ioc[.]one - OSINT Cyber Threat Intelligence Database

Banking Trojan SOVA Has New Version with Updated Features

Tags

cmtmf-attack-pattern:	Location Tracking Obfuscated Files Or Information System Network Connections Discovery
maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Access Contact List - T1432 Clipboard Data - T1414 Capture Sms Messages - T1412 Encrypted Channel - T1521 Encrypted Channel - T1573 System Network Connections Discovery - T1421 Location Tracking - T1430 Malware - T1587.001 Malware - T1588.001 Obfuscated Files Or Information - T1406 Process Discovery - T1424 Network Information Discovery - T1507 Non-Standard Port - T1509 Non-Standard Port - T1571 Server - T1583.004 Server - T1584.004 Obfuscated Files Or Information - T1027 Process Discovery - T1057 System Network Connections Discovery - T1049 Wipe Device Data - Mob-T1050

Show in Graph

Common Information

Type	Value
UUID	0b7b1fa3-8cc5-41cb-bc5d-a708b3ca8183
Fingerprint	dd2c7f2b2bf5a6c9
Analysis status	DONE
Considered CTI value	2
Text language
Published	Aug. 16, 2022, 10:10 a.m.
Added to db	Sept. 11, 2022, 12:46 p.m.
Last updated	Sept. 3, 2024, 6:20 a.m.
Headline	Banking Trojan SOVA Has New Version with Updated Features
Title	Banking Trojan SOVA Has New Version with Updated Features
Detected Hints/Tags/Attributes	34/3/17

Source URLs

	Redirection	Url
Details	Source	https://socradar.io/banking-trojan-sova-has-new-version-with-updated-features/

URL Provider

Details	Provider	Source level domain
Details	socradar.io	socradar.io

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	238	✔	SOCRadar® Cyber Intelligence Inc.	https://socradar.io/feed/	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	2		socrersutagans.site
Details	Domain	2		omainwpatnlfq.site
Details	Domain	3		satandemantenimiento.com
Details	Domain	3		wecrvtbyutrcewwretyntrverfd.xyz
Details	Domain	1		a0545193.xsph.ru
Details	Domain	1		l8j1nsk3j5h1msal973nk37.fun
Details	File	2		packagelist.txt
Details	md5	3		0533968891354ac78b45c486600a7890
Details	md5	3		ca559118f4605b0316a13b8cfa321f65
Details	md5	4		74b8956dc35fd8a5eb2f7a5d313e60ca
Details	sha256	1		8a6889610a18296e812fabd0a4ceb8b75caadc5cec1b39e8173c3e0093fd3a57
Details	sha256	1		efb92fb17348eb10ba3a93ab004422c30bcf8ae72f302872e9ef3263c47133a7
Details	sha256	1		795b279f312a773f7f556a978387f1b682f93470db4c1b5f9cd6ca2cab1399b6
Details	sha256	1		dd8a5a1a8632d661f152f435b7afba825e474ec0d03d1c5ef8669fdc2b484165
Details	Url	2		http://wecrvtbyutrcewwretyntrverfd.xyz
Details	Url	1		http://a0545193.xsph.ru
Details	Url	1		http://l8j1nsk3j5h1msal973nk37.fun