김수키(Kimsuky) 에서 만든 고속국도 제29호선 세종-안성 간 건설공사 송장으로 위장 하는 악성코드-도x기업 20240610 송장.bmp.lnk(2024.7.30)
Tags
attack-pattern: Malware - T1587.001 Malware - T1588.001
Show in Graph
Common Information
Type Value
UUID 57c40afe-8cdc-485a-b8f5-ea9a7870dc43
Fingerprint 5a18578350e6653b
Analysis status DONE
Considered CTI value 2
Text language
Published Aug. 26, 2024, midnight
Added to db Aug. 31, 2024, 11:17 a.m.
Last updated Nov. 16, 2024, 11:18 a.m.
Headline 꿈을꾸는 파랑새
Title 김수키(Kimsuky) 에서 만든 고속국도 제29호선 세종-안성 간 건설공사 송장으로 위장 하는 악성코드-도x기업 20240610 송장.bmp.lnk(2024.7.30)
Detected Hints/Tags/Attributes 22/1/15
Source URLs
Redirection Url
Details Source https://wezard4u.tistory.com/429261
Details Source http://wezard4u.tistory.com/429261
URL Provider
Details Provider Source level domain
Details tistory.com wezard4u.tistory.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 478 꿈을꾸는 파랑새 https://wezard4u.tistory.com/feed 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 228 
system.io
Details Domain 12 
trojan.link
Details File 10 
송장.bmp
Details File 45 
1.zip
Details File 1 
갑지.bmp
Details File 9 
trojan.ps
Details File 11 
악성코드-integration.pdf
Details md5 1 
4ac2192b01fce9e793f544d09877d16b
Details md5 1 
09b1213c8a336541a4849d65b937293f
Details sha1 1 
d83f47dfe20c38ccec3b9869f644fd4c128a94d0
Details sha1 1 
9e6e4ecaea18171e2266899f1bffda5de1091a2f
Details sha256 1 
3d3cc980ccf97cde5f3272fdc4c88569b77afe3f88e2e62186861daae99644d0
Details sha256 1 
44ff60d352169f280801cf2075295aab0a6151ff8f77b66d16c82776efce7fea
Details Microsoft Patch Numbers 12 
KB5041580
Details Microsoft Patch Numbers 13 
KB5041585