Facebook Advertising Spreads Novel Malware Variant Whitepaper Name Goes Here
Common Information
| Type | Value |
|---|---|
| UUID | e01e397f-32a6-492a-97bc-3eb158e516c5 |
| Fingerprint | 8a89227cb832dc28cae4702a5d3cd46c9993632647fbc438a67947297d32db71 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Feb. 5, 2024, 5:03 p.m. |
| Added to db | May 6, 2024, 6:44 p.m. |
| Last updated | Aug. 31, 2024, 6:23 a.m. |
| Headline | Facebook Advertising Spreads Novel Malware Variant Whitepaper Name Goes Here |
| Title | Facebook Advertising Spreads Novel Malware Variant Whitepaper Name Goes Here |
| Detected Hints/Tags/Attributes | 90/4/187 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 133 | cve-2023-38831 |
|
| Details | Domain | 335 | www.facebook.com |
|
| Details | Domain | 112 | cdn.discordapp.com |
|
| Details | Domain | 2 | data2.zip |
|
| Details | Domain | 291 | raw.githubusercontent.com |
|
| Details | Domain | 2 | kay.zip |
|
| Details | Domain | 1 | customcursor.zip |
|
| Details | Domain | 2 | api.com |
|
| Details | Domain | 145 | api.telegram.org |
|
| Details | Domain | 1 | cx.zip |
|
| Details | Domain | 2 | data1.zip |
|
| Details | Domain | 2 | data3.zip |
|
| Details | Domain | 2 | data4.zip |
|
| Details | Domain | 4127 | github.com |
|
| Details | Domain | 4 | web.telegram.org |
|
| Details | Domain | 1 | 40mail.ru |
|
| Details | Domain | 27 | shorturl.at |
|
| Details | Domain | 2 | www.shorturl.at |
|
| Details | Domain | 21 | data.zip |
|
| Details | Domain | 1 | ponies.cloud |
|
| Details | Domain | 1 | wdkiller.com |
|
| Details | File | 1 | data2.zip |
|
| Details | File | 1 | docusign.url |
|
| Details | File | 1018 | rundll32.exe |
|
| Details | File | 185 | shell32.dll |
|
| Details | File | 1208 | powershell.exe |
|
| Details | File | 1 | data1.txt |
|
| Details | File | 11 | werfaultsecure.exe |
|
| Details | File | 11 | wer.dll |
|
| Details | File | 4 | secure.pdf |
|
| Details | File | 1 | kay.zip |
|
| Details | File | 1 | customcursor.html |
|
| Details | File | 1 | customcursor.zip |
|
| Details | File | 1 | customcursor.exe |
|
| Details | File | 3 | data.ini |
|
| Details | File | 1 | attitude_reports.txt |
|
| Details | File | 1 | copyright_report.svg |
|
| Details | File | 1 | smarttaskbarsetup.exe |
|
| Details | File | 1 | c:\users\ieuser\appdata\roaming\wallet.dat |
|
| Details | File | 1 | c:\users\ieuser\appdata\roaming\exodus\exodus.wallet |
|
| Details | File | 1 | c:\users\ieuser\appdata\roaming\filezilla\recentservers.xml |
|
| Details | File | 1 | c:\users\ieuser\appdata\roaming\filezilla\sitemanager.xml |
|
| Details | File | 1 | cx.txt |
|
| Details | File | 1 | cx.zip |
|
| Details | File | 1 | data1.zip |
|
| Details | File | 3 | data2.txt |
|
| Details | File | 4 | data3.txt |
|
| Details | File | 1 | data3.zip |
|
| Details | File | 1 | data4.zip |
|
| Details | File | 1 | data4.txt |
|
| Details | File | 1 | kay.txt |
|
| Details | File | 1 | smarttas.exe |
|
| Details | File | 37 | userenv.dll |
|
| Details | File | 9 | data.log |
|
| Details | File | 3 | c:\users\public\libraries\books\werfaultsecure.exe |
|
| Details | File | 1 | docusign1.url |
|
| Details | File | 1 | image_reported.url |
|
| Details | File | 1 | m.url |
|
| Details | File | 1 | docusigndocument.url |
|
| Details | File | 1 | docusign3.url |
