VB-October2012.indd
Common Information
| Type | Value |
|---|---|
| UUID | dd58bc86-a19f-45c7-90d4-2a1ba6535039 |
| Fingerprint | 3469f34061103a4cf2d714d1121ff4487dc0f6f64e77f18fe971da0ea648f525 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Oct. 10, 2012, 11:55 a.m. |
| Added to db | April 18, 2024, 9:19 a.m. |
| Last updated | Aug. 31, 2024, 12:56 a.m. |
| Headline | VB-October2012.indd |
| Title | VB-October2012.indd |
| Detected Hints/Tags/Attributes | 245/4/147 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://www.virusbulletin.com/uploads/pdf/magazine/2012/201210.pdf |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 404 | www.virusbtn.com |
|
| Details | Domain | 335 | www.facebook.com |
|
| Details | Domain | 1 | xxxbank.com |
|
| Details | Domain | 20 | ajax.googleapis.com |
|
| Details | Domain | 1 | tuqidig5.co.cc |
|
| Details | Domain | 1 | dubezov3.co.cc |
|
| Details | Domain | 1 | gube2qome8.cz.cc |
|
| Details | Domain | 1 | cepepeler28.co.cc |
|
| Details | Domain | 1 | dofubuhud57.co.cc |
|
| Details | Domain | 2 | nulled.ws |
|
| Details | Domain | 1 | ajaxstat.net |
|
| Details | Domain | 1 | v0nsch3lling.tistory.com |
|
| Details | Domain | 4 | crypt.am |
|
| Details | Domain | 70 | nakedsecurity.sophos.com |
|
| Details | Domain | 280 | thehackernews.com |
|
| Details | Domain | 133 | www.infosecurity-magazine.com |
|
| Details | Domain | 1 | forum.ioncube.com |
|
| Details | Domain | 3 | les.wordpress.com |
|
| Details | Domain | 41 | malware.dontneedcoffee.com |
|
| Details | Domain | 3 | www.ioncube.com |
|
| Details | Domain | 30 | www.sysinternals.com |
|
| Details | Domain | 222 | www.blackhat.com |
|
| Details | Domain | 1 | www.security.org.sg |
|
| Details | Domain | 201 | msdn.microsoft.com |
|
| Details | Domain | 1 | www.trojanhorsethebook.com |
|
| Details | Domain | 337 | virusbtn.com |
|
| Details | Domain | 132 | www.rsaconference.com |
|
| Details | Domain | 19 | www.ruxcon.org.au |
|
| Details | Domain | 18 | apwg.org |
|
| Details | Domain | 10 | www.isse.eu.com |
|
| Details | Domain | 40 | www.hackerhalted.com |
|
| Details | Domain | 70 | www.aavar.org |
|
| Details | Domain | 19 | www.smi-online.co.uk |
|
| Details | Domain | 44 | www.sourceconference.com |
|
| Details | Domain | 24 | www.takedowncon.com |
|
| Details | Domain | 25 | www.cert.org |
|
| Details | Domain | 8 | www.informaticahabana.com |
|
| Details | Domain | 84 | www.infosec.co.uk |
|
| Details | Domain | 64 | www.nisc.org.uk |
|
| Details | 330 | editorial@virusbtn.com |
||
| Details | 55 | conference@virusbtn.com |
||
| Details | File | 1 | kb%8d.exe |
|
| Details | File | 8 | cp.php |
|
| Details | File | 25 | nspr4.dll |
|
| Details | File | 12 | refox.exe |
|
| Details | File | 1 | secur32.ini |
|
| Details | File | 130 | ws2_32.dll |
|
| Details | File | 83 | crypt32.dll |
|
| Details | File | 1260 | explorer.exe |
|
| Details | File | 56 | iexplorer.exe |
|
| Details | File | 2 | crypt32.pfx |
|
| Details | File | 218 | min.js |
|
| Details | File | 1 | jqueryaddonsv2.js |
|
| Details | File | 10 | test.doc |
|
| Details | File | 4 | test.docx |
|
| Details | File | 1 | exe.ini |
|
| Details | File | 1206 | index.php |
|
| Details | File | 14 | g.php |
|
| Details | File | 2 | adm.php |
|
| Details | File | 10 | stats.php |
|
| Details | File | 2 | new.avi |
|
| Details | File | 4 | 3.dll |
|
| Details | File | 2 | lang.php |
|
| Details | File | 1 | exploit-kit-download.html |
|
| Details | File | 384 | www.inf |
|
| Details | File | 40 | viewtopic.php |
|
| Details | File | 1 | blackholeexploitkit_kr_softforum.pdf |
|
| Details | File | 1 | blackhole-exploits-kit-v124.html |
|
| Details | File | 50 | www.sys |
|
| Details | File | 1 | memory_basic_information.reg |
|
| Details | File | 1 | ebbeccabaecagfdgfdgdfg.exe |
|
| Details | File | 8 | mozilla.exe |
|
| Details | File | 1 | moore-up.ppt |
|
