ioc[.]one - OSINT Cyber Threat Intelligence Database

ASEC Weekly Malware Statistics (January 3rd, 2022 – January, 9th 2022) - ASEC BLOG

Tags

maec-delivery-vectors:	Watering Hole
attack-pattern:	Domains - T1583.001 Domains - T1584.001 Keylogging - T1056.001 Keylogging - T1417.001 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Tool - T1588.002

Show in Graph

Common Information

Type	Value
UUID	5a345687-4965-417f-8732-1687ba7e0811
Fingerprint	ed04bd48adfb0293
Analysis status	DONE
Considered CTI value	0
Text language
Published	Jan. 14, 2022, 12:15 p.m.
Added to db	Sept. 11, 2022, 4:59 p.m.
Last updated	Nov. 17, 2024, 6:49 p.m.
Headline	ASEC Weekly Malware Statistics (January 3rd, 2022 – January, 9th 2022)
Title	ASEC Weekly Malware Statistics (January 3rd, 2022 – January, 9th 2022) - ASEC BLOG
Detected Hints/Tags/Attributes	33/2/46

Source URLs

	Redirection	Url
Details	Source	https://asec.ahnlab.com/en/30687/

URL Provider

Details	Provider	Source level domain
Details	ahnlab.com	asec.ahnlab.com

Attributes

Details	Type	#Events	Value
Details	Domain	1	mail.sementescaicara.com.br
Details	Domain	1	sementescaicara.com.br
Details	Domain	1	mail.packsealsind.com
Details	Domain	1	packsealsind.com
Details	Domain	3	mail.neneka.org
Details	Domain	3	neneka.org
Details	Domain	6	ad-postback.biz
Details	Domain	3	web-stat.biz
Details	Domain	10	secure01-redirect.net
Details	Domain	4	nesofirenit.gq
Details	Domain	2	www.strikco.link
Details	Domain	3	www.haztol.xyz
Details	Domain	2	www.celimot.xyz
Details	Email	1	sementes@sementescaicara.com.br
Details	Email	1	sales.mumbai@packsealsind.com
Details	Email	2	choi@neneka.org
Details	Email	2	mary@neneka.org
Details	File	1	773538627141.pdf
Details	File	1	po30182.exe
Details	File	1	fedex00345.pdf
Details	File	1	77.exe
Details	File	1	cf2022-24400.exe
Details	File	1	limited.pdf
Details	File	89	wininit.exe
Details	File	1	fedex_do.exe
Details	File	1	bestzx.exe
Details	File	82	fre.php
Details	File	1	ndex.php
Details	File	1	incentive.exe
Details	File	1260	explorer.exe
Details	IPv4	1	174.142.126.13
Details	IPv4	1	162.241.148.56
Details	IPv4	2	108.167.180.132
Details	IPv4	1	185.231.70.207
Details	IPv4	6	185.215.113.83
Details	IPv4	1	45.9.20.144
Details	IPv4	1	5.206.227.238
Details	IPv4	2	95.143.177.66
Details	IPv4	4	91.243.32.101
Details	IPv4	1	167.99.241.151
Details	Url	2	http://secure01-redirect.net/gc8/fre.php
Details	Url	1	http://167.99.241.151/ndex.php
Details	Url	3	http://nesofirenit.gq/stats/fre.php
Details	Url	2	http://www.strikco.link/s11o
Details	Url	3	http://www.haztol.xyz/n62s
Details	Url	2	http://www.celimot.xyz/g2fg