Spam Campaign Delivers Liftoh Downloader
Tags
Common Information
Type | Value |
---|---|
UUID | a3b29475-01c5-4eb5-900a-555a2b1e9781 |
Fingerprint | 708c39d9f9b65221 |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | Dec. 10, 2013, midnight |
Added to db | Dec. 18, 2024, 9:59 p.m. |
Last updated | Dec. 23, 2024, 11:17 a.m. |
Headline | Spam Campaign Delivers Liftoh Downloader |
Title | Spam Campaign Delivers Liftoh Downloader |
Detected Hints/Tags/Attributes | 89/3/102 |
Source URLs
URL Provider
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Autonomous System Number | 1 | AS21788 |
|
Details | Autonomous System Number | 1 | AS11835 |
|
Details | Autonomous System Number | 5 | AS16265 |
|
Details | Autonomous System Number | 1 | AS52929 |
|
Details | Autonomous System Number | 1 | AS12322 |
|
Details | Autonomous System Number | 42 | AS16276 |
|
Details | Autonomous System Number | 1 | AS28271 |
|
Details | Autonomous System Number | 4 | AS62567 |
|
Details | Autonomous System Number | 1 | AS18978 |
|
Details | Autonomous System Number | 1 | AS19437 |
|
Details | Autonomous System Number | 3 | AS49335 |
|
Details | Autonomous System Number | 1 | AS17447 |
|
Details | Autonomous System Number | 2 | AS16125 |
|
Details | CVE | 189 | cve-2012-0158 |
|
Details | CVE | 85 | cve-2010-3333 |
|
Details | Domain | 1 | feed404.dnsquerys.org |
|
Details | Domain | 1 | feed404.dnsquerys.com |
|
Details | Domain | 1 | feeds.nsupdatedns.com |
|
Details | Domain | 1 | feeds404.dnsmicrosf.com |
|
Details | Domain | 1 | 404.mysyncdns.com |
|
Details | Domain | 1 | 404.dnsmicrosf.com |
|
Details | Domain | 1 | feed.queryzdnsz.org |
|
Details | Domain | 1 | gigaionjumbie.biz |
|
Details | Domain | 1 | dailyradio.su |
|
Details | Domain | 1 | customers.invoice-appmy.org |
|
Details | Domain | 1 | customer.invoice-appmy.com |
|
Details | Domain | 1 | customer.appmys-ups.org |
|
Details | Domain | 1 | customer.appmys-ups.com |
|
Details | Domain | 1 | static.invoice-appmy.com |
|
Details | Domain | 1 | luxlibertins.com |
|
Details | File | 18 | cv.doc |
|
Details | File | 1 | cd.tmp |
|
Details | File | 347 | winword.exe |
|
Details | File | 1 | afdaafdebcfsacfsfdsf.exe |
|
Details | File | 1348 | explorer.exe |
|
Details | File | 1 | myfeeds.php |
|
Details | File | 14 | feed.php |
|
Details | File | 1 | mysfeedys.php |
|
Details | File | 1 | serverbws.exe |
|
Details | File | 1 | gx.php |
|
Details | File | 1 | pytwnbzbef.php |
|
Details | File | 5 | customer.php |
|
Details | File | 3 | statement.doc |
|
Details | File | 1 | invoicebqw8oyjddgxipn8h63.doc |
|
Details | File | 1 | invoiceaailwkqfka3imk6bgw.doc |
|
Details | File | 1 | invoiceu6gcmxgll2o0n7qydz.doc |
|
Details | File | 1 | invoicecm0v9orwjf23kx8pap.pdf |
