ioc[.]one - OSINT Cyber Threat Intelligence Database

Shadow Force

Show in Graph

Common Information

Type	Value
UUID	b3e4e5ed-a7cb-460e-931d-f1188225001f
Fingerprint	214333d95bb6bf780db6a037e6dd9efa7c99405ee4ed2a2a7b82cd9b2f2cfdd0
Analysis status	DONE
Considered CTI value	0
Text language
Published	Sept. 8, 2015, 12:01 p.m.
Added to db	April 14, 2024, 10:11 a.m.
Last updated	Aug. 30, 2024, 10:39 p.m.
Headline	Shadow Force
Title	Shadow Force
Detected Hints/Tags/Attributes	68/2/20

Source URLs

	Redirection	Url
Details	Source	http://documents.trendmicro.com/assets/pdf/shadow-force-technical-brief.pdf

URL Provider

Details	Provider	Source level domain
Details	trendmicro.com	documents.trendmicro.com

Attributes

Details	Type	#Events	Value
Details	Domain	1	irc.itembuy.org
Details	Domain	1	itembuy.org
Details	Domain	604	www.trendmicro.com
Details	File	1	fileh.exe
Details	File	3	iatinfect.exe
Details	File	1	iatinfect64.exe
Details	File	4	aio.exe
Details	File	7	ss.exe
Details	File	4	su.exe
Details	File	6	malware.dll
Details	File	380	notepad.exe
Details	File	1	tcp.bat
Details	File	4	123.bat
Details	File	10	1.vbs
Details	File	4	kr.txt
Details	File	30	s.exe
Details	IPv4	1	61.137.223.48
Details	IPv4	1	123.190.36.149
Details	IPv4	1	211.239.160.203
Details	IPv4	1	1.234.4.115