Sandbox MIMIng. CVE-2012-0158 in MHTML samples and analysis
Tags
| country: | Bolivia China Hong Kong Macao Russia |
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Data Dns - T1071.004 Dns - T1590.002 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Visual Basic - T1059.005 Whois - T1596.002 |
Common Information
| Type | Value |
|---|---|
| UUID | 70c27964-5a83-476e-af71-c4180f4f793e |
| Fingerprint | 2720ca51efb21c85 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Sept. 3, 2013, 1:52 a.m. |
| Added to db | Jan. 18, 2023, 7:46 p.m. |
| Last updated | Nov. 17, 2024, 6:30 p.m. |
| Headline | UNKNOWN |
| Title | Sandbox MIMIng. CVE-2012-0158 in MHTML samples and analysis |
| Detected Hints/Tags/Attributes | 84/3/329 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 176 | cve-2012-0158 |
|
| Details | CVE | 1 | cve-2004-0380 |
|
| Details | CVE | 10 | cve-2012-1535 |
|
| Details | Domain | 3 | backdoor.lv |
|
| Details | Domain | 1 | godson355.vicp.cc |
|
| Details | Domain | 1 | genniu.com |
|
| Details | Domain | 1 | www.genniu.com |
|
| Details | Domain | 1 | www.ndbssh.com |
|
| Details | Domain | 1 | dns15.hichina.com |
|
| Details | Domain | 1 | dns16.hichina.com |
|
| Details | Domain | 216 | www.symantec.com |
|
| Details | Domain | 18 | windowsupdate.microsoft.com |
|
| Details | Domain | 36 | contagiodump.blogspot.com |
|
| Details | Domain | 1 | ftp.hilosystems.com.tw |
|
| Details | Domain | 70 | nakedsecurity.sophos.com |
|
| Details | Domain | 1 | sophosnews.files.wordpress.com |
|
| Details | Domain | 13 | www.contextis.com |
|
| Details | Domain | 12 | www.circl.lu |
|
| Details | Domain | 1 | newworldtel.com |
|
| Details | Domain | 9 | citizenlab.org |
|
| Details | Domain | 2 | free1999.jkub.com |
|
| Details | Domain | 2 | contagioexchange.blogspot.com |
|
| Details | Domain | 1 | www.yahooip.net |
|
| Details | Domain | 85 | 163.com |
|
| Details | Domain | 2 | 189.cn |
|
| Details | Domain | 1 | www.yahooprotect.com |
|
| Details | Domain | 1 | www.yahooprotect.net |
|
| Details | Domain | 25 | co.ltd |
|
| Details | Domain | 1 | ergobabyscarrier.ca |
|
| Details | Domain | 1 | www.wholesalenfljerseyshop.us |
|
| Details | Domain | 1 | oakleysunglassesoutlet-store.us |
|
| Details | Domain | 1 | www.oakleysunglassesoutlet-store.us |
|
| Details | Domain | 1 | dolphinsjerseysale.com |
|
| Details | Domain | 1 | www.dolphinsjerseysale.com |
|
| Details | Domain | 1 | www.newpanthersjerseys.com |
|
| Details | Domain | 1 | www.packerslimitedjersey.com |
|
| Details | Domain | 1 | www.buccaneersjerseysproshop.com |
|
| Details | Domain | 1 | www.eaglesjerseysproshop2012.com |
|
| Details | Domain | 1 | elitefootballjersey.org |
|
| Details | Domain | 1 | www.elitefootballjersey.org |
|
| Details | Domain | 1 | oakleysunglassesoutlet-store.org |
|
| Details | Domain | 1 | sa.foundcloudsearch.com |
|
| Details | Domain | 1 | foundcloudsearch.com |
|
| Details | Domain | 14 | www.godaddy.com |
|
| Details | Domain | 1 | ns77.domaincontrol.com |
|
| Details | Domain | 1 | ns78.domaincontrol.com |
|
| Details | Domain | 1 | gorillaservers.com |
|
