ioc[.]one - OSINT Cyber Threat Intelligence Database

Graftor - But I Never Asked for This…

Tags

maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Dns - T1071.004 Dns - T1590.002 Domains - T1583.001 Domains - T1584.001 Malware - T1587.001 Malware - T1588.001 Network Devices - T1584.008 Regsvr32 - T1218.010 Server - T1583.004 Server - T1584.004 Software - T1592.002 Regsvr32 - T1117

Show in Graph

Common Information

Type	Value
UUID	676391e7-9d7b-4b22-b74d-02ed111432c6
Fingerprint	8e3f0997cc35b3e9
Analysis status	DONE
Considered CTI value	2
Text language
Published	Sept. 5, 2017, 11 a.m.
Added to db	Sept. 26, 2022, 9:30 a.m.
Last updated	Oct. 16, 2024, 2:42 a.m.
Headline	Vulnerability Information
Title	Graftor - But I Never Asked for This…
Detected Hints/Tags/Attributes	56/2/34

Source URLs

	Redirection	Url
Details	Source	http://blog.talosintelligence.com/2017/09/graftor-but-i-never-asked-for-this.html
Details	Source	https://blog.talosintelligence.com/2017/09/graftor-but-i-never-asked-for-this.html

URL Provider

Details	Provider	Source level domain
Details	talosintelligence.com	blog.talosintelligence.com

Attributes

Details	Type	#Events	Value
Details	Domain	246	mail.ru
Details	Domain	1	regularfood.gdn
Details	Domain	1	arolina.torchpound.gdn
Details	Domain	1	binupdate.mail.ru
Details	Domain	7	crl.microsoft.com
Details	Domain	1	dreple.com
Details	Domain	1	gambling577.xyz
Details	Domain	1	jvusdtufhlreari.twiceprint.gdn
Details	Domain	1	kskmasdqsjuzom.regularfood.gdn
Details	Domain	1	mentalaware.gdn
Details	Domain	1	mrds.mail.ru
Details	Domain	1	nottotrack.com
Details	Domain	1	plugpackdownload.net
Details	Domain	2	s2.symcb.com
Details	Domain	1	sputnikmailru.cdnmail.ru
Details	Domain	1	ss.symcd.com
Details	Domain	1	xml.binupdate.mail.ru
Details	File	1	2263387661.exe
Details	File	1	c:\users\dex\appdata\local\temp\2263387661.exe
Details	File	1	c:\users\dex\appdata\local\temp\qbpo5ppcuhjg.exe
Details	File	1	c:\users\dex\appdata\local\temp\aywdp7thpieu.exe
Details	File	23	c:\windows\system32\regsvr32.exe
Details	md5	1	9b9ce661a764d84a4636812e1dfcb03b
Details	md5	1	40bde09fc059f205f67b181c34de666b
Details	md5	1	1e9f40e70ed3ab0ca9a52c216f807eff
Details	md5	1	3746aecf3b94384b9de720158c4e7d88
Details	sha1	1	fd3ccf65eab21a77d2e440bd23c59d52e96a03a4
Details	sha1	1	99c7627708c4ab1fca3222738c573e7376ab4070
Details	sha1	1	7c4cd0ff0e004a62c9ab7f8bd991094226eca842
Details	sha256	1	41474cd23ff0a861625ec1304f882891826829ed26ed1662aae2e7ebbe3605f2
Details	sha256	1	eefdbe891e35390b84181eabe0ace6e202f5b2a050e800fb8e82327d5e57336d
Details	sha256	1	5eb2333956bebb81da365a26e56fea874797fa003107f95cda21273045d98385
Details	Url	1	http://kskmasdqsjuzom.regularfood.gdn/j/zgf0yv9mawxlcz0ymyz0exblpxn0yxrpyyzuyw1lpvrlbxalnumymjyzmzg3njyxlmv4zszybmq9zty5njm5zjjjytdlnwnindu2zmywmduyn2m2odblndmxmty0ymfhzgjlzwi3mti5yjiwzgyzm2m3yzizntc1yq...
Details	Url	1	http://kskmasdqsjuzom.regularfood.gdn/j/zgf0yv9mawxlcz0ymyz0exblpxn0yxrpyyzuyw1lpvrlbxalnumymjyzmzg3njyxlmv4zszybmq9zty5njm5zjjjytdlnwnindu2zmywmduyn2m2odblndmxmty0ymfhzgjlzwi3mti5yjiwzgyzm2m3yzizntc1yszkzwxhet0zodk...