Эволюция вредоносного ПО для электронной преступности в Латинской Америке в 2024 году - SEC-1275-1
Tags
attack-pattern: | Domains - T1583.001 Domains - T1584.001 Powershell - T1059.001 Powershell - T1086 |
Common Information
Type | Value |
---|---|
UUID | 021c503e-cc1a-4729-89f3-a3f777d7d57a |
Fingerprint | e88876cd18fb4ad3 |
Analysis status | DONE |
Considered CTI value | 0 |
Text language | |
Published | Dec. 19, 2024, midnight |
Added to db | Dec. 21, 2024, 3:12 a.m. |
Last updated | Dec. 23, 2024, 7:23 a.m. |
Headline | Эволюция вредоносного ПО для электронной преступности в Латинской Америке в 2024 году |
Title | Эволюция вредоносного ПО для электронной преступности в Латинской Америке в 2024 году - SEC-1275-1 |
Detected Hints/Tags/Attributes | 18/1/48 |
Source URLs
URL Provider
Details | Provider | Source level domain |
---|---|---|
Details | 1275.ru | 1275.ru |
RSS Feed
Details | Id | Enabled | Feed title | Url | Added to db |
---|---|---|---|---|---|
Details | 8 | ✔ | Архивы IOC - SEC-1275-1 | https://1275.ru/ioc/feed | 2024-08-30 22:08 |
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 2 | 162.200.178.68.host.secureserver.net |
|
Details | Domain | 2 | contpt.top |
|
Details | Domain | 2 | lovecollege.hosthampster.com |
|
Details | Domain | 3 | massgrave.site |
|
Details | Domain | 3 | 19b.zip |
|
Details | Domain | 2 | adjunto.pdfxml.store |
|
Details | Domain | 3 | api.cacher.io |
|
Details | File | 1 | 19b.zip |
|
Details | File | 1 | conta.php |
|
Details | File | 1 | adjunto.pdf |
|
Details | File | 1 | 6725c86d7fa55.js |
|
Details | File | 1 | n5lbsd5852.vbs |
|
Details | File | 1 | agsfa782.js |
|
Details | File | 1 | upload_20240311-130634.zip |
|
Details | sha256 | 2 | 07a58395e20090f139eb0cb3aa1872da4fae8c1630de818a405d3329a7406150 |
|
Details | sha256 | 2 | 0f035dced631ac58cfae510cfc61bb1dbef119331a8aea8d5c724a5ddca0f8c5 |
|
Details | sha256 | 2 | 129971e378991d14c444db7a7f4c9a16ece750dd6498261d2f35c85baa9bfd07 |
|
Details | sha256 | 2 | 148cd318aec19451b9ad17e58e0d97ebaffd46b56d3528608de20b95dd429c45 |
|
Details | sha256 | 2 | 15899e250892c2cc6b38d7cdcd2a3934a49c5dca954889564a98d15a52bf3b7c |
|
Details | sha256 | 2 | 2776c052d11f52501871c4cb5a051a1970f002c3f099969040945fb94a158d9a |
|
Details | sha256 | 2 | 27f482377777a1b8e1e679863685f64121f28e1e6e2bba832397269d1763e118 |
|
Details | sha256 | 2 | 3972d6c85bb37889265fef3bb3b3ed8494e038ca37e345a515e39b3e95766a50 |
|
Details | sha256 | 2 | 46b8e68f5e85935349d0bfc555b9786f7adbac9ec9a9fa174ba0c4f89baa098f |
|
Details | sha256 | 2 | 57e76a7af5bafb4ff06f5f44dcf1182ea5c6a8682651c260f555c52fd441b412 |
|
Details | sha256 | 2 | 5d74d439bbb0be789e23bdaafd8cff938e6e686af7c8e215dc945cacc88d131c |
|
Details | sha256 | 2 | 5f6c0ba669db489bc2ff186af312bfe7616f9e4a12706e195225da7168e10db0 |
|
Details | sha256 | 2 | 60b32e40ec0a5e59081fa9816a26346892899175ce97c811761423c3533e0651 |
|
Details | sha256 | 2 | aec68d256d8d2caf2d94c5944279806dd4da36d125c7a7d1485c89f718d0db15 |
|
Details | sha256 | 2 | b23aabe16db5f6ccdd061b457d01b94647ed5b5852806624dca277b43d63e188 |
|
Details | sha256 | 2 | ba4e715fe25aeaaf186e8395c2f13ca580457ab4e8ec1c037fd13821d97a6848 |
|
Details | sha256 | 2 | bbf766df1972966b0ab3928d82c61d953e849638bb2c0bab60df3ad8aaacf174 |
|
Details | sha256 | 2 | d7a918b29b4423b2a4be151f1b37c28abc081068c13a04ad8fd70dbd725d659b |
|
Details | sha256 | 2 | fc258ef827620184253ba37d94efc0043745c29cf3c9f21a6c730f7727d6d076 |
|
Details | IPv4 | 2 | 147.45.116.5 |
|
Details | IPv4 | 2 | 191.55.53.136 |
|
Details | IPv4 | 2 | 84.246.85.94 |
|
Details | IPv4 | 2 | 162.200.178.68 |
|
Details | IPv4 | 3 | 108.165.96.26 |
|
Details | IPv4 | 2 | 38.54.57.26 |
|
Details | Url | 3 | http://108.165.96.26:8080/19b.zip |
|
Details | Url | 2 | http://38.54.57.26/lu/conta.php |
|
Details | Url | 2 | https://162.200.178.68.host.secureserver.net/g1 |
|
Details | Url | 2 | https://adjunto.pdfxml.store//6725c86d7fae4/js/6725c86d7fa55.js |
|
Details | Url | 2 | https://api.cacher.io/raw/e9972f773263412223fe/d5186951e0cbbf25c69b/a |
|
Details | Url | 2 | https://contpt.top/g2 |
|
Details | Url | 2 | https://contpt.top/gzs74/n5lbsd5852.vbs |
|
Details | Url | 2 | https://contpt.top/romrv22/agsfa782.js |
|
Details | Url | 1 | https://public.adobecc.com/files/1cbzrekgr3qfqlniab3cpysqnzafff?content_disposition=attachment;filename="upload_20240311-130634.zip |