ioc[.]one - OSINT Cyber Threat Intelligence Database

APT-C-00（海莲花）双重加载器及同源VMP加载器分析

Tags

Show in Graph

Common Information

Type	Value
UUID	44e44987-bfe3-4fa2-b916-405b0cfef6aa
Fingerprint	937fc8cc49bfec7b
Analysis status	DONE
Considered CTI value	2
Text language
Published	Sept. 23, 2024, midnight
Added to db	Sept. 25, 2024, 4:44 p.m.
Last updated	Nov. 17, 2024, 7:44 p.m.
Headline	APT-C-00（海莲花）双重加载器及同源VMP加载器分析
Title	APT-C-00（海莲花）双重加载器及同源VMP加载器分析
Detected Hints/Tags/Attributes	6/0/19

Source URLs

	Redirection	Url
Details	Source	https://mp-weixin-qq-com.translate.goog/s?__biz=MzUyMjk4NzExMA%3D%3D&mid=2247500701&idx=1&sn=7f4644119574e433a29d215a70658f6b&chksm=f9c1f094ceb67982f950b7569be3d9f5ff176d741f1bef4ea2e4fc412305a4dd04bdc7b869fb&scene=178&cur_album_id=1955835290309230595&_x_tr_sl=auto&_x_tr_tl=en&_x_tr_hl=de#rd

URL Provider

Details	Provider	Source level domain
Details	translate.goog	mp-weixin-qq-com.translate.goog

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	2		strengthening-memories-reports-restoration.trycloudflare.com
Details	Domain	4127		github.com
Details	Domain	208		mp.weixin.qq.com
Details	Domain	4		ti.defender.microsoft.com
Details	Github username	6		shirou
Details	Github username	5		kbinani
Details	md5	2		2109479e62f3c45bab00768553b158b8
Details	md5	2		d21c4b1c1db2c9f443c4ba271f738c91
Details	md5	2		26669891d83b8a706d2c0af91292247c
Details	md5	2		4ce5ea38c4d486bed7f6d9e9208133c6
Details	md5	2		4a8756b22029a88506744ab7864c9b83
Details	md5	2		9ad37ce054ca1523d26bb49fbc80dff6
Details	IPv4	2		64.176.58.16
Details	Threat Actor Identifier - APT-C	44		APT-C-00
Details	Threat Actor Identifier - APT	665		APT29
Details	Url	2		https://github.com/shirou/gopsutil
Details	Url	3		https://github.com/kbinani/screenshot
Details	Url	3		https://mp.weixin.qq.com/s/ib2w86cxcpmgs8qronprkw
Details	Url	2		https://ti.defender.microsoft.com/articles/541a465f