| Details | Domain | 1 | webposter.gicp.net |
|
| Details | Domain | 1 | mail2.netdacco.com |
|
| Details | 1 | nmc@newworldtel.com |
||
| Details | 1 | abuse@newworldtel.com |
||
| Details | 1 | arin-tech@gorillaservers.com |
||
| Details | File | 1 | watch-apple.doc |
|
| Details | File | 1 | kbdmgr.dll |
|
| Details | File | 1 | kbdmgr.exe |
|
| Details | File | 1 | dserver.doc |
|
| Details | File | 11 | dw20.exe |
|
| Details | File | 1 | h.gif |
|
| Details | File | 1 | 中央政府各機關派赴國外各地區出差人員生活費日支數額表.doc |
|
| Details | File | 1 | 機關派赴國外各地區出差人員生活費日支數額表.doc |
|
| Details | File | 1 | c:\windows\system32\netbridge.exe |
|
| Details | File | 1 | aa.doc |
|
| Details | File | 1 | netbridge.exe |
|
| Details | File | 22 | www.nd |
|
| Details | File | 1 | 2017年行政長官普選建議.doc |
|
| Details | File | 31 | writeup.jsp |
|
| Details | File | 2 | live360.exe |
|
| Details | File | 1 | temp1.exe |
|
| Details | File | 2 | users.bin |
|
| Details | File | 1 | 大陸紀檢組織運行揭密.doc |
|
| Details | File | 1 | wp-detecting-apt-activity-with-network-traffic-analysis.pdf |
|
| Details | File | 1 | cve-2012-1535-sep9-2012-doc-data-for.html |
|
| Details | File | 7 | dfds3.reg |
|
| Details | File | 2 | sysmonlog.exe |
|
| Details | File | 2 | page.jsp |
|
| Details | File | 1 | user.jsp |
|
| Details | File | 1 | 营救岗吉.doc |
|
| Details | File | 1 | sophosszappanosplugxmalwarefactoryversion6-rev3.pdf |
|
| Details | File | 2 | plugx_-_payload_extraction_march_2013_1.pdf |
|
| Details | File | 3 | tr-12-circl-plugx-analysis-v1.pdf |
|
| Details | File | 1 | c:\documents and settings\all users\sxs\bug.log |
|
| Details | File | 1 | c:\documents and settings\all users\sxs\hccutils.dll |
|
| Details | File | 1 | c:\documents and settings\all users\sxs\hkcmd.exe |
|
| Details | File | 4 | hccutils.dll |
|
| Details | File | 22 | word.doc |
|
| Details | File | 6 | hkcmd.exe |
|
| Details | File | 1 | dfr4.tmp |
|
| Details | File | 8 | c:\windows\system32\mswsock.dll |
|
| Details | File | 10 | c:\windows\system32\ws2_32.dll |
|
| Details | File | 23 | c:\windows\system32\kernel32.dll |
|
| Details | File | 1 | self-immolator.rtf |
|
| Details | File | 1 | sophosszappanosplugxrevisitedintroducingsmoaler-rev1.pdf |
|
| Details | File | 1 | c:\documents and settings\all users\application data\microsoft\windows\burn\dellxt.dll |
|
| Details | File | 1 | c:\documents and settings\all users\application data\microsoft\windows\liveupdata_mem\qvlooj_fra.dll |
|
| Details | File | 2 | dw20.dll |
|
| Details | File | 1 | 0bjtrd.dll |
|
| Details | File | 4 | 3.dll |
|
| Details | File | 1 | dellxt.dll |
|
| Details | File | 1 | mtjxm6_one.dll |
|
| Details | File | 1 | qvlooj_fra.dll |
|
| Details | File | 1 | exit.log |
|
| Details | File | 6 | 3.tmp |
|
| Details | File | 1 | 公民提名及提名委員會.doc |
|
| Details | File | 1 | njrat-backdoorlv-strings-apt.html |
|
| Details | File | 1 | tibetan.rtf |
|
| Details | File | 1 | c:\documents and settings\all users\application data\microsoft\windows\liveupdata_mem\n47eef.dll |
|
| Details | File | 1 | c:\documents and settings\all users\application data\microsoft\windows\liveupdata_mem\z6r2sv_one.dll |
