provider

Details	Provider	Source level domain
Details	jpcert.or.jp	jsac.jpcert.or.jp

Attributes

Details	Type	#Events	Value
Details	Domain	26	www.lac.co.jp
Details	Domain	11	dnspod.com
Details	Domain	3	benkow.cc
Details	Domain	622	en.wikipedia.org
Details	File	2	20170523_001291.html
Details	File	1	③beblohをファイルレスでexplorer.exe
Details	File	2	dreambotsas19.pdf
Details	File	1	他に.avi
Details	IPv4	5	3.1.1.1
Details	IPv4	4	3.1.1.2
Details	IPv4	4	3.1.1.3
Details	IPv4	6	3.1.1.4
Details	IPv4	7	3.1.2.1
Details	IPv4	4	3.1.2.2
Details	IPv4	2	3.1.2.3
Details	IPv4	3	3.1.2.4
Details	IPv4	2	3.1.2.5
Details	IPv4	2	3.1.2.6
Details	IPv4	2	3.1.2.7
Details	IPv4	2	3.1.2.8
Details	IPv4	6	3.1.3.1
Details	IPv4	4	3.1.3.2
Details	IPv4	7	3.2.1.1
Details	IPv4	4	3.2.1.2
Details	IPv4	3	5.8.88.0
Details	IPv4	2	5.188.231.0
Details	Url	2	https://www.lac.co.jp/lacwatch/people/20170523_001291.html
Details	Url	2	https://www.proofpoint.com/us/threat-insight/post/sandiflux-another-fast-flux-infrastructure-used-malware-distribution-emerges
Details	Url	2	http://benkow.cc/dreambotsas19.pdf
Details	Url	2	https://en.wikipedia.org/wiki/active_defense
Details	Url	2	https://docs.google.com/spreadsheets/d/1udclsbnuzoi2nrpnviwsl3iudalajkhpuoakgpvsu6i/edit?usp=sharing