ASEC Weekly Malware Statistics (January 16th, 2023 – January 22nd, 2023) - ASEC BLOG
Tags
| country: | Qatar |
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Keylogging - T1056.001 Keylogging - T1417.001 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 |
Common Information
| Type | Value |
|---|---|
| UUID | 51ddd444-a41c-422f-876e-05adef4e1946 |
| Fingerprint | bf113860edfa02f2 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Jan. 30, 2023, 9:57 a.m. |
| Added to db | Jan. 30, 2023, 2:16 a.m. |
| Last updated | Nov. 17, 2024, 11:36 p.m. |
| Headline | ASEC Weekly Malware Statistics (January 16th, 2023 – January 22nd, 2023) |
| Title | ASEC Weekly Malware Statistics (January 16th, 2023 – January 22nd, 2023) - ASEC BLOG |
| Detected Hints/Tags/Attributes | 35/3/81 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://asec.ahnlab.com/en/46464/ |
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 17 | ✔ | ASEC | https://asec.ahnlab.com/en/feed/ | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 12 | wfsdragon.ru |
|
| Details | Domain | 1 | mail.expostore.pk |
|
| Details | Domain | 1 | expostore.pk |
|
| Details | Domain | 1175 | gmail.com |
|
| Details | Domain | 1 | mail.elec-qatar.com |
|
| Details | Domain | 3 | elec-qatar.com |
|
| Details | Domain | 25 | smtp.gmail.com |
|
| Details | Domain | 145 | api.telegram.org |
|
| Details | Domain | 1 | www.loudesios.com |
|
| Details | Domain | 5 | www.wordybag.online |
|
| Details | Domain | 1 | www.paupocket.online |
|
| Details | Domain | 4 | www.haremp.xyz |
|
| Details | Domain | 1 | www.koyesses.makeup |
|
| Details | Domain | 3 | www.dupaxi.xyz |
|
| Details | Domain | 1 | www.urvap.online |
|
| Details | Domain | 3 | www.gvdxop.xyz |
|
| Details | Domain | 7 | mightys.at |
|
| Details | Domain | 5 | mupsin.ru |
|
| Details | Domain | 5 | channelpi.com |
|
| Details | Domain | 8 | mordo.ru |
|
| Details | Domain | 12 | potunulit.org |
|
| Details | Domain | 11 | hutnilior.net |
|
| Details | Domain | 11 | bulimu55t.net |
|
| Details | Domain | 1 | minhaslaw.co.uk |
|
| Details | Domain | 1 | 1ntershippingp.co |
|
| Details | 1 | info@expostore.pk |
||
| Details | 1 | mylogs456@gmail.com |
||
| Details | 3 | mohammed.abrar@elec-qatar.com |
||
| Details | 5 | jinhux31@gmail.com |
||
| Details | 3 | maggie.hualingan@gmail.com |
||
| Details | File | 24 | count.php |
|
| Details | File | 16 | plus.php |
|
| Details | File | 9 | setstats.php |
|
| Details | File | 7 | getdata.php |
|
| Details | File | 8 | publisher.php |
|
| Details | File | 18 | ping.php |
|
| Details | File | 1 | swiftreport_00001801202301432.exe |
|
| Details | File | 1 | ref20230116_pdf.exe |
|
| Details | File | 3 | 001.exe |
|
| Details | File | 32 | copy.exe |
|
| Details | File | 30 | doc.exe |
|
| Details | File | 5 | file2.exe |
|
| Details | File | 1 | prcumnbm8pnam69.exe |
|
| Details | File | 1 | mawb.exe |
|
| Details | File | 4 | png.exe |
|
| Details | File | 1 | po20190606.exe |
|
| Details | File | 1 | fncuc.exe |
|
| Details | File | 1 | vdir.exe |
|
| Details | File | 3 | notice.exe |
|
| Details | File | 1 | dhl_bl_commercial_invoice_pl_deliveryaddress_pdf.exe |
|
| Details | File | 1260 | explorer.exe |
|
| Details | File | 101 | gate.php |
|
| Details | IPv4 | 21 | 45.139.105.171 |
|
| Details | IPv4 | 15 | 45.12.253.56 |
|
| Details | IPv4 | 3 | 37.0.11.41 |
|
| Details | IPv4 | 9 | 45.12.253.51 |
|
| Details | IPv4 | 4 | 208.67.104.97 |
|
| Details | Url | 3 | http://45.139.105.171/itsnotmalware/count.php?sub= |
|
| Details | Url | 3 | http://45.12.253.56/advertisting/plus.php?s= |
|
| Details | Url | 9 | http://wfsdragon.ru/api/setstats.php |
|
| Details | Url | 3 | http://37.0.11.41/base/api/getdata.php |
|
| Details | Url | 1 | http://45.12.253.51/publisher.php?subid=nosub |
|
| Details | Url | 1 | http://208.67.104.97/powfhxhxcjzx/ping.php?sub=nosub&stream=mixone&substream=mixtwo |
|
| Details | Url | 8 | https://api.telegram.org/bot2134979594 |
|
| Details | Url | 1 | http://www.loudesios.com/fswe |
|
| Details | Url | 5 | http://www.wordybag.online/nes8 |
|
| Details | Url | 1 | http://www.paupocket.online/umcs |
|
| Details | Url | 2 | http://www.haremp.xyz/tc10 |
|
| Details | Url | 1 | http://www.koyesses.makeup/ed9t |
|
| Details | Url | 3 | http://www.dupaxi.xyz/a09e |
|
| Details | Url | 1 | http://www.urvap.online/vy03 |
|
| Details | Url | 3 | http://www.gvdxop.xyz/n10i |
|
| Details | Url | 5 | http://mightys.at/tmp |
|
| Details | Url | 3 | http://mupsin.ru/tmp |
|
| Details | Url | 3 | http://channelpi.com/tmp |
|
| Details | Url | 3 | http://mordo.ru/tmp |
|
| Details | Url | 6 | http://potunulit.org |
|
| Details | Url | 5 | http://hutnilior.net |
|
| Details | Url | 5 | http://bulimu55t.net |
|
| Details | Url | 1 | http://minhaslaw.co.uk/new/ladi/gate.php |
|
| Details | Url | 1 | http://1ntershippingp.co/brown/gate.php |