|
| Details | File | 4 | 4.dll |
|
| Details | File | 2 | 4.tmp |
|
| Details | File | 1 | n47eef.dll |
|
| Details | File | 1 | z6r2sv_one.dll |
|
| Details | File | 3 | attachment.doc |
|
| Details | File | 1 | c:\documents and settings\all users\application data\8202u392325.log |
|
| Details | File | 1 | c:\documents and settings\all users\application data\8202u3923pi.db |
|
| Details | File | 1 | c:\documents and settings\all users\application data\sun orcal\java\jre\datas\sunjavaerrror.log |
|
| Details | File | 1 | c:\documents and settings\all users\application data\sun orcal\java\jre\updateerror_2.log |
|
| Details | File | 1 | c:\documents and settings\all users\application data\sun orcal\java\jre\updateerror_2tmp.log |
|
| Details | File | 1 | 8202u39232d.log |
|
| Details | File | 1 | 8202u39232e.db |
|
| Details | File | 1 | 8202u39232s.db |
|
| Details | File | 1 | len.txt |
|
| Details | File | 4 | start.txt |
|
| Details | File | 49 | error.log |
|
| Details | File | 1 | updateerror_2tmp.log |
|
| Details | File | 1 | updateerror_2.log |
|
| Details | File | 1 | sunjavaerrror.log |
|
| Details | File | 1 | 8202u392325.log |
|
| Details | File | 1 | 8202u3923pi.db |
|
| Details | File | 1 | judgment.doc |
|
| Details | File | 17 | resume.doc |
|
| Details | File | 1 | 个人简历.doc |
|
| Details | File | 1 | mundgod.doc |
|
| Details | File | 1 | c:\documents and settings\all users\application data\microsoft\windows\liveupdata_mem\cjwuon_one.dll |
|
| Details | File | 1 | c:\documents and settings\all users\application data\microsoft\windows\liveupdata_mem\lezoi1.dll |
|
| Details | File | 11 | b.dll |
|
| Details | File | 1 | b.tmp |
|
| Details | File | 1 | dat9.tmp |
|
| Details | File | 1 | lezoi1.dll |
|
| Details | File | 1 | cjwuon_one.dll |
|
| Details | File | 1 | sponsor.doc |
|
| Details | File | 1 | calling.doc |
|
| Details | File | 1 | c:\documents and settings\all users\application data\microsoft\windows\liveupdata_mem\gki33a.dll |
|
| Details | File | 1 | c:\documents and settings\all users\application data\microsoft\windows\liveupdata_mem\ojdc43_one.dll |
|
| Details | File | 1 | ojdc43_one.dll |
|
| Details | File | 1 | gki33a.dll |
|
| Details | File | 1 | jail.rtf |
|
| Details | File | 1 | c:\documents and settings\all users\application data\microsoft\windows\liveupdata_mem\hbesg1_one.dll |
|
| Details | File | 1 | c:\documents and settings\all users\application data\microsoft\windows\liveupdata_mem\kr8mzp.dll |
|
| Details | File | 30 | index.dat |
|
| Details | File | 1 | kr8mzp.dll |
|
| Details | File | 1 | hbesg1_one.dll |
|
| Details | File | 4 | program.doc |
|
| Details | File | 1 | 658c55d6f92b2e8ccccb82c6980ce2ab.txt |
|
| Details | File | 1 | insta11.exe |
|
| Details | File | 1 | install0.dat |
|
| Details | File | 1 | install1.dat |
|
| Details | File | 1 | install2.dat |
|
| Details | File | 1 | install3.dat |
|
| Details | File | 1 | install4.dat |
|
| Details | File | 1 | install5.dat |
|
| Details | File | 1 | kernel32.dat |
|
| Details | File | 1 | kernel64.dat |
|
| Details | File | 1 | c:\windows\temp\code c:\windows\temp\data c:\windows\temp\install0.dat |
