多功能Kasidet家族病毒解剖 – 8090安全门户
Tags
| attack-pattern: | Dns - T1071.004 Dns - T1590.002 Hardware - T1592.001 Malware - T1587.001 Malware - T1588.001 Software - T1592.002 |
Common Information
| Type | Value |
|---|---|
| UUID | a1ac81ac-1680-4262-8192-263d44d74052 |
| Fingerprint | fbbd4637df7bfff5 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Feb. 21, 2019, midnight |
| Added to db | Jan. 19, 2023, 12:07 a.m. |
| Last updated | Nov. 14, 2024, 12:01 p.m. |
| Headline | 多功能Kasidet家族病毒解剖 |
| Title | 多功能Kasidet家族病毒解剖 – 8090安全门户 |
| Detected Hints/Tags/Attributes | 14/1/34 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | http://www.8090-sec.com/archives/12122 |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | nutqss123a10cc.com |
|
| Details | Domain | 1 | nutqss123a2cc.com |
|
| Details | Domain | 1 | nutqss123a3cc.com |
|
| Details | Domain | 1 | nutqss123a4cc.com |
|
| Details | Domain | 1 | nutqss123a5cc.com |
|
| Details | Domain | 1 | nutqss123a6cc.com |
|
| Details | Domain | 1 | nutqss123a9cc.com |
|
| Details | Domain | 1 | nutqss123a1cc.com |
|
| Details | Domain | 1 | nutqss123a11cc.com |
|
| Details | Domain | 1 | nutqss123a12cc.com |
|
| Details | Domain | 1 | nutqss123a13cc.com |
|
| Details | Domain | 2 | hack-sec.top |
|
| Details | File | 1 | 复制explorer.exe |
|
| Details | File | 1 | 查找浏览器进程firefox.exe |
|
| Details | File | 271 | chrome.exe |
|
| Details | File | 263 | iexplore.exe |
|
| Details | File | 73 | opera.exe |
|
| Details | File | 1 | 通过kernel32.dll |
|
| Details | File | 6 | tasks.php |
|
| Details | md5 | 8 | 21232f297a57a5a743894a0e4a801fc3 |
|
| Details | md5 | 1 | 99F5AD74262E5CD0509D5DCE82262D02 |
|
| Details | md5 | 1 | C6530B4293D79D73D4FF0822A5DB98A8 |
|
| Details | Url | 1 | http://nutqss123a10cc.com/newfiz5/tasks.php |
|
| Details | Url | 1 | http://nutqss123a2cc.com/newfiz5/tasks.php |
|
| Details | Url | 1 | http://nutqss123a3cc.com/newfiz5/tasks.php |
|
| Details | Url | 1 | http://nutqss123a4cc.com/newfiz5/tasks.php |
|
| Details | Url | 1 | http://nutqss123a5cc.com/newfiz5/tasks.php |
|
| Details | Url | 1 | http://nutqss123a6cc.com/newfiz5/tasks.php |
|
| Details | Url | 1 | http://nutqss123a9cc.com/newfiz5/tasks.php |
|
| Details | Url | 1 | http://nutqss123a1cc.com/newfiz5/tasks.php |
|
| Details | Url | 1 | http://nutqss123a11cc.com/newfiz5/tasks.php |
|
| Details | Url | 1 | http://nutqss123a12cc.com/newfiz5/tasks.php |
|
| Details | Url | 1 | http://nutqss123a13cc.com/newfiz5/tasks.php |
|
| Details | Url | 1 | http://hack-sec.top/?post=208 |