ioc[.]one - OSINT Cyber Threat Intelligence Database

Pony's C&C servers hidden inside the Bitcoin blockchain - Check Point Research

Tags

maec-delivery-vectors:	Watering Hole
attack-pattern:	Ip Addresses - T1590.005 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Server - T1583.004 Server - T1584.004

Show in Graph

Common Information

Type	Value
UUID	ad09fe13-8fad-4d15-98a2-dc990832d37b
Fingerprint	793774cdcd203a85
Analysis status	DONE
Considered CTI value	2
Text language
Published	Oct. 17, 2019, 12:57 p.m.
Added to db	Jan. 18, 2023, 10:16 p.m.
Last updated	Sept. 4, 2024, 9:49 p.m.
Headline	Pony’s C&C servers hidden inside the Bitcoin blockchain
Title	Pony's C&C servers hidden inside the Bitcoin blockchain - Check Point Research
Detected Hints/Tags/Attributes	21/2/86

Source URLs

	Redirection	Url
Details	Source	https://research.checkpoint.com/ponys-cc-servers-hidden-inside-the-bitcoin-blockchain/

URL Provider

Details	Provider	Source level domain
Details	checkpoint.com	research.checkpoint.com

Attributes

Details	Type	#Events	Value
Details	Domain	14	www.blockchain.com
Details	sha1	2	cf9c74ed67a4fbe89ab77643f3acbd98b14d5568
Details	sha1	2	c098dc7c06e0da8f6e2551f262375713ba87ca05
Details	sha1	2	3933f8309824a9127dde97b9c0f5459b06fd6c13
Details	sha1	2	817bd8fff5b026ba74852955eb5f84244a92e098
Details	sha1	2	51c7a774a0616b4611966d6d4f783c1164c9fa50
Details	sha1	2	44b6627acd5b2c601443c55d2e44ae4298381720
Details	sha1	2	d9fb2504008345af97b0e400706cdaa406476314
Details	sha1	2	bbdce69acc6101c1f61748c91010c579625ef758
Details	sha1	2	3f2b758122c0d180ccfba03b74b593854f2b0e86
Details	sha1	2	9d7b264367320da38c94be1f940c663375d67a2a
Details	IPv4	2	185.203.116.47
Details	IPv4	1	35.216.185.203
Details	IPv4	1	78.108.216.39
Details	IPv4	1	100.66.91.200
Details	IPv4	1	72.50.91.200
Details	IPv4	1	117.49.185.203
Details	IPv4	1	170.51.35.216
Details	IPv4	1	91.200.78.108
Details	IPv4	1	69.5.100.66
Details	IPv4	2	185.234.72.50
Details	IPv4	1	185.203.117.49
Details	IPv4	1	118.16.170.51
Details	IPv4	1	103.136.91.200
Details	IPv4	1	91.200.69.5
Details	IPv4	1	150.254.185.234
Details	IPv4	1	119.169.185.203
Details	IPv4	1	94.156.118.16
Details	IPv4	1	100.174.103.136
Details	IPv4	1	54.151.91.200
Details	IPv4	1	212.73.150.254
Details	IPv4	1	185.177.119.169
Details	IPv4	1	85.217.94.156
Details	IPv4	1	91.200.102.39
Details	IPv4	1	172.104.54.151
Details	IPv4	1	227.99.212.73
Details	IPv4	1	185.203.185.177
Details	IPv4	1	35.216.85.217
Details	IPv4	1	91.200.103.136
Details	IPv4	1	69.5.172.104
Details	IPv4	1	195.123.227.99
Details	IPv4	1	171.48.185.203
Details	IPv4	2	94.156.35.216
Details	IPv4	1	216.39.91.200
Details	IPv4	1	172.105.69.5
Details	IPv4	1	59.149.171.48
Details	IPv4	1	119.18.94.156
Details	IPv4	1	100.134.78.108
Details	IPv4	1	100.134.172.105
Details	IPv4	1	85.217.59.149
Details	IPv4	1	170.51.185.203
Details	IPv4	1	91.200.100.134
Details	IPv4	1	91.200.100.66
Details	IPv4	1	119.169.85.217
Details	IPv4	1	85.217.170.51
Details	IPv4	1	100.136.91.200
Details	IPv4	1	195.123.91.200
Details	IPv4	1	185.203.119.169
Details	IPv4	1	118.16.85.217
Details	IPv4	1	91.200.100.136
Details	IPv4	1	185.234.195.123
Details	IPv4	1	85.217.171.48
Details	IPv4	1	185.203.118.16
Details	IPv4	1	100.134.91.200
Details	IPv4	1	72.50.185.234
Details	IPv4	1	59.149.85.217
Details	IPv4	1	91.200.185.203
Details	IPv4	1	172.105.100.134
Details	IPv4	1	212.73.72.50
Details	IPv4	1	185.177.59.149
Details	IPv4	1	100.174.91.200
Details	IPv4	1	54.151.172.105
Details	IPv4	1	100.136.212.73
Details	IPv4	1	119.18.185.177
Details	IPv4	1	91.200.100.174
Details	IPv4	1	100.136.54.151
Details	IPv4	1	227.99.91.200
Details	IPv4	1	185.203.119.18
Details	IPv4	1	102.39.91.200
Details	IPv4	1	172.104.91.200
Details	IPv4	1	150.254.227.99
Details	IPv4	1	185.203.185.203
Details	IPv4	1	216.39.102.39
Details	IPv4	1	91.200.172.104
Details	IPv4	1	100.136.150.254
Details	Url	1	https://www.blockchain.com/btc/address/1bkegqpo8m5knvyxw3obmqt1r58zxaqlbq?sort=0