|
| Details | File | 1 | c:\windows\temp\install3.dat |
|
| Details | File | 1 | c:\windows\temp\install4.dat |
|
| Details | File | 1 | c:\windows\temp\kernel32.dat |
|
| Details | File | 1 | c:\windows\temp\kernel64.dat |
|
| Details | File | 1 | c:\windows\temp\work.dat |
|
| Details | File | 2 | work.dat |
|
| Details | md5 | 1 | f19b49dc8cd7daa2c0a388ad043757a2 |
|
| Details | md5 | 1 | D0D2079E1AB0E93C68DA9C293918A376 |
|
| Details | md5 | 1 | 4B31A4C3A633A0ADB9DBB8A5125DDA85 |
|
| Details | md5 | 1 | F8CCCCAA018E9EC96BCC65F4A9E549B1 |
|
| Details | md5 | 1 | 658C55D6F92B2E8CCCCB82C6980CE2AB |
|
| Details | md5 | 1 | B5EC46322334D5712ACD386622EE0F04 |
|
| Details | md5 | 1 | 8BE76FCB0A2DA692CFD2DA0C85F2EC33 |
|
| Details | md5 | 1 | 9B41475A88D12183048A465FFD32EBF9 |
|
| Details | md5 | 1 | F0B821697949C713D9B17550A533ECFE |
|
| Details | md5 | 1 | EBBE175A6EB8DC91E986FF21D66BCD70 |
|
| Details | md5 | 1 | 6DB8AA8455DF96CBAED8803536217ECB |
|
| Details | md5 | 1 | FEA931812540035C9A4D0950D50DD103 |
|
| Details | md5 | 1 | BF4668C0A55903A0E4D5BA61D6B338CF |
|
| Details | md5 | 1 | AAED8F6D19F9617311B9E7630A5D214D |
|
| Details | md5 | 1 | 682A71EDB073760EA81241F7D701ED1D |
|
| Details | md5 | 1 | 59A14B490FE4BA650E31B67117302239 |
|
| Details | md5 | 1 | 51708AE7F107FBE8B1C1F679DAFABBF7 |
|
| Details | md5 | 1 | 539A1ADCC98ECEE099BF3B42A42E9099 |
|
| Details | md5 | 1 | 2A0BDC62EEB6ECF6783B954B20BE3DE9 |
|
| Details | md5 | 1 | 82644661F6639C9FCB021AD197B565F7 |
|
| Details | md5 | 1 | c4aefcb1c3366e0e93458809db28c118 |
|
| Details | md5 | 1 | 5d2a996e66369c93f9e0bdade6ac5299 |
|
| Details | md5 | 1 | 41ae059e71838e68b16b2019afc6dec5 |
|
| Details | md5 | 1 | d3160c603ab94a53feb18881a7917697 |
|
| Details | md5 | 1 | d7dd5cda909190c6c03db5e7f8afd721 |
|
| Details | md5 | 1 | f73a8b503bd7aa9849616af3fe37c942 |
|
| Details | md5 | 1 | 660709324acb88ef11f71782af28a1f0 |
|
| Details | md5 | 1 | e5ad512524b634f9eb4e2ab2f70531c8 |
|
| Details | md5 | 1 | 5ef49f70a2b16eaaff0dc31a0f69c52c |
|
| Details | md5 | 1 | c3c2d15604f02ba3688d5a35a7ef6531 |
|
| Details | md5 | 1 | 46ef9b0f1419e26f2f37d9d3495c499f |
|
| Details | md5 | 19 | d41d8cd98f00b204e9800998ecf8427e |
|
| Details | md5 | 1 | 2ff2d518313475a612f095dd863c8aea |
|
| Details | md5 | 1 | 8682e9826cfa736f78660fe388b2b21f |
|
| Details | md5 | 1 | a190aa9deabf549d1462ce058e1cc4a2 |
|
| Details | md5 | 1 | 23f2c3dbdb65c898a11e7f4ddc598a10 |
|
| Details | md5 | 1 | 9fcb203a2f62acfb56be80188960c2fe |
|
| Details | md5 | 1 | 80fe8c4a0e555769c719ada476d15e15 |
|
| Details | md5 | 1 | aaed8f6d19f9617311b9e7630a5d214d |
|
| Details | md5 | 1 | 6fd868e68037040c94215566852230ab |
|
| Details | md5 | 1 | f112d0caf2b49e99657d519eca8c1819 |
|
| Details | md5 | 1 | 14af2f439bce8a236295b0e28c59ddc8 |
|
| Details | md5 | 1 | 6DBBD689FC4DADE6953FD221473DF4F0 |
|
| Details | md5 | 1 | 8e187ae152c48099f715af442339c340 |
|
| Details | md5 | 1 | 7fc56270e7a70fa81a5935b72eacbe29 |
|
| Details | md5 | 1 | d9e3b52be43b06bf8004a4a2819da311 |
|
| Details | md5 | 1 | dc4052397258ae1ffd61c7637a29acc5 |
|
