Analysis of a stage 3 Miniduke sample
Show in Graph
Image Description
Common Information
Type Value
UUID c19a32db-7726-4e46-a242-7e6b143d74d4
Fingerprint d3bb231d3f1222ccb8affc0d7df3de3142e6b6c95326110b451cfbd406a6bf5d
Analysis status DONE
Considered CTI value 2
Text language
Published July 3, 2014, 7:54 p.m.
Added to db April 14, 2024, 12:53 a.m.
Last updated Oct. 1, 2024, 2:37 p.m.
Headline Analysis of a stage 3 Miniduke sample
Title Analysis of a stage 3 Miniduke sample
Detected Hints/Tags/Attributes 46/2/23
Source URLs
Redirection Url
Details Source https://www.circl.lu/files/tr-14/circl-analysisreport-miniduke-stage3-public.pdf
Details Source https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2014/07/20082442/circl-analysisreport-miniduke-stage3-public.pdf
URL Provider
Details Provider Source level domain
Details circl.lu www.circl.lu
Details kasperskycontenthub.com media.kasperskycontenthub.com
Attributes
Details Type #Events CTI Value
Details Domain 11 
circl.lu
Details Domain 12 
www.circl.lu
Details Domain 52 
www.securelist.com
Details Domain 3 
www.oberhumer.com
Details Domain 99 
www.f-secure.com
Details Domain 2 
news.grouptumbler.com
Details Domain 3 
panamaserver.com
Details Domain 3 
bgpranking.circl.lu
Details Email 3 
info@circl.lu
Details File 3 
cosmicduke_whitepaper.pdf
Details md5 4 
1e1b0d16a16cf5c7f3a7c053ce78f515
Details md5 1 
1a2edd2db71fd41e963011da8caf26cc
Details sha1 5 
de8e9def2553f4d211cc0b34a3972d9814f156aa
Details sha256 3 
a1015f0b99106ae2852d740f366e15c1d5c711f57680a2f04be0283e8310f69e
Details sha256 1 
b61d409b6c1066e0c1fc4fe15f6f367be31fa2cc555cfc0ef7eeb8e5759380c0
Details IPv4 1 
173.194.70.101
Details IPv4 1 
200.63.46.33
Details IPv4 2 
200.63.46.23
Details IPv4 1 
200.63.46.0
Details Url 1 
http://www.securelist.com/en/downloads/vlpdfs/themysteryofthepdf0-dayassemblermicrobackdoor.
Details Url 1 
http://www.oberhumer.com/opensource/ucl
Details Url 1 
http://www.f-secure.com/static/doc/labs_global/whitepapers/cosmicduke_whitepaper.pdf
Details Url 1 
http://bgpranking.circl.lu/asn_details?date=2012