ASEC Weekly Malware Statistics (September 20th, 2021 - September 26th, 2021) - ASEC BLOG
Tags
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Keylogging - T1056.001 Keylogging - T1417.001 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Server - T1583.004 Server - T1584.004 Tool - T1588.002 Program Download |
Common Information
| Type | Value |
|---|---|
| UUID | 8c04a3d4-8b8c-4da1-ba5f-04415afbf37b |
| Fingerprint | ad10b9e105fb07b1 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Oct. 5, 2021, 11:18 a.m. |
| Added to db | Sept. 11, 2022, 4:59 p.m. |
| Last updated | Nov. 17, 2024, 11:40 p.m. |
| Headline | ASEC Weekly Malware Statistics (September 20th, 2021 – September 26th, 2021) |
| Title | ASEC Weekly Malware Statistics (September 20th, 2021 - September 26th, 2021) - ASEC BLOG |
| Detected Hints/Tags/Attributes | 38/2/110 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://asec.ahnlab.com/en/27387/ |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | cleaner-partners.biz |
|
| Details | Domain | 1 | cleaner-partners.ltd |
|
| Details | Domain | 1 | smtp.northbey-medical.com |
|
| Details | Domain | 1 | northbey-medical.com |
|
| Details | Domain | 1 | mail.priserveinfra.com |
|
| Details | Domain | 1 | priserveinfra.com |
|
| Details | Domain | 1 | apolloscreens.com |
|
| Details | Domain | 155 | yandex.com |
|
| Details | Domain | 3 | www.gentciu.com |
|
| Details | Domain | 3 | www.bulukx.com |
|
| Details | Domain | 1 | www.bandiu.xyz |
|
| Details | Domain | 2 | www.ranbix.com |
|
| Details | Domain | 1 | www.tracks-clicks.com |
|
| Details | Domain | 2 | www.probinns.com |
|
| Details | Domain | 3 | www.cablinqee.com |
|
| Details | Domain | 5 | www.norllix.com |
|
| Details | Domain | 1 | xokjtn31.top |
|
| Details | Domain | 1 | morqjr03.top |
|
| Details | Domain | 1 | diayco04.top |
|
| Details | Domain | 1 | duoohr71.top |
|
| Details | Domain | 1 | morfev07.top |
|
| Details | Domain | 1 | cazpfo10.top |
|
| Details | Domain | 1 | xokqny13.top |
|
| Details | Domain | 1 | morlom01.top |
|
| Details | Domain | 1 | diavoq01.top |
|
| Details | Domain | 1 | xokyet77.top |
|
| Details | Domain | 1 | mordyf07.top |
|
| Details | Domain | 1 | diawrg10.top |
|
| Details | Domain | 1 | bahnf34.top |
|
| Details | Domain | 1 | morwhy03.top |
|
| Details | Domain | 1 | akrvt04.top |
|
| Details | Domain | 3 | mail.faks-allied-health.com |
|
| Details | Domain | 2 | faks-allied-health.com |
|
| Details | Domain | 1 | smtp.hostinger.mx |
|
| Details | Domain | 1 | lar.com.mx |
|
| Details | Domain | 1 | smtp.aruscomext.com |
|
| Details | Domain | 1 | aruscomext.com |
|
| Details | 1 | tom@northbey-medical.com |
||
| Details | 1 | operations@priserveinfra.com |
||
| Details | 1 | ssharma@apolloscreens.com |
||
| Details | 1 | morebillions08@yandex.com |
||
| Details | 2 | info@faks-allied-health.com |
||
| Details | 2 | wealthmyson@yandex.com |
||
| Details | 1 | luis@lar.com.mx |
||
| Details | 2 | saleseuropower@yandex.com |
||
| Details | 1 | sales@aruscomext.com |
||
| Details | File | 1 | purchase_order_sept.exe |
|
| Details | File | 8 | pl.exe |
|
| Details | File | 3 | shipping_documents.exe |
|
| Details | File | 3 | bank_details.exe |
|
| Details | File | 48 | documents.exe |
|
| Details | File | 1 | purchase_order_no_7839.exe |
|
| Details | File | 10 | purchase_order.exe |
|
| Details | File | 15 | po.exe |
|
| Details | File | 1 | 21090351_pdf.exe |
|
| Details | File | 1 | po_4500151298.exe |
|
| Details | File | 1 | 9661051.exe |
|
| Details | File | 1 | po_166737.pdf |
|
| Details | File | 1 | po44938.exe |
|
| Details | File | 1 | swift_6408372.exe |
|
| Details | File | 30 | doc.exe |
|
| Details | File | 47 | order.exe |
|
| Details | File | 1 | order____pdf.exe |
|
| Details | File | 1 | bankası.pdf |
|
| Details | File | 1 | estimate00338383923.exe |
|
| Details | File | 95 | pdf.exe |
|
| Details | File | 2 | price_request_quotation.exe |
|
| Details | File | 1 | swift_transfer_103_0034ott21000123_8238174530.pdf |
|
| Details | File | 1 | payment_proof_pdf.exe |
|
| Details | File | 1 | documents_pdf__________________________________.exe |
|
| Details | File | 1 | envío-pdf___.exe |
|
| Details | File | 1 | quotation_pdf______________.exe |
|
| Details | File | 1 | 001232021.exe |
|
| Details | File | 1 | quotation_-_urgent.exe |
|
| Details | File | 3 | statement_of_account.exe |
|
| Details | File | 2 | quote_price_request.exe |
|
| Details | File | 3 | specifications.exe |
|
| Details | File | 1 | ending.exe |
|
| Details | File | 1 | urgent_quote.exe |
|
| Details | File | 3 | compra.exe |
|
| Details | File | 1 | _sample_designs.pdf |
|
| Details | File | 1 | pedido_de_productos.exe |
|
| Details | File | 1 | new_order_re_po88224.pdf |
|
| Details | File | 1 | rfp-s-0066.exe |
|
| Details | File | 1260 | explorer.exe |
|
| Details | File | 7 | www.cab |
|
| Details | File | 1206 | index.php |
|
| Details | File | 98 | download.php |
|
| Details | File | 17 | lv.exe |
|
| Details | File | 17 | setup_x86_x64_install.exe |
|
| Details | File | 208 | setup.exe |
|
| Details | File | 11 | 9.exe |
|
| Details | File | 50 | 3.exe |
|
| Details | File | 156 | 1.exe |
|
| Details | File | 108 | 0.exe |
|
| Details | File | 1 | 92121pdf.exe |
|
| Details | File | 1 | proforma_invoice_098756.exe |
|
| Details | File | 1 | abonof2201.exe |
|
| Details | File | 1 | quotation_-scan001_no-_9300340731.doc |
|
| Details | File | 1 | po09858.exe |
|
| Details | File | 4 | new_order.exe |
|
| Details | File | 1 | bank_in_slip.exe |
|
| Details | Url | 2 | http://www.gentciu.com/ajki |
|
| Details | Url | 2 | http://www.bulukx.com/ssee |
|
| Details | Url | 1 | http://www.bandiu.xyz/h2m4 |
|
| Details | Url | 1 | http://www.ranbix.com/noha |
|
| Details | Url | 1 | http://www.tracks-clicks.com/gjeh |
|
| Details | Url | 1 | http://www.probinns.com/9gdg |
|
| Details | Url | 1 | http://www.cablinqee.com/tows |
|
| Details | Url | 1 | http://www.norllix.com/etaf |