Two Shady Men Walk Into a Bar
Common Information
| Type | Value |
|---|---|
| UUID | b20a06bb-9060-437e-a1e5-2709c38c9d1c |
| Fingerprint | c4a70d4f22c58ce6b0923b45dcf93aaaaa6c069457c1846cf2250d8e37b4732d |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Aug. 10, 2015, 5:26 p.m. |
| Added to db | March 9, 2024, 11:20 p.m. |
| Last updated | Aug. 30, 2024, 10:13 p.m. |
| Headline | Two Shady Men Walk Into a Bar |
| Title | Two Shady Men Walk Into a Bar |
| Detected Hints/Tags/Attributes | 103/3/179 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | http://go.recordedfuture.com:80/hubfs/reports/two-shady-men.pdf |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Autonomous System Number | 2 | AS29073 |
|
| Details | Domain | 546 | www.recordedfuture.com |
|
| Details | Domain | 16 | zeltser.com |
|
| Details | Domain | 4126 | github.com |
|
| Details | Domain | 1 | info.recordedfuture.com |
|
| Details | Domain | 145 | threatpost.com |
|
| Details | Domain | 1373 | twitter.com |
|
| Details | Domain | 1 | slexy.org |
|
| Details | Domain | 1 | census12.shodan.io |
|
| Details | Domain | 8 | www.alienvault.com |
|
| Details | Domain | 426 | isc.sans.edu |
|
| Details | Domain | 1 | rrcs-208-105-226-235.nys.biz.rr.com |
|
| Details | Domain | 1 | 88-53-215-64.wdsl.neomedia.it |
|
| Details | Domain | 1 | tpnet.pl |
|
| Details | Domain | 334 | www.facebook.com |
|
| Details | Domain | 356 | pastebin.com |
|
| Details | Domain | 1 | ec2-107-22-163-227.compute-1.amazonaws.com |
|
| Details | Domain | 294 | amazon.com |
|
| Details | Domain | 1 | h-213.61.149.100.host.de.colt.net |
|
| Details | Domain | 1 | ns222609.ovh.net |
|
| Details | Domain | 3 | www.ovh.com |
|
| Details | Domain | 1 | unassigned.quadranet.com |
|
| Details | Domain | 1 | 208.43.71.114-static.reverse.softlayer.com |
|
| Details | Domain | 1 | test.hostnext.net |
|
| Details | Domain | 1 | 62-210-141-58.rev.poneytelecom.eu |
|
| Details | Domain | 1 | host.acceptprint.com |
|
| Details | Domain | 1 | mece5.inf.uach.cl |
|
| Details | Domain | 1 | 185-4-227-194.turkrdns.com |
|
| Details | Domain | 1 | sayfa.net |
|
| Details | Domain | 1 | starexserv.com |
|
| Details | Domain | 1 | 220-128-121-83.hinet-ip.hinet.net |
|
| Details | Domain | 1 | lojameuauto.com.br |
|
| Details | Domain | 1 | mail.report.beamtele.com |
|
| Details | Domain | 1 | cattelecom.co.th |
|
| Details | Domain | 1 | 76-164-201.unassigned.userdns.com |
|
| Details | Domain | 1 | mx666.auonline.com.au |
|
| Details | Domain | 1 | srap.edst.ibm.com |
|
| Details | Domain | 1 | www.rsm.ncut.edu.tw |
|
| Details | Domain | 1 | 93-174-94-137.constellationservers.net |
|
| Details | Domain | 1 | www.ecatel.net |
|
| Details | Domain | 1 | 71-86-48-83.static.stls.mo.charter.com |
|
| Details | Domain | 1 | ns319885.ip-91-121-90.eu |
|
| Details | Domain | 1 | 201-161-37-93.internetmax.maxcom.net.mx |
|
| Details | Domain | 1 | www.packetmail.net |
|
| Details | Domain | 1 | www.shahamat-urdu.com |
|
| Details | Domain | 268 | www.virustotal.com |
|
| Details | Domain | 1 | www.cyberislamicnews.co.vu |
|
| Details | Domain | 1 | alfaransy.olympe.in |
|
| Details | Domain | 1 | www.chechensinsyria.com |
|
| Details | Domain | 1 | ansarukhilafah.wordpress.com |
|
