“CuteBoi” Detected Preparing a Large-Scale Crypto Mining Campaign on NPM Users
Tags
| attack-pattern: | Domains - T1583.001 Domains - T1584.001 Email Addresses - T1589.002 Server - T1583.004 Server - T1584.004 Tool - T1588.002 Connection Proxy - T1090 |
Common Information
| Type | Value |
|---|---|
| UUID | 847d2333-d85a-49b8-8349-c7dc5cb26673 |
| Fingerprint | 380025aa047264a |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | July 6, 2022, 11 a.m. |
| Added to db | Oct. 22, 2023, 9:47 p.m. |
| Last updated | Oct. 17, 2024, 9:45 p.m. |
| Headline | “CuteBoi” Detected Preparing a Large-Scale Crypto Mining Campaign on NPM Users |
| Title | “CuteBoi” Detected Preparing a Large-Scale Crypto Mining Campaign on NPM Users |
| Detected Hints/Tags/Attributes | 22/1/15 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 82 | ✔ | Checkmarx | https://checkmarx.com/feed/ | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 2 | cuteboi.info |
|
| Details | Domain | 2 | mail.tm |
|
| Details | Domain | 1 | knowledgemd.com |
|
| Details | Domain | 1 | scpulse.com |
|
| Details | Domain | 1 | idots.cf |
|
| Details | Domain | 1 | fisch.ml |
|
| Details | Domain | 1 | nordalts.ml |
|
| Details | File | 2 | cuteboi.inf |
|
| Details | md5 | 1 | 105704d5455bb188ad4985d5e593ff6c |
|
| Details | md5 | 1 | d3e4daa6c4d5ec23f322a19dae173bd9 |
|
| Details | sha1 | 1 | e22a630f3d3c7a78dbb47f44343b49059f98a251 |
|
| Details | sha1 | 1 | c72dce5b747261a658a46d977a0b37ca628571f2 |
|
| Details | sha256 | 1 | b6de08712fedfeb4404f8a8de3c14a241978acb116dc42f4c711766f14044c36 |
|
| Details | sha256 | 1 | 9c10c46476fe17167237c99b66b18d875ed95db9cde1a8e4d5f43f83e0daff26 |
|
| Details | IPv4 | 1 | 130.162.52.80 |