红雨滴云沙箱:揭秘利用政府域名伪装的域前置木马样本
Tags
Common Information
| Type | Value |
|---|---|
| UUID | a3d73a0a-4ea4-4755-8f40-5dadba01732a |
| Fingerprint | 14fceb6c7dbe94d7 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Jan. 13, 2020, midnight |
| Added to db | Aug. 13, 2023, 9:55 a.m. |
| Last updated | Dec. 21, 2024, 2:20 a.m. |
| Headline | 红雨滴云沙箱:揭秘利用政府域名伪装的域前置木马样本 |
| Title | 红雨滴云沙箱:揭秘利用政府域名伪装的域前置木马样本 |
| Detected Hints/Tags/Attributes | 5/0/15 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 267 | ✔ | 奇安信威胁情报中心 | https://wechat2rss.xlab.app/feed/b93962f981247c0091dad08df5b7a6864ab888e9.xml | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 32 | sandbox.ti.qianxin.com |
|
| Details | Domain | 1 | video.youxian.gov.cn |
|
| Details | File | 1 | tasks.rar |
|
| Details | File | 1 | 个人简历.docx |
|
| Details | File | 5 | virustotal-multisandbox-qianxin-reddrip.html |
|
| Details | md5 | 1 | 041b8a2cf55913a8aeaf23ab6e9cbd8f |
|
| Details | md5 | 1 | 5e54dc0b6f24d0fdbf99b633a5f6560c |
|
| Details | sha256 | 1 | 99578e17b3b03ed841c869a6f8497a8786bb1765ff4a32b134e16a30844887f0 |
|
| Details | IPv4 | 1 | 42.202.218.128 |
|
| Details | Url | 1 | https://sandbox.ti.qianxin.com/sandbox/page/detail?type=file&id=aynaebzxcf0 |
|
| Details | Url | 9 | https://sandbox.ti.qianxin.com |
|
| Details | Url | 4 | https://www.baidu.com |
|
| Details | Url | 5 | https://blog.virustotal.com/2020/02/virustotal-multisandbox-qianxin-reddrip.html |
|
| Details | Url | 1 | https://www.virustotal.com/gui/file/99578e17b3b03ed841c869a6f8497a8786bb1765ff4a32b134e16a30844887f0/behavior/qianxin |
|
| Details | Url | 1 | https://sandbox.ti.qianxin.com/sandbox/page/detail?type=file&id=aynbkz55cf0 |