Distribution of Redline Stealer Disguised as Software Crack - ASEC BLOG
Tags
| attack-pattern: | Data Credentials - T1589.001 Malicious File - T1204.002 Malware - T1587.001 Malware - T1588.001 Software - T1592.002 |
Common Information
| Type | Value |
|---|---|
| UUID | 79353a41-29c2-4379-928e-a594543797ac |
| Fingerprint | ad209b2989f73300 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Jan. 3, 2022, 3:50 p.m. |
| Added to db | Sept. 11, 2022, 4:59 p.m. |
| Last updated | Oct. 9, 2024, 4:18 a.m. |
| Headline | Distribution of Redline Stealer Disguised as Software Crack |
| Title | Distribution of Redline Stealer Disguised as Software Crack - ASEC BLOG |
| Detected Hints/Tags/Attributes | 26/1/11 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://asec.ahnlab.com/en/30445/ |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 2 | topkeygen.com |
|
| Details | Domain | 2 | cio.exe.com |
|
| Details | Domain | 2 | orrore.exe.com |
|
| Details | Domain | 2 | certe.exe.com |
|
| Details | Domain | 4 | exe.com |
|
| Details | File | 1 | waves_60e87ffe7200b.zip |
|
| Details | File | 2 | cio.exe |
|
| Details | File | 2 | orrore.exe |
|
| Details | File | 2 | certe.exe |
|
| Details | File | 25 | findstr.exe |
|
| Details | IPv4 | 2 | 18.188.253.6 |