Tofsee – modular spambot
Tags
| country: | Russia |
| attack-pattern: | Data Botnet - T1583.005 Botnet - T1584.005 Ip Addresses - T1590.005 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 |
Common Information
| Type | Value |
|---|---|
| UUID | 4f2f1e9d-5ac4-46f0-9023-4d1bdc3cbd6b |
| Fingerprint | bc0090902d998396 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Sept. 16, 2016, midnight |
| Added to db | Aug. 31, 2024, 1:53 a.m. |
| Last updated | Sept. 30, 2024, 12:43 p.m. |
| Headline | Social media |
| Title | Tofsee – modular spambot |
| Detected Hints/Tags/Attributes | 36/2/37 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://www.cert.pl/en/news/single/tofsee-en/ |
| Details | Source | https://cert.pl/en/posts/2016/09/tofsee-en/ |
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 81 | ✔ | CERT Polska | https://cert.pl/en/rss.xml | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | File | 3 | ddosr.dll |
|
| Details | File | 3 | antibot.dll |
|
| Details | File | 3 | snrpr.dll |
|
| Details | File | 3 | proxyr.dll |
|
| Details | File | 3 | webmr.dll |
|
| Details | File | 3 | protect.dll |
|
| Details | File | 3 | locsr.dll |
|
| Details | File | 3 | hostr.dll |
|
| Details | File | 3 | text.dll |
|
| Details | File | 3 | smtp.dll |
|
| Details | File | 4 | blist.dll |
|
| Details | File | 3 | miner.dll |
|
| Details | File | 3 | img.dll |
|
| Details | File | 2 | spread1.dll |
|
| Details | File | 3 | spread2.dll |
|
| Details | File | 8 | sys.dll |
|
| Details | File | 3 | webb.dll |
|
| Details | File | 2 | p2pr.dll |
|
| Details | md5 | 3 | fbc7eebe4a56114e55989e50d8d19b5b |
|
| Details | md5 | 3 | a3ba755086b75e1b654532d1d097c549 |
|
| Details | md5 | 3 | 385b09563350897f8c941b47fb199dcb |
|
| Details | md5 | 3 | 4a174e770958be3eb5cc2c4a164038af |
|
| Details | md5 | 3 | 78ee41b097d402849474291214391d34 |
|
| Details | md5 | 3 | 624c5469ba44c7eda33a293638260544 |
|
| Details | md5 | 3 | 2d28c116ca0783046732edf4d4079c77 |
|
| Details | md5 | 3 | c90224a3f8b0ab83fafbac6708b9f834 |
|
| Details | md5 | 3 | 48ace17c96ae8b30509efcb83a1218b4 |
|
| Details | md5 | 3 | 761e654fb2f47a39b69340c1de181ce0 |
|
| Details | md5 | 2 | e77c0f921ef3ff1c4ef83ea6383b51b9 |
|
| Details | md5 | 3 | 47405b40ef8603f24b0e4e2b59b74a8c |
|
| Details | md5 | 3 | e0b0448dc095738ab8eaa89539b66e47 |
|
| Details | md5 | 3 | 227ec327fe7544f04ce07023ebe816d5 |
|
| Details | md5 | 3 | 90a7f97c02d5f15801f7449cdf35cd2d |
|
| Details | md5 | 3 | 70dbbaba56a58775658d74cdddc56d05 |
|
| Details | md5 | 2 | 8a3d2ae32b894624b090ff7a36da2db4 |
|
| Details | md5 | 3 | e0061dce024cca457457d217c9905358 |
|
| Details | md5 | 1 | ae0d32e51f36ce6e6e8c5ccdc3d253a0 |