Malware-Traffic-Analysis.net - 2018-12-19 - Malspam pushing the MyDoom worm is still a thing
Tags
| attack-pattern: | Data Ip Addresses - T1590.005 Malware - T1587.001 Malware - T1588.001 |
Common Information
| Type | Value |
|---|---|
| UUID | 9c48c39c-5df3-4900-8fad-89773baa97f6 |
| Fingerprint | e9953958e6a084d3 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Dec. 19, 2018, midnight |
| Added to db | Sept. 26, 2022, 9:31 a.m. |
| Last updated | Nov. 8, 2024, 3:42 a.m. |
| Headline | UNKNOWN |
| Title | Malware-Traffic-Analysis.net - 2018-12-19 - Malspam pushing the MyDoom worm is still a thing |
| Detected Hints/Tags/Attributes | 16/1/59 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://www.malware-traffic-analysis.net/2018/12/19/index.html |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | IPv4 | 1 | 218.16.100.42 |
|
| Details | IPv4 | 1 | 113.91.55.46 |
|
| Details | IPv4 | 1 | 113.91.55.72 |
|
| Details | IPv4 | 1 | 95.56.208.123 |
|
| Details | IPv4 | 1 | 14.154.204.205 |
|
| Details | Domain | 1 | 2018-12-17-thru-2018-12-20-mydoom-malspam-5-email-examples.zip |
|
| Details | Domain | 1 | 2018-12-19-mydoom-infection-traffic.pcap.zip |
|
| Details | Domain | 1 | thru-2018-12-19-mydoom-zip-attachments-and-extracted-exe-files.zip |
|
| Details | Domain | 1 | 3335c2a089421bd1c19cff225d04f0c3d1f9192a41cd257ad93e608199b4d849.zip |
|
| Details | Domain | 1 | 442c89956a623c10ea5e525dc85d8f8827c973569640ca266cab0a0f6aba0070.zip |
|
| Details | Domain | 1 | 57b58feb49bd6de828371fc52c0e300a37cc7365720e1f961265f47fa5abeea8.zip |
|
| Details | Domain | 1 | 78acb6f8d713e20f17f4bf6ca20e919845dfa1d8252487aa37958062b4fd146e.zip |
|
| Details | Domain | 1 | e3e809cd45c807ac832535a338003248739fa09ff9bcfa12a0acb7b1217e80f6.zip |
|
| Details | Domain | 1 | browsefox.com |
|
| Details | Domain | 1 | yhglobal.com |
|
| Details | Domain | 1 | adobee.com |
|
| Details | Domain | 22 | mozilla.org |
|
| Details | Domain | 1 | vanguardlogistics.com |
|
| Details | Domain | 1 | vyach-zaxaroff.narod.ru |
|
| Details | Domain | 6 | message.zip |
|
| Details | Domain | 19 | document.zip |
|
| Details | 1 | james@browsefox.com |
||
| Details | 1 | john@yhglobal.com |
||
| Details | 1 | flash@adobee.com |
||
| Details | 1 | tochka@vyach-zaxaroff.narod.ru |
||
| Details | 1 | dong.xiao@vanguardlogistics.com |
||
| Details | File | 1 | 2018-12-17-thru-2018-12-20-mydoom-malspam-5-email-examples.zip |
|
| Details | File | 1 | 2018-12-17-malspam-0334-utc.eml |
|
| Details | File | 1 | 2018-12-17-malspam-2019-utc.eml |
|
| Details | File | 1 | 2018-12-18-malspam-1922-utc.eml |
|
| Details | File | 1 | 2018-12-19-malspam-1454-utc.eml |
|
| Details | File | 1 | 2018-12-20-malspam-0405-utc.eml |
|
| Details | File | 38 | pcap.zip |
|
| Details | File | 1 | 2018-12-17-thru-2018-12-19-mydoom-zip-attachments-and-extracted-exe-files.zip |
|
| Details | File | 1 | 17c7b0ccdf73b05a070443659715c9ae136aeda89f931e05cc80a8a05fbfea85.exe |
|
| Details | File | 1 | 2ccf2b595b2c85fc17dafdf7ec3e0133b897ca2eb84da62189af023c2dc8a430.exe |
|
| Details | File | 1 | 3335c2a089421bd1c19cff225d04f0c3d1f9192a41cd257ad93e608199b4d849.zip |
|
| Details | File | 1 | 442c89956a623c10ea5e525dc85d8f8827c973569640ca266cab0a0f6aba0070.zip |
|
| Details | File | 1 | 57b58feb49bd6de828371fc52c0e300a37cc7365720e1f961265f47fa5abeea8.zip |
|
| Details | File | 1 | 78acb6f8d713e20f17f4bf6ca20e919845dfa1d8252487aa37958062b4fd146e.zip |
|
| Details | File | 1 | 868289da1cf8aba7c2e9c38028accdfd989ef59cde9fc733543dff9fc4ce5826.exe |
|
| Details | File | 1 | ab870f7f11ab105d92f2a29e8581992ae506bbc9e19e9c71e873b0c54639d8ad.exe |
|
| Details | File | 1 | e3e809cd45c807ac832535a338003248739fa09ff9bcfa12a0acb7b1217e80f6.zip |
|
| Details | File | 1 | ee004696baa06ae797449ac5dff683ddd3373d9fe38a2cf69c174fbd873673e8.exe |
|
| Details | File | 6 | message.zip |
|
| Details | File | 16 | document.zip |
|
| Details | File | 2 | message.bat |
|
| Details | File | 5 | message.exe |
|
| Details | File | 12 | document.htm |
|
| Details | sha256 | 1 | 17c7b0ccdf73b05a070443659715c9ae136aeda89f931e05cc80a8a05fbfea85 |
|
| Details | sha256 | 1 | 2ccf2b595b2c85fc17dafdf7ec3e0133b897ca2eb84da62189af023c2dc8a430 |
|
| Details | sha256 | 1 | 3335c2a089421bd1c19cff225d04f0c3d1f9192a41cd257ad93e608199b4d849 |
|
| Details | sha256 | 1 | 442c89956a623c10ea5e525dc85d8f8827c973569640ca266cab0a0f6aba0070 |
|
| Details | sha256 | 1 | 57b58feb49bd6de828371fc52c0e300a37cc7365720e1f961265f47fa5abeea8 |
|
| Details | sha256 | 1 | 78acb6f8d713e20f17f4bf6ca20e919845dfa1d8252487aa37958062b4fd146e |
|
| Details | sha256 | 1 | 868289da1cf8aba7c2e9c38028accdfd989ef59cde9fc733543dff9fc4ce5826 |
|
| Details | sha256 | 1 | ab870f7f11ab105d92f2a29e8581992ae506bbc9e19e9c71e873b0c54639d8ad |
|
| Details | sha256 | 1 | e3e809cd45c807ac832535a338003248739fa09ff9bcfa12a0acb7b1217e80f6 |
|
| Details | sha256 | 1 | ee004696baa06ae797449ac5dff683ddd3373d9fe38a2cf69c174fbd873673e8 |