| Details | md5 | 1 | 4b319c6a7e6f30d16d8ca74bf6d4b495 |
|
| Details | md5 | 1 | 588d3316d4bbfdbb25658d436f06ed96 |
|
| Details | md5 | 1 | 427c95e54c4d6062dd5cedf4cb12e348 |
|
| Details | md5 | 1 | 150d788d58a7b9c632cf20fecfabfab5 |
|
| Details | md5 | 1 | e743b2c32ff43743046b0ce560abff25 |
|
| Details | md5 | 1 | c1d3f8cc1f46abaf2231637b5e67414a |
|
| Details | md5 | 1 | db8700492269d59072aad57f54848fda |
|
| Details | md5 | 1 | 6d2c12085f0018daeb9c1a53e53fd4d1 |
|
| Details | md5 | 1 | 60aea6d6f27cfb91f1461755e2283ffc |
|
| Details | md5 | 1 | ba1e3b06c990e0c90e3a52ac7b4a42d4 |
|
| Details | md5 | 1 | 2a4451d9989782f180df790d01f2997a |
|
| Details | md5 | 1 | 8a15ca5527530c553e285805ca1dce2e |
|
| Details | md5 | 1 | 99a7f4ec2ea846ae5cbb0257cc0a8e20 |
|
| Details | md5 | 1 | 064ae9b451f0503982842c9f41a58053 |
|
| Details | md5 | 1 | a453bb1f1b5bb3f4810e38290190516c |
|
| Details | md5 | 1 | 884ca4afc294779d168158496485ec3a |
|
| Details | md5 | 1 | 36e91eac9712bb3f3e1739a915b4b5b0 |
|
| Details | md5 | 1 | 354d4b710a3f9b570471d174c38ce66a |
|
| Details | md5 | 1 | 17b9d6735a39576a0a598617954d4cdb |
|
| Details | md5 | 1 | 1164cf0c769f1656c235ba108874a9d6 |
|
| Details | md5 | 1 | dca2f9c264b782cf186a3eed5077b043 |
|
| Details | md5 | 1 | a529d1f0fa53b4326808288b2251c891 |
|
| Details | md5 | 1 | c9ed72372fb6fe7c928c39f2672a52bf |
|
| Details | md5 | 1 | 58159b40b65d3e5446edd7e1d617c66f |
|
| Details | md5 | 1 | d1a75058f831f35134ad218eae5ad548 |
|
| Details | md5 | 1 | 32f3ea95f8b39b1003ed138864205860 |
|
| Details | md5 | 1 | 25dd1a04d8d084581effea2aeb2e0011 |
|
| Details | md5 | 1 | 75c73813b6a5dad200da4837c207a549 |
|
| Details | md5 | 1 | 1e22098b5fb61118a48daa780755e8cb |
|
| Details | md5 | 1 | BD85FE0A7C5D15ADB57FB6B01043F4B6 |
|
| Details | md5 | 1 | ec1c1b989ae29e84f4652b1476076810 |
|
| Details | md5 | 1 | e38ad8e5bc99862fc0d36d57f9bda656 |
|
| Details | md5 | 1 | 25e8bc41a4e59df2c16b4ce4eda85566 |
|
| Details | md5 | 1 | 1325ec00149cd2dd9a2982769f1fa12a |
|
| Details | md5 | 1 | d29387fc9ed9dda50d5917830e237bb0 |
|
| Details | md5 | 1 | 25472b982a9041f3e9f585226694ae23 |
|
| Details | md5 | 1 | 968ef270dafb0e602d0e05e6ad62a2d6 |
|
| Details | md5 | 1 | d6d60a7689f6f73d1ceb589df97dd868 |
|
| Details | md5 | 1 | 582c61c67df96c561363e14bd080093b |
|
| Details | md5 | 1 | b502500ba5198135086a25c83722f261 |
|
| Details | md5 | 1 | 299ab2c8a3db4a57e64d1792060e27e8 |
|
| Details | md5 | 1 | 7e4d72e2f92298c5c29ef0db8b34fd4a |
|
| Details | md5 | 1 | 5213596d2d17a01444767cfece9060e2 |
|
| Details | md5 | 1 | b01bf5e4dc9c218b2c1a7b54fd1a9eaf |
|
| Details | md5 | 1 | d7560612e4634ba498720bbf909592d9 |
|
| Details | md5 | 1 | 91a28843d260c8314a69f2d6b29fa3a8 |
|
| Details | md5 | 1 | ec52f53a553d1eaac48b26c8fab6a698 |
|
| Details | md5 | 1 | ceb731fbb083edf3d41d660d097ff1a9 |
|
| Details | md5 | 1 | 8325e4c8bab8455e924303dc2a9a8c04 |
|
| Details | IPv4 | 1 | 202.85.136.181 |
|
| Details | IPv4 | 1 | 50.117.115.89 |
|
| Details | IPv4 | 1 | 58.154.26.31 |
|
| Details | IPv4 | 1 | 59.123.56.154 |
|
| Details | IPv4 | 1 | 59.180.7.43 |
|
| Details | IPv4 | 2 | 61.178.77.111 |
|
| Details | IPv4 | 1 | 164.100.25.26 |
