Comparing the Regin module 50251 and the “Qwerty” keylogger
Tags
attack-pattern: Hooking - T1617 Malware - T1587.001 Malware - T1588.001 Software - T1592.002 Hooking - T1179 Hooking
Show in Graph
Common Information
Type Value
UUID 1440e619-a3ad-4970-a160-df295d7d9439
Fingerprint f5631e6a885cb343
Analysis status DONE
Considered CTI value 2
Text language
Published Jan. 27, 2015, 11 a.m.
Added to db Jan. 18, 2023, 9:40 p.m.
Last updated Oct. 1, 2024, 2:37 p.m.
Headline Comparing the Regin module 50251 and the “Qwerty” keylogger
Title Comparing the Regin module 50251 and the “Qwerty” keylogger
Detected Hints/Tags/Attributes 19/1/8
Source URLs
Redirection Url
Details Source http://securelist.com/blog/research/68525/comparing-the-regin-module-50251-and-the-qwerty-keylogger/
URL Provider
Details Provider Source level domain
Details securelist.com securelist.com
Attributes
Details Type #Events CTI Value
Details Domain 7 
spiegel.de
Details Domain 15 
media.kasperskycontenthub.com
Details File 1 
media-35668.pdf
Details File 2 
20123.sys
Details md5 1 
0ed11a73694999bc45d18b4189f41ac2
Details md5 1 
c0de81512a08bdf2ec18cb93b43bdc2d
Details md5 1 
e9a43ea2882ac63b7bc036d954c79aa1
Details Url 1 
https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2015/01/20082109/media-35668.pdf