|
| Details | File | 1 | 2024_tax_update.url |
|
| Details | File | 1 | policy_copyright.url |
|
| Details | File | 1 | job_description_salary.url |
|
| Details | File | 1 | contract_ads_december-2023.rar |
|
| Details | File | 1 | gold_silver_and_gemstone_company_recruits_communications_department.rar |
|
| Details | File | 1 | docusign4.url |
|
| Details | File | 1 | kay.url |
|
| Details | File | 1 | securedocusign_pdf.url |
|
| Details | File | 1 | my_photo_album.url |
|
| Details | Github username | 1 | nateeintanan2527 |
|
| Details | md5 | 1 | 08c16f5196aaeacdcc46f10e82e7c47b |
|
| Details | md5 | 1 | 905430fd2cba63713c5d5f625bc6fe5f |
|
| Details | md5 | 1 | 7f6fff7a288e53c8d2400140eb88d0b7 |
|
| Details | md5 | 1 | 739ede4370b88e60a1d872a1735f3923 |
|
| Details | md5 | 1 | c86f71dafb6589dc711dd2bc27373f5a |
|
| Details | md5 | 1 | 24da08be82f439c3230d0b16b275902f |
|
| Details | md5 | 1 | 3b33cead1847d254bb4d0e614c32a9b8 |
|
| Details | md5 | 1 | d06e91a847f4303ca417ec131ac8c038 |
|
| Details | md5 | 1 | eaa6f5129a23cb51029615b68a9ca792 |
|
| Details | md5 | 1 | 8904d6ad569095ef6fb1dab561edc420 |
|
| Details | md5 | 1 | bcbce22d8b56f857429a83c40551c8bf |
|
| Details | md5 | 1 | 5c2dc3e1af236cafc798c517414be70d |
|
| Details | md5 | 1 | c90b04b9184f91575d4f12320b4a65ab |
|
| Details | md5 | 1 | 88e38e212591ffaf3c3400b22b8988d6 |
|
| Details | md5 | 1 | b042b2a8981a94b7afe680d94808e9f8 |
|
| Details | md5 | 1 | 906509861bd74330c15f3c669b0a4c04 |
|
| Details | md5 | 1 | 1006ad7046f065da16102c3cb5e6bcb9 |
|
| Details | md5 | 1 | 3c490e342c30710834f21cbdadf80897 |
|
| Details | md5 | 1 | f52c10457c584f1b136fd7922a565c32 |
|
| Details | md5 | 1 | af0ce315ea226f4b07d7e3fac1b69846 |
|
| Details | md5 | 1 | 092566470d8f8ffd8e0e70c34229882e |
|
| Details | md5 | 1 | f424e8b32ca6ad7153f706ed1a0bc0af |
|
| Details | md5 | 1 | 0c33eafc7d9cb3abf6048ca98a5d2db9 |
|
| Details | md5 | 1 | 4afa1df89ec91d1e81020b9f42da43dc |
|
| Details | md5 | 1 | fe7b790b033aa60212249a2c47891041 |
|
| Details | md5 | 1 | C86f71dafb6589dc711dd2bc27373f5a |
|
| Details | md5 | 1 | 15a38db72e97b9f5b5a5737dd23571bd |
|
| Details | md5 | 1 | 534f90adf294faf90a293abfc4ac2f26 |
|
| Details | md5 | 1 | Fbf7e29cb108587f5abbf6b7f91a1ddd |
|
| Details | md5 | 1 | 4a328bdd8568261a14ebfff4eb6ffd2f |
|
| Details | md5 | 1 | 9cbed436d083dd76efcdfee8cbb4bafa |
|
| Details | md5 | 1 | 43412a035847649c4fb2daa6de336d86 |
|
| Details | md5 | 1 | a7de3969e3f09f2b076d67a3daf9edad |
|
| Details | md5 | 1 | 02bc92c06bd8bef8d15c410fa457b89d |
|
| Details | md5 | 1 | 010fb68e7589b24c1da35f9533f84bf8 |
|
| Details | sha256 | 1 | cb58bf466675be9e11cfb404503cb122514f47b9708d033e381f28a60535812c |
|
| Details | sha256 | 1 | 80f88566fda41ebc1b4e35d89748a804740bba0d03049c33c536cffd5e0491e2 |
|
| Details | sha256 | 1 | 9b9ba722b314febfc44919551a03dde1539f115333183c2cb5e74b8e644ba5b3 |
|
| Details | sha256 | 1 | 8b73d7aa8bb8db8a9ecbf9f713934fbbb5caf4745d7a61a6f34a100c4d84fd9d |
|
| Details | sha256 | 1 | 5f1a027f1c1468f93671a4c7fc7b5da00a3c559a9116f5417baa6c1f89550d9f |
|
| Details | sha256 | 1 | f2814a4b3796fb44045c33b9d0d9972bf40478e5bc74b587486900c6cfa02f3d |
|
| Details | sha256 | 1 | b37ec923451dd15a0f68df0b392b0f1b243fe50c709de9e574ac14cf6fabdd53 |
|
| Details | sha256 | 1 | 89caa1568fcff162086dae91e6bd34fd04facba50166ebff800d45a999d0be8b |
