Mokes and Buerak distributed under the guise of security certificates
Tags
maec-delivery-vectors: | Watering Hole |
attack-pattern: | Malware - T1587.001 Malware - T1588.001 Software - T1592.002 |
Common Information
Type | Value |
---|---|
UUID | 7277f7a8-c9d1-4437-9570-d7b8aa29f63f |
Fingerprint | ab37ad519d3522d2 |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | March 5, 2020, 10 a.m. |
Added to db | Sept. 26, 2022, 9:30 a.m. |
Last updated | Dec. 20, 2024, 4:18 p.m. |
Headline | Mokes and Buerak distributed under the guise of security certificates |
Title | Mokes and Buerak distributed under the guise of security certificates |
Detected Hints/Tags/Attributes | 21/2/14 |
Source URLs
URL Provider
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 1 | ldfidfa.pw |
|
Details | Domain | 1 | kkjjhhdff.site |
|
Details | Domain | 1 | oderstrg.site |
|
Details | File | 43 | jquery.js |
|
Details | File | 1 | chrome.html |
|
Details | File | 7 | 2020.exe |
|
Details | md5 | 1 | B3290148681F8218ECB80CA430F9FDBA |
|
Details | md5 | 1 | CE1931C2EB82B91ADB5A9B9B1064B09F |
|
Details | md5 | 1 | 094ADE4F1BC82D09AD4E1C05513F686D |
|
Details | md5 | 1 | F869430B3658A2A112FC85A1246F3F9D |
|
Details | md5 | 1 | 5FB9CB00F19EAFBF578AF693767A8754 |
|
Details | md5 | 1 | 47C5782560D2FE3B80E0596F3FBA84D3 |
|
Details | IPv4 | 1 | 47.245.30.255 |
|
Details | Url | 1 | https://ldfidfa.pw//chrome.html |