| Details | Domain | 1 | aljileni.blogspot.de |
|
| Details | Domain | 1 | www.anjemchoudary.co.uk |
|
| Details | Domain | 1 | www.dawla-is.cf |
|
| Details | Domain | 1 | khelafa.org |
|
| Details | Domain | 1 | www.uicforce.co.vu |
|
| Details | Domain | 1 | issdarat.appspot.com |
|
| Details | Domain | 1 | shahamat-arabic.com |
|
| Details | Domain | 1 | shahamat-urdu.com |
|
| Details | Domain | 1 | shahamat-farsi.com |
|
| Details | Domain | 1 | shahamat-english.com |
|
| Details | Domain | 1 | www.profetensummah.com |
|
| Details | Domain | 1 | www.atahadii.com |
|
| Details | Domain | 1 | www.dawatehaq.info |
|
| Details | Domain | 1 | isdarat-tube.com |
|
| Details | Domain | 258 | nmap.org |
|
| Details | 1 | abuse@tpnet.pl |
||
| Details | 1 | kphariny@cattelecom.co.th |
||
| Details | File | 1 | cyber-anatomy-white-paper.pdf |
|
| Details | File | 2 | tpnet.pl |
|
| Details | File | 1 | mece5.inf |
|
| Details | File | 1 | internetmax.max |
|
| Details | File | 1 | iprep.txt |
|
| Details | File | 1 | blog-post_10.html |
|
| Details | File | 1 | dawatehaq.inf |
|
| Details | Github username | 2 | mlsecproject |
|
| Details | IPv4 | 295 | 8.8.8.8 |
|
| Details | IPv4 | 63 | 8.8.4.4 |
|
| Details | IPv4 | 6 | 75.75.75.75 |
|
| Details | IPv4 | 1 | 75.76.76.76 |
|
| Details | IPv4 | 1438 | 127.0.0.1 |
|
| Details | IPv4 | 1 | 182.118.60.54 |
|
| Details | IPv4 | 3 | 71.6.165.200 |
|
| Details | IPv4 | 1 | 183.60.48.2 |
|
| Details | IPv4 | 2 | 61.240.144.64 |
|
| Details | IPv4 | 2 | 208.105.226.235 |
|
| Details | IPv4 | 3 | 200.87.126.116 |
|
| Details | IPv4 | 3 | 88.53.215.64 |
|
| Details | IPv4 | 3 | 217.96.33.164 |
|
| Details | IPv4 | 1 | 107.22.163.227 |
|
| Details | IPv4 | 1 | 123.151.149.222 |
|
| Details | IPv4 | 1 | 203.158.167.2 |
|
| Details | IPv4 | 1 | 69.174.245.163 |
|
| Details | IPv4 | 1 | 65.196.87.161 |
|
| Details | IPv4 | 1 | 65.207.23.201 |
|
| Details | IPv4 | 1 | 128.199.235.176 |
|
| Details | IPv4 | 3 | 213.61.149.100 |
|
| Details | IPv4 | 1 | 218.56.65.202 |
|
| Details | IPv4 | 2 | 162.253.66.76 |
|
| Details | IPv4 | 1 | 46.105.110.43 |
|
| Details | IPv4 | 1 | 115.239.253.11 |
|
| Details | IPv4 | 1 | 183.60.48.25 |
|
| Details | IPv4 | 1 | 67.215.248.8 |
|
| Details | IPv4 | 1 | 218.108.85.213 |
|
| Details | IPv4 | 1 | 208.43.71.114 |
|
| Details | IPv4 | 1 | 50.22.75.14 |
|
| Details | IPv4 | 1 | 62.210.141.58 |
|
| Details | IPv4 | 1 | 69.16.238.213 |
|
| Details | IPv4 | 1 | 146.83.216.186 |
|
| Details | IPv4 | 1 | 185.4.227.194 |
|
| Details | IPv4 | 1 | 162.213.24.36 |
|
| Details | IPv4 | 1 | 220.128.121.83 |
|
| Details | IPv4 | 1 | 223.27.230.174 |
|
| Details | IPv4 | 1 | 200.98.68.101 |
|
| Details | IPv4 | 1 | 202.53.8.82 |
|
| Details | IPv4 | 1 | 122.154.46.139 |
|
| Details | IPv4 | 1 | 76.164.201.201 |
|
| Details | IPv4 | 1 | 74.63.199.120 |
|
| Details | IPv4 | 1 | 115.254.9.30 |
|
| Details | IPv4 | 1 | 140.128.85.2 |
|
| Details | IPv4 | 2 | 93.174.94.137 |
|
| Details | IPv4 | 1 | 71.86.48.83 |
|
| Details | IPv4 | 1 | 91.121.90.166 |
|
| Details | IPv4 | 1 | 201.161.37.93 |
|
| Details | IPv4 | 1 | 111.73.45.204 |
|
| Details | IPv4 | 1 | 182.254.136.121 |
|
| Details | IPv4 | 1 | 104.28.2.74 |
|
| Details | IPv4 | 1 | 190.93.254.148 |
|
