ioc[.]one - OSINT Cyber Threat Intelligence Database

탄소배출 전문기업 타겟 워드문서 공격 - ASEC BLOG

Tags

Show in Graph

Common Information

Type	Value
UUID	5e036308-6803-43a9-aa15-96a01564281b
Fingerprint	a47684e7a1c7ca3f
Analysis status	DONE
Considered CTI value	0
Text language
Published	March 18, 2022, 5:15 p.m.
Added to db	Jan. 30, 2023, 4:34 p.m.
Last updated	Nov. 18, 2024, 1:38 a.m.
Headline	탄소배출 전문기업 타겟 워드문서 공격
Title	탄소배출 전문기업 타겟 워드문서 공격 - ASEC BLOG
Detected Hints/Tags/Attributes	13/0/17

Source URLs

	Redirection	Url
Details	Source	https://asec.ahnlab.com/ko/32765/

URL Provider

Details	Provider	Source level domain
Details	ahnlab.com	asec.ahnlab.com

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	1		osp06397.net
Details	Domain	1		us43784.org
Details	File	1		연구소.doc
Details	File	376		wscript.exe
Details	File	1		%appdata%microsofttemplatesversion.ini
Details	File	5		version.ini
Details	File	3		%appdata%\microsoft\templates\version.ini
Details	File	5		wieb.dat
Details	File	2127		cmd.exe
Details	File	1		pi_000.dat
Details	File	1		c:\users 폴더 내부 파일 목록 저장 pi_001.dat
Details	File	73		view.php
Details	File	24		report.php
Details	md5	1		c096ceaaecd4c8fccfe765280a6dac1e
Details	md5	1		dd468bb6daff412f0205b21d50ddd641
Details	Url	1		https://osp06397.net/view.php?id=21504
Details	Url	1		https://us43784.org/report.php