Why Remediation Alone Is Not Enough When Infected by Malware - ASEC BLOG
Tags
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Direct Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Tool - T1588.002 Connection Proxy - T1090 |
Common Information
| Type | Value |
|---|---|
| UUID | 9eb9ad17-f14b-40a9-a520-e2a54ef418ae |
| Fingerprint | a79ed90f4ce28e83 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | May 20, 2022, 1 p.m. |
| Added to db | Sept. 11, 2022, 12:44 p.m. |
| Last updated | Nov. 17, 2024, 6:55 p.m. |
| Headline | Why Remediation Alone Is Not Enough When Infected by Malware |
| Title | Why Remediation Alone Is Not Enough When Infected by Malware - ASEC BLOG |
| Detected Hints/Tags/Attributes | 45/2/32 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://asec.ahnlab.com/en/34549/ |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | File | 1 | isass.dmp |
|
| Details | File | 478 | lsass.exe |
|
| Details | File | 23 | 1.rar |
|
| Details | File | 3 | lcx.exe |
|
| Details | md5 | 1 | 1136efb1a46d1f2d508162387f30dc4d |
|
| Details | md5 | 1 | ae00198dfa0ef3a7e5fea8dd06a8d8b8 |
|
| Details | md5 | 1 | f2f94708cef791d9664d2e4fa20ff520 |
|
| Details | md5 | 1 | 0dabd600cea6dcf3c049a667b67b4482 |
|
| Details | md5 | 1 | 99b0638f134a0d607edb8dbab01d3f95 |
|
| Details | md5 | 1 | 763f2cae2072647d61d11047c8aaaf09 |
|
| Details | md5 | 1 | e636a07bb8d8fbfb1cab5557fdc217aa |
|
| Details | md5 | 1 | 0f7baf15408a49895439aa273ee7f867 |
|
| Details | md5 | 1 | 7650484a85247bc922de760a6a335a76 |
|
| Details | md5 | 1 | 62eada472d6d2d7606ba322c8b7f9153 |
|
| Details | md5 | 4 | f01a9a2d1e31332ed36c1a4d2839f412 |
|
| Details | md5 | 1 | f4a992b87d70c622eef107a09d712e9e |
|
| Details | md5 | 1 | d221d51f4599ae051709b5cf5c45af10 |
|
| Details | md5 | 3 | fb6bf74c6c1f2482e914816d6e97ce09 |
|
| Details | md5 | 1 | 4b8fbfc68b9969549f050c0e8366a10d |
|
| Details | md5 | 1 | 716979a28125fa65903e77dc5b399383 |
|
| Details | md5 | 1 | 88a5ebccf60464764d0fe015d71bf330 |
|
| Details | md5 | 3 | d862186f24e644b02aa97d98695c73d8 |
|
| Details | md5 | 1 | 114f26e7b46d0f4c4a202353c41ce366 |
|
| Details | md5 | 1 | 0b877ea03db28b275dd535f16dd78239 |
|
| Details | md5 | 1 | fe12b5008334ad718008307e1a0750f7 |
|
| Details | IPv4 | 1 | 146.196.83.217 |
|
| Details | IPv4 | 1441 | 127.0.0.1 |
|
| Details | IPv4 | 1 | 198.13.53.81 |
|
| Details | IPv4 | 1 | 180.235.137.14 |
|
| Details | IPv4 | 1 | 185.239.226.133 |
|
| Details | IPv4 | 1 | 159.233.41.219 |
|
| Details | CVE | 81 | cve-2017-10271 |