Infostealer Being Distributed via YouTube - ASEC BLOG
Tags
| attack-pattern: | Data Credentials - T1589.001 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 |
Common Information
| Type | Value |
|---|---|
| UUID | 9d759b5b-8cf4-4c97-9772-637f09338bc0 |
| Fingerprint | a4b65a534ff7a587 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | March 11, 2022, 9:11 a.m. |
| Added to db | Sept. 11, 2022, 4:59 p.m. |
| Last updated | Nov. 17, 2024, 6:53 p.m. |
| Headline | Infostealer Being Distributed via YouTube |
| Title | Infostealer Being Distributed via YouTube - ASEC BLOG |
| Detected Hints/Tags/Attributes | 22/1/10 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://asec.ahnlab.com/en/32499/ |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 24 | anonfiles.com |
|
| Details | Domain | 1 | cdn-149.anonfiles.com |
|
| Details | File | 1 | cheat.rar |
|
| Details | File | 57 | installer.exe |
|
| Details | File | 1 | ay.c4 |
|
| Details | md5 | 3 | 6649fec7c656c6ab0ae0a27daf3ebb8e |
|
| Details | Url | 2 | https://anonfiles.com/j0b03ckexf |
|
| Details | Url | 1 | https://cdn-149.anonfiles.com/j0b03ckexf/bfb807d9-1646204724/pluto |
|
| Details | Url | 3 | https://discordapp.com/api/webhooks/947181971019292714/gxe5t4zqqf0ygohubsdhtkfxb0ut9ai71izmofvsdiaznalhyvqp0h45xcss-8w7kqco |
|
| Details | Url | 3 | https://discord.com/api/webhooks/940299131098890301/ru4t0d4gnaym0bzkammkqrwgborfhijuj5lj20gd-s2ycix9lxcbyb6yz6zhua5b-h42 |