MAR-10265965-2.v1 – North Korean Trojan: SLICKSHOES | CISA
Tags
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Software - T1592.002 Vulnerabilities - T1588.006 |
Common Information
| Type | Value |
|---|---|
| UUID | 7fa3b983-be8a-4114-8422-7cb5c115e5d9 |
| Fingerprint | d61c9dc34f709bcb |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Feb. 14, 2020, midnight |
| Added to db | Sept. 26, 2022, 9:31 a.m. |
| Last updated | Dec. 21, 2024, 3:26 a.m. |
| Headline | Malware Analysis Report (AR20–045B) |
| Title | MAR-10265965-2.v1 – North Korean Trojan: SLICKSHOES | CISA |
| Detected Hints/Tags/Attributes | 40/2/20 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://www.us-cert.gov/ncas/analysis-reports/ar20-045b |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 154 | www.us-cert.gov |
|
| Details | Domain | 26 | us-cert.gov |
|
| Details | Domain | 18 | dhs.sgov.gov |
|
| Details | Domain | 18 | dhs.ic.gov |
|
| Details | Domain | 84 | malware.us-cert.gov |
|
| Details | Domain | 84 | ftp.malware.us-cert.gov |
|
| Details | 17 | ncciccustomerservice@us-cert.gov |
||
| Details | 18 | us-cert@dhs.sgov.gov |
||
| Details | 18 | us-cert@dhs.ic.gov |
||
| Details | 16 | soc@us-cert.gov |
||
| Details | 84 | submit@malware.us-cert.gov |
||
| Details | File | 1 | c:\windows\web\taskenc.exe |
|
| Details | md5 | 1 | B57DB76CC1C0175C4F18EA059D9E2AB2 |
|
| Details | sha256 | 2 | fdb87add07d3459c43cfa88744656f6c00effa6b7ec92cb7c8b911d233aeb4ac |
|
| Details | sha256 | 1 | 7250ccf4fad4d83d087a03d0dd67d1c00bf6cb8e7fa718140507a9d5ffa50b54 |
|
| Details | IPv4 | 1 | 188.165.37.168 |
|
| Details | Url | 42 | http://www.us-cert.gov/tlp. |
|
| Details | Url | 21 | https://www.us-cert.gov/hiddencobra. |
|
| Details | Url | 17 | https://us-cert.gov/forms/feedback |
|
| Details | Url | 84 | https://malware.us-cert.gov |