GitHub - br-data/2019-winnti-analyse: Scripts and rulesets for analysing the Winnti malware
Tags
country: | China Germany |
attack-pattern: | Data Malware - T1587.001 Malware - T1588.001 Python - T1059.006 |
Common Information
Type | Value |
---|---|
UUID | 665c4e11-4fb9-42ed-83d7-8d4dcb08cb56 |
Fingerprint | 3a700d428e7667cd |
Analysis status | DONE |
Considered CTI value | 0 |
Text language | |
Published | Jan. 1, 2022, midnight |
Added to db | Sept. 26, 2022, 9:31 a.m. |
Last updated | Dec. 23, 2024, 6:14 a.m. |
Headline | br-data/2019-winnti-analyse |
Title | GitHub - br-data/2019-winnti-analyse: Scripts and rulesets for analysing the Winnti malware |
Detected Hints/Tags/Attributes | 25/2/10 |
Source URLs
Redirection | Url | |
---|---|---|
Details | Source | https://github.com/br-data/2019-winnti-analyse/ |
URL Provider
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 3 | parse.py |
|
Details | Domain | 1 | de.henkelgroup.net |
|
Details | Domain | 1 | br.de |
|
Details | 1 | data@br.de |
||
Details | File | 160 | requirements.txt |
|
Details | File | 3 | parse.py |
|
Details | File | 1 | hpinsightex.dll |
|
Details | File | 1 | kb25489.dat |
|
Details | sha256 | 1 | 9c3415507b38694d65262e28f73c3fade5038e455b83d41060f024403c26c9ee |
|
Details | sha256 | 1 | 585fa6bbc8bc9dbd8821a0855432c911cf828e834ec86e27546b46652afbfa5e |