| Details | File | 1 | moore-whitepaper.pdf |
|
| Details | File | 1 | loadexe.html |
|
| Details | File | 5 | events.html |
|
| Details | File | 6 | lasvegas.aspx |
|
| Details | File | 141 | www.cer |
|
| Details | IPv4 | 1 | 110.234.150.163 |
|
| Details | IPv4 | 2 | 123.49.61.59 |
|
| Details | IPv4 | 1 | 173.203.96.79 |
|
| Details | IPv4 | 1 | 180.235.150.72 |
|
| Details | IPv4 | 1 | 184.106.189.124 |
|
| Details | IPv4 | 1 | 190.81.107.70 |
|
| Details | IPv4 | 2 | 200.169.13.84 |
|
| Details | IPv4 | 1 | 202.143.147.35 |
|
| Details | IPv4 | 1 | 203.172.252.26 |
|
| Details | IPv4 | 1 | 203.172.252.29 |
|
| Details | IPv4 | 2 | 203.217.147.52 |
|
| Details | IPv4 | 2 | 210.56.23.100 |
|
| Details | IPv4 | 1 | 211.44.250.173 |
|
| Details | IPv4 | 1 | 219.94.194.242 |
|
| Details | IPv4 | 1 | 31.17.189.212 |
|
| Details | IPv4 | 2 | 41.168.5.140 |
|
| Details | IPv4 | 2 | 58.68.2.214 |
|
| Details | IPv4 | 1 | 64.94.164.18 |
|
| Details | IPv4 | 1 | 83.143.134.23 |
|
| Details | IPv4 | 2 | 83.238.208.55 |
|
| Details | IPv4 | 1 | 85.226.179.185 |
|
| Details | IPv4 | 1 | 89.111.176.87 |
|
| Details | IPv4 | 1 | 91.121.103.143 |
|
| Details | IPv4 | 1 | 95.142.167.193 |
|
| Details | IPv4 | 1 | 97.74.75.172 |
|
| Details | IPv4 | 1 | 31.184.192.195 |
|
| Details | IPv4 | 1 | 69.64.56.232 |
|
| Details | IPv4 | 1 | 195.80.151.59 |
|
| Details | IPv4 | 1441 | 127.0.0.1 |
|
| Details | IPv4 | 59 | 255.255.255.255 |
|
| Details | Url | 1 | http://www.virusbtn.com/resources/vgrep/. |
|
| Details | Url | 149 | http://www.virusbtn.com/prevalence/. |
|
| Details | Url | 1 | https://ajax.googleapis.com/ajax/libs |
|
| Details | Url | 1 | http://69.64.56.232:8080/za/v_01_a/in/cp.php |
|
| Details | Url | 1 | http://69.64.56.232:8080/za/v_01_a |
|
| Details | Url | 1 | http://crypt.am |
|
| Details | Url | 4 | http://nakedsecurity.sophos.com/exploring-the- |
|
| Details | Url | 1 | http://thehackernews.com/2011/05/blackhole- |
|
| Details | Url | 1 | http://www.infosecurity-magazine.com/view/18159 |
|
| Details | Url | 1 | http://forum.ioncube.com |
|
| Details | Url | 1 | http://sofosecurity.fi |
|
| Details | Url | 2 | http://malware.dontneedcoffee.com/2012/07/inside- |
|
| Details | Url | 18 | http://www.virusbtn.com/virusbulletin |
|
| Details | Url | 1 | http://www.ioncube.com/sa_encoder. |
|
| Details | Url | 27 | http://www.blackhat.com |
|
| Details | Url | 1 | http://www.security.org.sg/code/loadexe.html |
|
| Details | Url | 4 | http://msdn.microsoft.com/en-us/library/windows |
|
| Details | Url | 1 | http://www.trojanhorsethebook.com |
|
| Details | Url | 138 | http://www.virusbtn.com/virusbulletin/subscriptions |
|
| Details | Url | 290 | http://www.virusbtn.com |
|
| Details | Url | 3 | http://www.rsaconference.com/events/2012/europe/. |
|
| Details | Url | 16 | http://www.ruxcon.org.au/. |
|
| Details | Url | 4 | http://apwg.org/events/events.html |
|
| Details | Url | 10 | http://www.isse.eu.com/. |
|
| Details | Url | 24 | http://www.hackerhalted.com/. |
|
| Details | Url | 5 | http://www.aavar.org/avar2012/. |
|
| Details | Url | 4 | http://www.smi-online.co.uk/energy/uk/oil-gas-cyber-security. |
|
| Details | Url | 14 | http://www.sourceconference.com |
|
| Details | Url | 6 | http://www.takedowncon.com/events/lasvegas.aspx |
|
| Details | Url | 134 | http://www.blackhat.com/. |
|
| Details | Url | 5 | http://www.cert.org/fl |
|
| Details | Url | 6 | http://www.rsaconference.com/events/2013/usa/. |
|
| Details | Url | 8 | http://www.informaticahabana.com/. |
|
| Details | Url | 74 | http://www.infosec.co.uk/. |
|
| Details | Url | 59 | http://www.nisc.org.uk/. |
|
| Details | Windows Registry Key | 36 | HKCU\Software |
|
| Details | Windows Registry Key | 36 | HKEY_CURRENT_USER\Software\Microsoft\Windows |
|
| Details | Windows Registry Key | 29 | HKEY_CURRENT_USER\Software |
|
| Details | Windows Registry Key | 22 | HKEY_CURRENT_USER\Software\Microsoft |