국내 그룹웨어 로그인 사이트로 위장한 피싱 사이트 유포 - ASEC BLOG
Tags
| attack-pattern: | Javascript - T1059.007 |
Common Information
| Type | Value |
|---|---|
| UUID | 11d60cf8-ba94-48b5-9c20-2307d7259606 |
| Fingerprint | 9d854388229c53cf |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Sept. 7, 2022, 4:51 p.m. |
| Added to db | Jan. 16, 2023, 3:55 p.m. |
| Last updated | Sept. 4, 2024, 2:51 p.m. |
| Headline | 국내 그룹웨어 로그인 사이트로 위장한 피싱 사이트 유포 |
| Title | 국내 그룹웨어 로그인 사이트로 위장한 피싱 사이트 유포 - ASEC BLOG |
| Detected Hints/Tags/Attributes | 4/1/17 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://asec.ahnlab.com/ko/38676/ |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 2 | 5imk2-hiaaa-aaaad-qdtoa-cai.ic.fleek.co |
|
| Details | Domain | 2 | 55l3x-gaaaa-aaaad-qdtnq-cai.ic.fleek.co |
|
| Details | Domain | 2 | 5tjw7-5qaaa-aaaad-qdtmq-cai.ic.fleek.co |
|
| Details | Domain | 5 | siasky.net |
|
| Details | Domain | 2 | gfyyyryrye.steep-rice-1b7d.izulink0047002.workers.dev |
|
| Details | Domain | 2 | dev-onaebe-all.pantheonsite.io |
|
| Details | File | 8 | cp.php |
|
| Details | Url | 2 | https://5imk2-hiaaa-aaaad-qdtoa-cai.ic.fleek.co/?# |
|
| Details | Url | 2 | https://55l3x-gaaaa-aaaad-qdtnq-cai.ic.fleek.co/?# |
|
| Details | Url | 2 | https://5tjw7-5qaaa-aaaad-qdtmq-cai.ic.fleek.co/?# |
|
| Details | Url | 2 | https://siasky.net/oacznpwrnbe5e1qbovnanlc5pfd4riklb0jwlvqvhk3elg?# |
|
| Details | Url | 2 | https://gfyyyryrye.steep-rice-1b7d.izulink0047002.workers.dev |
|
| Details | Url | 2 | https://dev-onaebe-all.pantheonsite.io/wp-content/cp.php |
|
| Details | Url | 2 | https://5imk2-hiaaa-aaaad-qdtoa-cai.ic.fleek.co/? |
|
| Details | Url | 2 | https://55l3x-gaaaa-aaaad-qdtnq-cai.ic.fleek.co/? |
|
| Details | Url | 2 | https://5tjw7-5qaaa-aaaad-qdtmq-cai.ic.fleek.co/? |
|
| Details | Url | 2 | https://siasky.net/oacznpwrnbe5e1qbovnanlc5pfd4riklb0jwlvqvhk3elg? |