|
| Details | sha256 | 1 | 4a36cc607ca5c2acc536510fd1b0ddd43a9403dac168d2420d474611909ed9e6 |
|
| Details | sha256 | 1 | e326c1b9e61cca6823300158e55381c6951b09d2327a89a8d841539cad3b4df3 |
|
| Details | sha256 | 1 | 188c72f995ebd5e1e8d0e3b9d34eeeec2ec95d4d0fee30d2ea0f317ab1596eef |
|
| Details | sha256 | 1 | 5ecad303475e180f8879871d8571d1a7eeb99e0b3c63cc77fdd02cb9b8c51211 |
|
| Details | sha256 | 1 | 568b4b868b225f06bb34da0dc23603c9dedccc2b319353407c814983d5322563 |
|
| Details | sha256 | 1 | e64b185c149cb523d13cb46ea3911e2c0595b6f10ae86e6a14b15e8d45c0cdcb |
|
| Details | sha256 | 1 | c6765d92e540af845b3cbc4caa4f9e9d00d5003a36c9cb548ea79bb14c7e8f66 |
|
| Details | sha256 | 1 | 4da33c7fe62f71962913d7b40ff76aff9f1586e57db707b3d6b88162c051f402 |
|
| Details | sha256 | 1 | ff44e502bd5ea36e17b3fc39b480e65971b36002f27fb441e4acadd6bf604a20 |
|
| Details | sha256 | 1 | 480fae3bdc2604cba846779dd7dced95b3ce036bdef629ded247771a2e4d5d58 |
|
| Details | sha256 | 1 | b7980f64f892d70b1cd72a8c80f8319f50c3c410aba4e4bc63fd6494bcb4f313 |
|
| Details | sha256 | 1 | 5f0ff1fd6ca89a0ddd3178e023dea8f79ff3c3f3d8ff7900378eb014e83ed326 |
|
| Details | sha256 | 1 | d5b1214f1817a16b2bc8a76daa48c9a3c5af0e411cf4f0c17b0e364d437a454b |
|
| Details | sha256 | 1 | 348aea633c99e5f6a0ac7b850961be0a145a35678e5bd074b4852f7a2419f518 |
|
| Details | sha256 | 1 | 1c53dffcb4c474a2b08708609466e7d234d6d51139b6532af54fac5bb8d37415 |
|
| Details | sha256 | 1 | 3a34cd3a3221d83a1cca8913b2afbb5b780027d48b44d3ce15dfe4a402064871 |
|
| Details | sha256 | 1 | 40c6fa38e44e00d8cf113d0a079cd46f8b7654331f12e50d2af5a9f1ddc6d266 |
|
| Details | sha256 | 1 | 99d27635eb78197310478357014f63fc6f044558a0a17c34086741801a83c80c |
|
| Details | sha256 | 1 | 0df85ed4877940f4a6987790901734f8eb74cb97672773ec232cbb0ea76db681 |
|
| Details | sha256 | 1 | 0c2ccf98694849f898a4170cb46add3cd60b93e568dc300f6c868e38e64a3ba0 |
|
| Details | sha256 | 1 | a2710b5991583e44453126c237b642891acf53a313b39ae94f2ae9b44c51070d |
|
| Details | sha256 | 1 | 61cb5bd49e06374fc7e741b3bea2f0753f46b8ac3e1af2c9d3fd97f76452713d |
|
| Details | sha256 | 1 | 1d0f042818c521d5606501ebd47a048c8de07f2e9c705c4e1e0e3e39728d286f |
|
| Details | sha256 | 1 | fdebccc2249b080b79dbee888df1a1fa4c34b8947d8d70efbfe6dc3464b26777 |
|
| Details | sha256 | 1 | bc6ff1c783ecc91dcaf12296fedfe52f64f105847f7b67658f65192f7a4302a6 |
|
| Details | sha256 | 1 | e6020d7212bb1661019c6bcb57118a244af81f6473187551b20c9436462402fe |
|
| Details | sha256 | 1 | 69941417f26c207f7cbbbe36ce8b4d976640a3d7f407d316932428e427f1980b |
|
| Details | sha256 | 1 | 7c0a1e11610805bd187ef6e395c8fa31c1ae756962e26cdbff704ce54b9e678a |
|
| Details | sha256 | 1 | 70c23213096457df852b66443d9a632e66816e023fdf05a93b9087ffb753d916 |
|
| Details | sha256 | 1 | 6bd8449de1e1bdd62a86284ed17266949654f758e00e10d8cd59ec4d233c32e5 |
|
| Details | sha256 | 1 | a841cd16062702462fdffdd7eef9fc3d88cde65d19c8d5a384e33066d65f9424 |
|
| Details | sha256 | 1 | 22236e50b5f700f5606788dcd5ab1fb69ee092e8dffdd783ac3cab47f1f445ab |
|
| Details | sha256 | 1 | c3bfaa1f52abdbb673d83af67090112dfdfe9ea8ff7a613f62bd48bace205f75 |
|
| Details | sha256 | 1 | c9743e7ffb6f6978f08f86e970ddb82e24920d266b32bd242254fbf51abfe6ce |
|
| Details | sha256 | 1 | 4ae28a44c38edc516e449ddd269b5aa9924d549d763773dcd312b48fe6bb91ab |
|
