Mylobot僵尸网络团伙近期活动分析
Tags
| attack-pattern: | Botnet - T1583.005 Botnet - T1584.005 Connection Proxy - T1090 |
Common Information
| Type | Value |
|---|---|
| UUID | 51693f02-c962-4cf9-bb04-cef97adf6cef |
| Fingerprint | 49eca6fabcca8301 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Jan. 13, 2020, midnight |
| Added to db | Aug. 13, 2023, 9:55 a.m. |
| Last updated | Oct. 22, 2024, 3:44 p.m. |
| Headline | Mylobot僵尸网络团伙近期活动分析 |
| Title | Mylobot僵尸网络团伙近期活动分析 |
| Detected Hints/Tags/Attributes | 6/1/23 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 267 | ✔ | 奇安信威胁情报中心 | https://wechat2rss.xlab.app/feed/b93962f981247c0091dad08df5b7a6864ab888e9.xml | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | wipmania.net |
|
| Details | Domain | 2 | wipmsc.ru |
|
| Details | Domain | 1 | stcus.ru |
|
| Details | Domain | 1 | bcbxfme.ru |
|
| Details | Domain | 1 | bmazlky.ru |
|
| Details | Domain | 1 | bthmzsp.ru |
|
| Details | Domain | 1 | byosnwr.ru |
|
| Details | Domain | 1 | cxxhtmb.ru |
|
| Details | Domain | 1 | dkqhmbi.ru |
|
| Details | Domain | 1 | dldzeoo.ru |
|
| Details | Domain | 1 | dlihgic.ru |
|
| Details | Domain | 1 | dnfojik.ru |
|
| Details | Domain | 1 | onthestage.ru |
|
| Details | Domain | 1 | krebson.ru |
|
| Details | Domain | 1 | stanislasarnoud.ru |
|
| Details | Domain | 3 | minerva-labs.com |
|
| Details | Domain | 14 | www.bitsight.com |
|
| Details | IPv4 | 3 | 89.39.107.82 |
|
| Details | IPv4 | 1 | 162.244.80.231 |
|
| Details | IPv4 | 2 | 212.8.242.104 |
|
| Details | IPv4 | 1 | 51.15.12.156 |
|
| Details | Url | 1 | https://minerva-labs.com/blog/mylobot-2022-so-many-evasive-techniques-just-to-send-extortion-emails |
|
| Details | Url | 2 | https://www.bitsight.com/blog/mylobot-investigating-proxy-botnet |