Hearts Stolen, Wallets Emptied: Insights into CryptoLove Traffer’s Team
Common Information
Type Value
UUID 70a02534-68c4-4455-860f-dbed981db111
Fingerprint fc861119a9a2dfc9
Analysis status DONE
Considered CTI value 2
Text language
Published Nov. 27, 2024, 10:10 p.m.
Added to db Nov. 27, 2024, 11:32 p.m.
Last updated Dec. 4, 2024, 9:45 p.m.
Headline Hearts Stolen, Wallets Emptied: Insights into CryptoLove Traffer’s Team
Title Hearts Stolen, Wallets Emptied: Insights into CryptoLove Traffer’s Team
Detected Hints/Tags/Attributes 147/3/42
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 167 Cybersecurity on Medium https://medium.com/feed/tag/cybersecurity 2024-08-30 22:08
Details 171 Malware on Medium https://medium.com/feed/tag/malware 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 1
zapper.xyz
Details Domain 1
cn.tgstat.com
Details Domain 1
dragonborn.org
Details Domain 252
mail.ru
Details Domain 1
nexcall.us
Details Domain 1
xona.gg
Details Domain 1
kingz.net
Details Domain 1
xilloolli.com
Details Domain 1
apikokoapi.com
Details Domain 1
service-government.com
Details Domain 4235
github.com
Details Domain 229
gist.github.com
Details File 1
mainwindow.wallet
Details File 158
1.exe
Details File 1
api-debug.php
Details File 1
tinypatch.exe
Details File 1
add_code.php
Details File 1
qicudt52b.dll
Details File 49
api.php
Details File 1
morpheme32.exe
Details File 1243
powershell.exe
Details Github username 2
traclabs1
Details Github username 5
abhisek
Details md5 1
9d4302876124b31deca3254bc0d0bfee
Details md5 1
01eeb350cf7ae02ed8fddca0ec089f5f
Details sha1 1
7eb4ca2952eb958e894d4ac48971ba930f22d29f
Details sha1 1
8f44a139359ddb9310c681526c560f207b706115
Details IPv4 1
3.29.8.0
Details IPv4 1
77.105.166.229
Details Pdb 1
c:\users\администратор\documents\pe-loader-sample-master\release\pe-loader-sample.pdb
Details Url 1
http://xilloolli.com/api.php
Details Url 1
https://xilloolli.com/api.php?status=1&wallets=0&av=1
Details Url 1
http://xilloolli.com/api.php?status=4&wallets=1
Details Url 1
http://xilloolli.com/api-debug.php?status=3&proc=intel
Details Url 1
http://xilloolli.com/api-debug.php?status=11&error=error_message
Details Url 1
https://apikokoapi.com/add_code.php?method=get&code=code_entered
Details Url 1
https://service-government.com/api.php
Details Url 1
http://77.105.166.229/beast2
Details Url 1
http://77.105.166.229/beast1
Details Url 1
https://github.com/traclabs1/config_extractors/tree/main
Details Url 1
https://github.com/abhisek/pe-loader-sample/tree/master
Details Url 1
https://gist.github.com/traclabs1/01eeb350cf7ae02ed8fddca0ec089f5f