Tinba Malware: Domain Generation Algorithm Means New, Improved, and Persistent
Tags
| attack-pattern: | Data Hooking - T1617 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Hooking - T1179 Hooking |
Common Information
| Type | Value |
|---|---|
| UUID | a0a4fce1-ca73-47a2-a773-9e84019a947f |
| Fingerprint | b7243969a9ab8380 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Oct. 15, 2014, 3 a.m. |
| Added to db | Nov. 9, 2023, 12:05 a.m. |
| Last updated | Nov. 17, 2024, 6:53 p.m. |
| Headline | Tinba Malware: Domain Generation Algorithm Means New, Improved, and Persistent |
| Title | Tinba Malware: Domain Generation Algorithm Means New, Improved, and Persistent |
| Detected Hints/Tags/Attributes | 23/1/8 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 308 | ✔ | F5 Labs Threats | https://www.f5.com/labs/rss-feeds/threats.xml | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | File | 533 | ntdll.dll |
|
| Details | File | 229 | advapi32.dll |
|
| Details | File | 130 | ws2_32.dll |
|
| Details | File | 291 | user32.dll |
|
| Details | File | 86 | winver.exe |
|
| Details | File | 1260 | explorer.exe |
|
| Details | File | 16 | bin.exe |
|
| Details | File | 1 | c:\documents and settings\administrator\application data\557ceb7b\bin.exe |