ioc[.]one - OSINT Cyber Threat Intelligence Database

DDG.Mining.Botnet 近期活动分析

Tags

attack-pattern:

Data Botnet - T1583.005 Botnet - T1584.005 Cron - T1053.003 Ssh - T1021.004 Connection Proxy - T1090

Show in Graph

Common Information

Type	Value
UUID	9f12e7a2-941f-416d-876c-803cd25b5042
Fingerprint	db6f5d6fff230dd8
Analysis status	DONE
Considered CTI value	2
Text language
Published	June 13, 2018, midnight
Added to db	Jan. 18, 2023, 7:36 p.m.
Last updated	Oct. 15, 2024, 5:16 p.m.
Headline	DDG.Mining.Botnet 近期活动分析
Title	DDG.Mining.Botnet 近期活动分析
Detected Hints/Tags/Attributes	23/1/48

Source URLs

	Redirection	Url
Details	Source	http://blog.netlab.360.com/ddg-mining-botnet-jin-qi-huo-dong-fen-xi/
Details	Source	https://blog.netlab.360.com/ddg-mining-botnet-jin-qi-huo-dong-fen-xi/

URL Provider

Details	Provider	Source level domain
Details	360.com	blog.netlab.360.com

Attributes

Details	Type	#Events	Value
Details	Domain	11	supportxmr.com
Details	Domain	13	nanopool.org
Details	Domain	1	get.bi-chi.com
Details	Domain	3	hashvault.pro
Details	Domain	16	minexmr.com
Details	Domain	2	dwarfpool.com
Details	md5	2	e31c1d7a8025e7c3266a07e37c55a4ba
Details	md5	2	26b3aef91bacfa082deff9812acf7875
Details	md5	2	c50d3e20b3519f096630e31277fefceb
Details	md5	2	532a35a8d0fe4944c24575c0336eff8a
Details	md5	2	55b1d7b0fa1c479c02660896e05db910
Details	md5	2	999fc24f53034b4c73866a0699be15fa
Details	md5	1	b44bce2047f2254e5e7e8b0730caae2e
Details	md5	1	54259015b8ead37ac66da056769520db
Details	md5	1	9ebf7fc39efe7c553989d54965ebb468
Details	md5	1	d3b1700a413924743caab1460129396b
Details	md5	1	8eaf1f18c006e6ecacfb1adb0ef7faee
Details	md5	1	754487fd92e282c98acf6528604049aa
Details	md5	1	52f06ca981a6e6cbc89b095ea6db1bf9
Details	md5	1	76e8d7bf408b3b6ebd13d6b292519742
Details	md5	1	8ab02497219bda76c959f86386a2c363
Details	md5	1	45774309c72839d6d4303024059e7070
Details	md5	1	884a57a0e4f9d222117aeca111095d7a
Details	IPv4	1	69.64.32.12
Details	IPv4	1	165.225.157.157
Details	IPv4	1	47.90.204.154
Details	IPv4	1	47.52.57.128
Details	IPv4	1	165.227.149.151
Details	Url	1	http://69.64.32.12:8000/static/3012/ddgs.i686
Details	Url	1	http://69.64.32.12:8000/static/3012/ddgs.x86_64
Details	Url	1	http://69.64.32.12:8000/i.sh
Details	Url	1	http://69.64.32.12:8000/static/3012/ddgs.
Details	Url	1	http://165.225.157.157:8000/static/qw3xt
Details	Url	1	http://165.225.157.157:8000/static/qw3xt.1
Details	Url	1	http://165.225.157.157:8000/static/3011/ddgs.x86_64
Details	Url	1	http://165.225.157.157:8000/i.sh
Details	Url	1	http://165.225.157.157:8000/static/3011/ddgs.
Details	Url	1	http://165.225.157.157:8000/static/3011/ddgs.i686
Details	Url	1	http://165.225.157.157:8000/static/imwbr1
Details	Url	1	http://165.225.157.157:8000/static/wntkyg
Details	Url	1	http://165.225.157.157:8000/static/wntkyg.noaes
Details	Url	1	http://165.225.157.157:8000/static/imwbr1.ig
Details	Url	1	http://165.225.157.157:8000/static/2t3ik.s
Details	Url	1	http://165.225.157.157:8000/static/2t3ik.p
Details	Url	1	http://165.225.157.157:8000/static/2t3ik.m
Details	Url	1	http://165.225.157.157:8000/static/2t3ik
Details	Url	1	http://165.225.157.157:8000/static/3010/ddgs.i686
Details	Url	1	http://165.225.157.157:8000/static/3010/ddgs.x86_64