東京五輪に関係する日本語のファイル名を持つマルウェア(ワイパー)の解析 | 調査研究/ブログ | 三井物産セキュアディレクション株式会社
Tags
Common Information
| Type | Value |
|---|---|
| UUID | 9b90f775-2692-4cdf-badd-bd2164cfac0e |
| Fingerprint | 59f5b0a5ce7fad52 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | July 21, 2021, midnight |
| Added to db | Sept. 11, 2022, 12:33 p.m. |
| Last updated | Nov. 17, 2024, 5:58 p.m. |
| Headline | 東京五輪に関係する日本語のファイル名を持つマルウェア(ワイパー)の解析 |
| Title | 東京五輪に関係する日本語のファイル名を持つマルウェア(ワイパー)の解析 | 調査研究/ブログ | 三井物産セキュアディレクション株式会社 |
| Detected Hints/Tags/Attributes | 2/0/45 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://www.mbsd.jp/research/20210721/blog/ |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | File | 1 | 東京オリンピック開催に伴うサイバー攻撃等発生に関する被害報告について.exe |
|
| Details | File | 71 | wireshark.exe |
|
| Details | File | 1 | apatedns.exe |
|
| Details | File | 30 | autoruns.exe |
|
| Details | File | 2 | bindiff.exe |
|
| Details | File | 17 | idaq.exe |
|
| Details | File | 16 | idaq64.exe |
|
| Details | File | 74 | procmon.exe |
|
| Details | File | 23 | x64dbg.exe |
|
| Details | File | 28 | x32dbg.exe |
|
| Details | File | 40 | ollydbg.exe |
|
| Details | File | 11 | immunitydebugger.exe |
|
| Details | File | 44 | vboxtray.exe |
|
| Details | File | 42 | vboxservice.exe |
|
| Details | File | 128 | msedge.exe |
|
| Details | File | 4 | virtualbox.exe |
|
| Details | File | 44 | javaw.exe |
|
| Details | File | 5 | x96dbg.exe |
|
| Details | File | 5 | idaw.exe |
|
| Details | File | 35 | windbg.exe |
|
| Details | File | 2 | dnspy.exe |
|
| Details | File | 2 | hxd.exe |
|
| Details | File | 2 | scylla_x64.exe |
|
| Details | File | 1 | scylla_x86.exe |
|
| Details | File | 22 | regmon.exe |
|
| Details | File | 64 | procexp.exe |
|
| Details | File | 40 | procexp64.exe |
|
| Details | File | 29 | tcpview.exe |
|
| Details | File | 2 | smsniff.exe |
|
| Details | File | 4 | fakenet.exe |
|
| Details | File | 19 | netmon.exe |
|
| Details | File | 9 | peid.exe |
|
| Details | File | 17 | lordpe.exe |
|
| Details | File | 1 | pe-bear.exe |
|
| Details | File | 1 | ppee.exe |
|
| Details | File | 4 | die.exe |
|
| Details | File | 1 | diel.exe |
|
| Details | File | 2 | pexplorer.exe |
|
| Details | File | 1 | depends.exe |
|
| Details | File | 11 | resourcehacker.exe |
|
| Details | File | 1 | filealyzer2.exe |
|
| Details | File | 56 | processhacker.exe |
|
| Details | File | 1 | regshot-x64-unicode.exe |
|
| Details | File | 1 | 最後に以下のコマンドによりcmd.exe |
|
| Details | sha256 | 3 | fb80dab592c5b2a1dcaaf69981c6d4ee7dbf6c1f25247e2ab648d4d0dc115a97 |