| Details | sha256 | 1 | ad513d2cba6cc82a50ee6531b275e937480d8fee20af2b4f41da5f88e408a4e9 |
|
| Details | sha256 | 1 | 1433efd142007ce809aff5b057810f5a1919ea1e3ff740ff0fcc2fc729226be5 |
|
| Details | sha256 | 1 | 815b2125d6f0a5d99750614731aaad2c6936a1dc107a969408a88973f35064c0 |
|
| Details | sha256 | 1 | e2d19a23b19a07d35d16990e78c5cfaa3dd97b9ce92201f4db18a7da95fe6ff8 |
|
| Details | sha256 | 1 | b7f53c507a1aa4254b66a883285e27b42d65ea4ea4206fe674e0d03738f52141 |
|
| Details | sha256 | 1 | 9a96406ae06b703d827fffd1f1ced0781f89ca2af6d5041721e9fbd2647c8430 |
|
| Details | sha256 | 1 | ccd19ef6e81e936fc944ebafaefd2ad99ccd11dd15fbc7d3460726bb38237595 |
|
| Details | sha256 | 1 | 4446d5b475ce8aed5244da917ae42b6cb9744ffc4efd766af8e4dee7dd5a3e19 |
|
| Details | sha256 | 1 | ea9b0dee3b7583ce60bba277e2189acb660284abf6b3b9273b6a60c85b0a5ce3 |
|
| Details | IPv4 | 2 | 51.79.185.145 |
|
| Details | Url | 1 | https://www.facebook.com/andy.jassy.1968 |
|
| Details | Url | 1 | https://www.facebook.com/photo?fbid=122112030326101291&set=a.122104568504101291 |
|
| Details | Url | 1 | https://raw.githubusercontent.com/nateeintanan2527/joyce_data/main/data1.txt |
|
| Details | Url | 1 | https://api.telegram.org/bot6942060856 |
|
| Details | Url | 1 | https://github.com/nateeintanan2527 |
|
| Details | Url | 1 | https://cdn.discordapp.com/attachments/1083311514368360519/1170627584627855481/docusign1.url |
|
| Details | Url | 2 | https://shorturl.at/bsucr |
|
| Details | Url | 1 | https://cdn.discordapp.com/attachments/853270434422456330/1176802586481922098/image_ |
|
| Details | Url | 1 | https://cdn.discordapp.com/attachments/1083311514368360519/1170627585105997854/docusign2.url |
|
| Details | Url | 2 | https://shorturl.at/vzad2 |
|
| Details | Url | 1 | https://cdn.discordapp.com/attachments/1083311514368360519/1171355007245893653 |
|
| Details | Url | 2 | https://shorturl.at/clpio |
|
| Details | Url | 1 | https://cdn.discordapp.com/attachments/853270434422456330/1183676616564547624/image_ |
|
| Details | Url | 1 | https://cdn.discordapp.com/attachments/1083311514368360519/1170627585680609280/docusign3.url |
|
| Details | Url | 1 | https://www.shorturl.at/dkor6 |
|
| Details | Url | 2 | https://shorturl.at/gnl15 |
|
| Details | Url | 1 | https://cdn.discordapp.com/attachments/1083311514368360519/1172211288303206400/docusign3.url |
|
| Details | Url | 2 | https://shorturl.at/oorv9 |
|
| Details | Url | 1 | https://cdn.discordapp.com/attachments/1083311514368360519/1175808264479449138/docusign3.url |
|
| Details | Url | 2 | https://shorturl.at/eqxu0 |
|
| Details | Url | 1 | https://cdn.discordapp.com/attachments/1083311514368360519/1177255995156742144/docusign4.url |
|
| Details | Url | 2 | https://shorturl.at/ixez7 |
|
| Details | Url | 1 | https://cdn.discordapp.com/attachments/1083311514368360519/1177255994775064717/kay.url |
|
| Details | Url | 2 | https://shorturl.at/dmy69 |
|
| Details | Url | 1 | https://cdn.discordapp.com/attachments/1083311514368360519/1167767477921513512/securedocusign_ |
|
| Details | Url | 2 | https://shorturl.at/flek5 |
|
| Details | Url | 1 | https://cdn.discordapp.com/attachments/853270434422456330/1184415259717533726/my_photo_ |
|
| Details | Url | 1 | http://wdkiller.com |
|
| Details | Windows Registry Key | 8 | HKLM\System\CurrentControlSet\Services |