|
| Details | IPv4 | 1 | 61.234.4.233 |
|
| Details | IPv4 | 1 | 61.234.4.239 |
|
| Details | IPv4 | 1 | 65.19.141.203 |
|
| Details | IPv4 | 1 | 65.25.15.26 |
|
| Details | IPv4 | 1 | 164.100.25.39 |
|
| Details | IPv4 | 1 | 164.100.56.21 |
|
| Details | IPv4 | 1 | 164.100.64.36 |
|
| Details | IPv4 | 1 | 222.77.70.233 |
|
| Details | IPv4 | 2 | 172.16.253.130 |
|
| Details | IPv4 | 1 | 61.222.137.66 |
|
| Details | IPv4 | 2 | 113.10.246.46 |
|
| Details | IPv4 | 2 | 113.10.246.0 |
|
| Details | IPv4 | 2 | 113.10.246.255 |
|
| Details | IPv4 | 2 | 172.16.253.132 |
|
| Details | IPv4 | 1 | 111.174.41.205 |
|
| Details | IPv4 | 1 | 69.46.86.194 |
|
| Details | IPv4 | 1 | 59.173.24.14 |
|
| Details | IPv4 | 1 | 111.172.61.245 |
|
| Details | IPv4 | 1 | 111.173.194.8 |
|
| Details | IPv4 | 1 | 111.173.195.28 |
|
| Details | IPv4 | 1 | 111.174.39.148 |
|
| Details | IPv4 | 1 | 111.174.105.69 |
|
| Details | IPv4 | 1 | 202.130.112.237 |
|
| Details | IPv4 | 1 | 192.200.99.194 |
|
| Details | IPv4 | 4 | 172.16.253.129 |
|
| Details | IPv4 | 619 | 0.0.0.0 |
|
| Details | IPv4 | 1 | 1.234.3.186 |
|
| Details | IPv4 | 1 | 59.188.73.63 |
|
| Details | IPv4 | 1 | 61.152.93.40 |
|
| Details | IPv4 | 1 | 66.79.164.110 |
|
| Details | IPv4 | 1 | 111.68.2.34 |
|
| Details | IPv4 | 1 | 112.121.164.106 |
|
| Details | IPv4 | 1 | 117.71.149.130 |
|
| Details | IPv4 | 1 | 117.71.168.222 |
|
| Details | IPv4 | 1 | 117.71.197.145 |
|
| Details | IPv4 | 1 | 117.71.203.145 |
|
| Details | IPv4 | 1 | 117.71.207.107 |
|
| Details | IPv4 | 1 | 122.210.123.58 |
|
| Details | IPv4 | 1 | 123.101.134.12 |
|
| Details | IPv4 | 1 | 124.113.190.134 |
|
| Details | IPv4 | 1 | 124.113.194.85 |
|
| Details | IPv4 | 1 | 205.209.161.133 |
|
| Details | IPv4 | 1 | 220.179.124.85 |
|
| Details | Url | 1 | http://www.symantec.com/security_response/writeup.jsp?docid=2013 |
|
| Details | Url | 4 | http://windowsupdate.microsoft.com |
|
| Details | Url | 1 | http://www.trendmicro.com/cloud-content/us/pdfs/security-intelligence/white-papers/wp-detecting-apt-activity-with-network-traffic-analysis.pdf |
|
| Details | Url | 1 | http://contagiodump.blogspot.com/2012/10/cve-2012-1535-sep9-2012-doc-data-for.html |
|
| Details | Url | 1 | http://61.222.137.66:443/page.jsp?tq=pcudeb1161b9gf318e |
|
| Details | Url | 1 | http://61.222.137.66:80/user.jsp?xg=arifuq1161b9gf318e |
|
| Details | Url | 1 | http://nakedsecurity.sophos.com/2013/02/27/targeted-attack-nvidia-digital-signature |
|
| Details | Url | 1 | http://sophosnews.files.wordpress.com/2013/05/sophosszappanosplugxmalwarefactoryversion6-rev3.pdf |
|
| Details | Url | 2 | http://www.contextis.com/files/plugx_-_payload_extraction_march_2013_1.pdf |
|
| Details | Url | 1 | https://www.circl.lu/files/tr-12/tr-12-circl-plugx-analysis-v1.pdf |
|
| Details | Url | 1 | https://citizenlab.org/2013 |
|
| Details | Url | 1 | http://sophosnews.files.wordpress.com/2013/07/sophosszappanosplugxrevisitedintroducingsmoaler-rev1.pdf |
|
| Details | Url | 1 | http://contagioexchange.blogspot.com/2013/09/njrat-backdoorlv-strings-apt.html |
|
| Details | Url | 5 | http://www.godaddy.com |