ioc[.]one - OSINT Cyber Threat Intelligence Database

sshd后门自动化检测 | BinaryAI在恶意软件检测场景的实践

Tags

attack-pattern:

Server - T1583.004 Server - T1584.004 Ssh - T1021.004

Show in Graph

Common Information

Type	Value
UUID	6a598cd6-6c94-46bc-b91d-1433666dcc75
Fingerprint	d3743aeffffb5b4e
Analysis status	DONE
Considered CTI value	2
Text language
Published	Nov. 12, 2024, midnight
Added to db	Nov. 12, 2024, 11:54 a.m.
Last updated	Nov. 17, 2024, 7:44 p.m.
Headline	sshd后门自动化检测 \| BinaryAI在恶意软件检测场景的实践
Title	sshd后门自动化检测 \| BinaryAI在恶意软件检测场景的实践
Detected Hints/Tags/Attributes	5/1/27

Source URLs

	Redirection	Url
Details	Source	https://mp.weixin.qq.com/s?__biz=MzI5ODk3OTM1Ng==&mid=2247509923&idx=1&sn=801e110bedbee1ba64422e4fb1f1010b&chksm=ec9f7ed0dbe8f7c6f3b23c249e64de58d8be401e1fb049c10c3a6eb8e05d221cf1e0beaf773b&scene=58&subscene=0#rd

URL Provider

Details	Provider	Source level domain
Details	qq.com	mp.weixin.qq.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	262	✔	腾讯安全威胁情报中心	https://wechat2rss.xlab.app/feed/034265b14906a59ef7cf1fcbd56699b54a696094.xml	2024-08-30 22:08

Attributes

Details	Type	#Events	Value
Details	Domain	2	www.binaryai.cn
Details	Domain	268	www.virustotal.com
Details	Domain	4127	github.com
Details	File	85	www.bin
Details	Github username	5	openssh
Details	sha256	2	dfc86b375e974b3092bbff41eb24db3281fb4fc104f1043a7afbf95f85a2c1d5
Details	sha256	2	3876e702b25da4c72d8cdd913f2892e29eb748de59de96a75d4f41293648f8ae
Details	sha256	2	78642628e15db5a2e342e33ff762d6163941c40b80ffdcf0c9bbc2eb881136ab
Details	sha256	2	b15402931cda3221864f69142d4cd5973bf9bdf7e3277ee4e5a55ce71a154493
Details	sha256	2	4391958372f45e26b848b3f8b278022455431eb8a9fb5d85caf4769c45a1de1c
Details	sha256	2	10aa2fe44e4dd4ae4e14eb5c6166fa95adbe5c6f92b590caedace7ed933518db
Details	sha256	2	a6f254c63ff69ac997cf2d6c91ca20284c2851bc8d8eb1b023d43ca29981b318
Details	sha256	2	1d3a7eebc88f731305adf58adecbaab093d9fe302b1ea5c900500d1c0ed370bb
Details	sha256	2	0b99f4d3e57216518b8500f9b8c210b2b8d032b4eb813dfb80997ff1da81c713
Details	sha256	2	40a67e37ded15dd2ea7c13363314a047660fade98a411fee344538469619cf3d
Details	Url	2	https://www.binaryai.cn/analysis/dfc86b375e974b3092bbff41eb24db3281fb4fc104f1043a7afbf95f85a2c1d5
Details	Url	43	https://www.virustotal.com
Details	Url	2	https://github.com/openssh/openssh-portable
Details	Url	2	https://www.binaryai.cn/interactive/file/3876e702b25da4c72d8cdd913f2892e29eb748de59de96a75d4f41293648f8ae?function=1130608
Details	Url	2	https://www.binaryai.cn/interactive/file/78642628e15db5a2e342e33ff762d6163941c40b80ffdcf0c9bbc2eb881136ab?function=1124576
Details	Url	2	https://www.binaryai.cn/interactive/file/b15402931cda3221864f69142d4cd5973bf9bdf7e3277ee4e5a55ce71a154493?function=1119728
Details	Url	2	https://www.binaryai.cn/interactive/file/4391958372f45e26b848b3f8b278022455431eb8a9fb5d85caf4769c45a1de1c?function=1119728
Details	Url	2	https://www.binaryai.cn/interactive/file/10aa2fe44e4dd4ae4e14eb5c6166fa95adbe5c6f92b590caedace7ed933518db?function=1119952
Details	Url	2	https://www.binaryai.cn/interactive/file/a6f254c63ff69ac997cf2d6c91ca20284c2851bc8d8eb1b023d43ca29981b318?function=1106624
Details	Url	2	https://www.binaryai.cn/interactive/file/1d3a7eebc88f731305adf58adecbaab093d9fe302b1ea5c900500d1c0ed370bb?function=4418000
Details	Url	2	https://www.binaryai.cn/interactive/file/0b99f4d3e57216518b8500f9b8c210b2b8d032b4eb813dfb80997ff1da81c713?function=1129200
Details	Url	2	https://www.binaryai.cn/interactive/file/40a67e37ded15dd2ea7c13363314a047660fade98a411fee344538469619cf3d?function=4246289