Neutrino : The come back ! (or Job314 the Alter EK)
Tags
attack-pattern: Model Domains - T1583.001 Domains - T1584.001 Exploits - T1587.004 Exploits - T1588.005 Javascript - T1059.007 Server - T1583.004 Server - T1584.004
Show in Graph
Common Information
Type Value
UUID 9e9595ec-ee54-495b-b3c0-38433d51fa69
Fingerprint dcb3a4d6395531e5
Analysis status DONE
Considered CTI value 2
Text language
Published Nov. 21, 2014, midnight
Added to db Jan. 18, 2023, 10 p.m.
Last updated Nov. 17, 2024, 6:53 p.m.
Headline MDNC | Malware don't need Coffee
Title Neutrino : The come back ! (or Job314 the Alter EK)
Detected Hints/Tags/Attributes 30/1/15
Source URLs
Redirection Url
Details Source http://malware.dontneedcoffee.com/2014/11/neutrino-come-back.html
Details Source https://malware.dontneedcoffee.com/2014/11/neutrino-come-back.html
URL Provider
Details Provider Source level domain
Details dontneedcoffee.com malware.dontneedcoffee.com
Attributes
Details Type #Events CTI Value
Details CVE 36 
cve-2013-2551
Details CVE 55 
cve-2014-6332
Details CVE 20 
cve-2014-0515
Details CVE 8 
cve-2014-0569
Details Domain 358 
pastebin.com
Details Domain 20 
ajax.googleapis.com
Details File 2 
swfobject.js
Details File 1 
sweet.pl
Details md5 1 
7a5f2d7efe55020e65dcdd77bcdf853e
Details md5 1 
f185111b2b0c61b26f2cdae1fee81031
Details md5 1 
19a6ef1cf490aec30018d95a4f07f42a
Details Url 1 
http://amtudatqfi.border2
Details Url 1 
http://pastebin.com/ssgay7zn
Details Url 1 
http://ajax.googleapis.com/ajax/libs/swfobject/2.2/swfobject.js
Details Url 1 
http://wyuye.border2