| Details | IPv4 | 1 | 69.172.201.19 |
|
| Details | IPv4 | 1 | 104.28.17.10 |
|
| Details | IPv4 | 1 | 104.28.11.102 |
|
| Details | IPv4 | 1 | 104.28.14.113 |
|
| Details | IPv4 | 1 | 104.28.17.109 |
|
| Details | IPv4 | 1 | 104.28.17.222 |
|
| Details | Url | 1 | https://zeltser.com/malicious-ip-blocklists |
|
| Details | Url | 1 | https://github.com/mlsecproject |
|
| Details | Url | 1 | http://www.slidesearch.org/slide/defcon-22-measuring-the-iq-of-your-threat-intelligence-feeds-tiqtest |
|
| Details | Url | 1 | http://info.recordedfuture.com/portals/252628/resources/cyber-anatomy-white-paper.pdf |
|
| Details | Url | 1 | https://threatpost.com/upatre-downloader-spreading-dyreza-banking-trojan/109858 |
|
| Details | Url | 1 | https://twitter.com/honeypylog/status/596020104267051008 |
|
| Details | Url | 1 | http://slexy.org/view/s21cc4dvcs |
|
| Details | Url | 1 | http://www.alienvault.com/apps/rep_monitor/ip/71.6.165.200 |
|
| Details | Url | 2 | https://isc.sans.edu/forums/diary/looking |
|
| Details | Url | 1 | https://securelist.com/blog/security-policies/68073/destover-malware-now-digitally-signed-by-sony-certificates |
|
| Details | Url | 1 | https://www.facebook.com/1102728606/posts/10205316581289693 |
|
| Details | Url | 1 | http://pastebin.com/k4ecdw8j |
|
| Details | Url | 1 | http://slexy.org/view/s209vfbs8v |
|
| Details | Url | 1 | http://www.ovh.com |
|
| Details | Url | 1 | http://www.ecatel.net |
|
| Details | Url | 1 | https://www.packetmail.net/iprep.txt |
|
| Details | Url | 1 | https://www.alienvault.com/open-threat-exchange/ip/183.60.48.25 |
|
| Details | Url | 1 | https://twitter.com/honeypylog/status/553900065417211904 |
|
| Details | Url | 1 | http://www.shahamat-urdu.com |
|
| Details | Url | 1 | https://twitter.com/ladypatriot777/status/554391656317734912 |
|
| Details | Url | 1 | https://www.virustotal.com/en/ip-address/104.28.14.113 |
|
| Details | Url | 1 | http://pastebin.com/tv7axp5b |
|
| Details | Url | 1 | http://www.cyberislamicnews.co.vu |
|
| Details | Url | 1 | http://alfaransy.olympe.in |
|
| Details | Url | 1 | http://www.chechensinsyria.com |
|
| Details | Url | 1 | https://ansarukhilafah.wordpress.com |
|
| Details | Url | 1 | http://aljileni.blogspot.de/2015/01/blog-post_10.html |
|
| Details | Url | 1 | http://www.anjemchoudary.co.uk |
|
| Details | Url | 1 | https://www.dawla-is.cf |
|
| Details | Url | 1 | http://khelafa.org |
|
| Details | Url | 1 | http://www.uicforce.co.vu |
|
| Details | Url | 1 | http://issdarat.appspot.com |
|
| Details | Url | 1 | http://shahamat-arabic.com |
|
| Details | Url | 1 | http://pastebin.com/4gwjuq6x |
|
| Details | Url | 1 | http://shahamat-urdu.com |
|
| Details | Url | 1 | http://pastebin.com/nftaat5b |
|
| Details | Url | 1 | http://shahamat-farsi.com |
|
| Details | Url | 1 | http://pastebin.com/nncndy8v |
|
| Details | Url | 1 | http://shahamat-english.com |
|
| Details | Url | 1 | http://pastebin.com/4yw9jmt1 |
|
| Details | Url | 1 | http://www.profetensummah.com |
|
| Details | Url | 1 | http://www.atahadii.com |
|
| Details | Url | 1 | http://www.dawatehaq.info |
|
| Details | Url | 1 | https://isdarat-tube.com |
|
| Details | Url | 31 | http://nmap.org |
|
| Details | Url | 1 | http://pastebin.com/rniqxzqx |