|
Details | File | 1 | fotos_facebook-20052013-png.exe |
|
Details | File | 1 | adcbfbcebcfsacfsfdsf.exe |
|
Details | File | 1 | cabcbfdbeffbfcsacfsfdsf.exe |
|
Details | File | 1 | ccbaddaabdfsacfsfdsf.exe |
|
Details | File | 1 | dbcdfbfbbebsacfsfdsf.exe |
|
Details | File | 1 | dfbbffbabeadfbsacfsfdsf.exe |
|
Details | File | 1 | fbaaddacacsacfsfdsf.exe |
|
Details | md5 | 1 | e2ee9453132f90c2e9b8a0bccb2f605d |
|
Details | md5 | 1 | ad0ef249b1524f4293e6c76a9d2ac10d |
|
Details | md5 | 1 | 7500198c94051785a68addc5f264a10f |
|
Details | md5 | 1 | ae83982f1ac50b4b08d7e509bc9cfc45 |
|
Details | md5 | 1 | 8244c515873ecc466ebf3be970477c04 |
|
Details | md5 | 1 | 625eb0ba883eece4edb7b09602d7da78 |
|
Details | md5 | 1 | a0b05cf03031edcdd4e4dd1e8f786255 |
|
Details | md5 | 1 | b20d0254faedc6608d640290aeb20b4a |
|
Details | md5 | 1 | 153a5282bcee2b9a3d0a13da13b79718 |
|
Details | md5 | 1 | 7c2fd4abfe8640f8db0d18dbecaf8bb4 |
|
Details | md5 | 1 | 62e25cc76291a3f348324172ff306ba0 |
|
Details | md5 | 1 | a4746ecbb7dc5a9856a15ba80cc2cc3d |
|
Details | md5 | 1 | d8362a96f0f2920a82d8f41ec342a679 |
|
Details | md5 | 1 | 61b384950ca6586b35898b2223d36f37 |
|
Details | md5 | 1 | 18a429ffa3441df8edb200f92806f720 |
|
Details | md5 | 1 | f6b201fb248a0fcd31b0488449776a9f |
|
Details | md5 | 1 | e5e1ee559dcad00b6f3da78c68249120 |
|
Details | md5 | 1 | 015e60d0ddff09d7df66d926d3793cc8 |
|
Details | md5 | 1 | 718532b47f2ae3006df2268ba3d1f5b9 |
|
Details | sha1 | 1 | 71e8c525d8399c2285dc2c06b09a6779078c782f |
|
Details | sha1 | 1 | 53c45ce4b80ade517afc6b2969d054063893418d |
|
Details | sha1 | 1 | d4ca04308caf0e2496b008376d3b124e73a463ed |
|
Details | sha1 | 1 | aae885295762461c4aabe1fc826b0dcc93762b9c |
|
Details | IPv4 | 1 | 184.82.214.54 |
|
Details | IPv4 | 1 | 189.85.19.140 |
|
Details | IPv4 | 1 | 46.165.219.112 |
|
Details | IPv4 | 1 | 46.165.219.89 |
|
Details | IPv4 | 1 | 177.10.190.154 |
|
Details | IPv4 | 1 | 177.10.190.155 |
|
Details | IPv4 | 1 | 177.10.190.3 |
|
Details | IPv4 | 1 | 88.173.220.169 |
|
Details | IPv4 | 1 | 78.229.183.241 |
|
Details | IPv4 | 1 | 188.165.255.149 |
|
Details | IPv4 | 1 | 177.137.18.72 |
|
Details | IPv4 | 1 | 201.33.22.202 |
|
Details | IPv4 | 1 | 192.241.183.204 |
|
Details | IPv4 | 1 | 192.157.233.99 |
|
Details | IPv4 | 1 | 198.24.186.122 |
|
Details | IPv4 | 1 | 192.123.32.83 |
|
Details | IPv4 | 3 | 2.1.1.2 |
|
Details | IPv4 | 1 | 158.255.2.60 |
|
Details | IPv4 | 1 | 146.0.79.146 |
|
Details | IPv4 | 1 | 118.67.250.91 |
|
Details | IPv4 | 1 | 5.199.171.131 |
|
Details | IPv4 | 1 | 5.199.171.132 |
|
Details | IPv4 | 1 | 5.199.171.133 |
|
Details | IPv4 | 3 | 213.186.33.87 |
|
Details | Windows Registry Key | 598 | HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run |