OffensiveWare: A New Malware-as-a-Service Platform Takes a Fitting Label
Tags
| country: | Germany |
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Credentials - T1589.001 Exploits - T1587.004 Exploits - T1588.005 Malware - T1587.001 Malware - T1588.001 |
Common Information
| Type | Value |
|---|---|
| UUID | 9e7482ad-2240-4757-9718-2e3cc256679c |
| Fingerprint | a160197b29323f6b |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Oct. 11, 2016, midnight |
| Added to db | Jan. 18, 2023, 11:19 p.m. |
| Last updated | Nov. 15, 2024, 12:36 p.m. |
| Headline | OffensiveWare: A New Malware-as-a-Service Platform Takes a Fitting Label |
| Title | OffensiveWare: A New Malware-as-a-Service Platform Takes a Fitting Label |
| Detected Hints/Tags/Attributes | 44/3/26 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | oware.pr |
|
| Details | File | 1 | msupd.exe |
|
| Details | File | 2 | em.exe |
|
| Details | File | 3 | fb.exe |
|
| Details | File | 6 | ie.exe |
|
| Details | File | 8 | upd.exe |
|
| Details | File | 51 | msvcp140.dll |
|
| Details | File | 13 | msvcr71.dll |
|
| Details | File | 3 | 11.dll |
|
| Details | File | 26 | ssleay32.dll |
|
| Details | File | 35 | libeay32.dll |
|
| Details | File | 1 | %allusersprofile%\bigchunk\em.txt |
|
| Details | File | 1 | %allusersprofile%\bigchunk\fb.txt |
|
| Details | File | 1 | %allusersprofile%\bigchunk\ie.txt |
|
| Details | File | 1 | %allusersprofile%\logs\log.txt |
|
| Details | File | 1 | em.txt |
|
| Details | File | 1 | fb.txt |
|
| Details | File | 1 | ie.txt |
|
| Details | File | 1 | fineco_order_list_20092016.docx |
|
| Details | sha256 | 1 | 2262a78c1fa3a1916b9c6bba366eb0fb5ed5176591c2b1d31b4d6d3d88ea0c51 |
|
| Details | sha256 | 1 | c9cd8dc47b648dfaab40f0f4b19717fe001e3e97002eebb1290e703c6d0bec87 |
|
| Details | sha256 | 1 | 5eb3c1800715744438a4382e69d042346a3f4b9ffd2c0308ac4a5c864e26fb28 |
|
| Details | sha256 | 1 | 17e2143a6018e7fa9d69c52f0be5ac3aed91e0496a1832b91ad28d14417d4059 |
|
| Details | sha256 | 1 | 03f24b17beebbeedc63fa47c781e480c7eac93ac3068bfbbea45919fb643881f |
|
| Details | sha256 | 1 | 2e149eae2956d2d749110f803044ff8b252dcbaf3ae09bdcf30a58b74bbd7329 |
|
| Details | sha256 | 1 | 71a2501786a808512236d2cb32ff7b583ce5e9294dc026cdfb15ca2fd14b8b98 |