ASEC Weekly Malware Statistics (September 5th, 2022 – September 11th, 2022) - ASEC BLOG
Tags
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Dns - T1071.004 Dns - T1590.002 Keylogging - T1056.001 Keylogging - T1417.001 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Visual Basic - T1059.005 |
Common Information
| Type | Value |
|---|---|
| UUID | ad1c2f70-aff6-4d40-a727-a7a5dbabc140 |
| Fingerprint | ff1018e0cdf32291 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Sept. 21, 2022, 9:28 a.m. |
| Added to db | Oct. 6, 2022, 10:02 a.m. |
| Last updated | Nov. 17, 2024, 6:49 p.m. |
| Headline | ASEC Weekly Malware Statistics (September 5th, 2022 – September 11th, 2022) |
| Title | ASEC Weekly Malware Statistics (September 5th, 2022 – September 11th, 2022) - ASEC BLOG |
| Detected Hints/Tags/Attributes | 35/2/81 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://asec.ahnlab.com/en/38942/ |
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 17 | ✔ | ASEC | https://asec.ahnlab.com/en/feed/ | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 2 | allvar.hr |
|
| Details | Domain | 4 | blexknad.dd-dns.de |
|
| Details | Domain | 2 | decadaenergetica.es |
|
| Details | Domain | 5 | mail.rimiapparelsltd.com |
|
| Details | Domain | 5 | rimiapparelsltd.com |
|
| Details | Domain | 2 | gdrogroup.com |
|
| Details | Domain | 2 | mail.stamnas.gr |
|
| Details | Domain | 2 | stamnas.gr |
|
| Details | Domain | 28 | sempersim.su |
|
| Details | Domain | 6 | monsutiur4.com |
|
| Details | Domain | 6 | nusurionuy5ff.at |
|
| Details | Domain | 5 | moroitomo4.net |
|
| Details | Domain | 6 | susuerulianita1.net |
|
| Details | Domain | 6 | cucumbetuturel4.com |
|
| Details | Domain | 5 | nunuslushau.com |
|
| Details | Domain | 6 | linislominyt11.at |
|
| Details | Domain | 3 | luxulixionus.net |
|
| Details | Domain | 4 | lilisjjoer44.com |
|
| Details | Domain | 4 | nikogminut88.at |
|
| Details | Domain | 5 | www.mujid24s.com |
|
| Details | Domain | 6 | www.fxivcama.com |
|
| Details | Domain | 2 | www.grebmot.online |
|
| Details | Domain | 2 | www.keilewn.online |
|
| Details | Domain | 2 | www.cholasy.xyz |
|
| Details | Domain | 2 | www.pangrid.xyz |
|
| Details | Domain | 3 | www.firtokyshop.xyz |
|
| Details | 3 | postmaster@rimiapparelsltd.com |
||
| Details | 2 | snack@gdrogroup.com |
||
| Details | 3 | webmaster@rimiapparelsltd.com |
||
| Details | 2 | thanos@stamnas.gr |
||
| Details | File | 2 | smartening.exe |
|
| Details | File | 2 | fjervgtene.exe |
|
| Details | File | 2 | genitialfases.exe |
|
| Details | File | 2 | desolating.exe |
|
| Details | File | 2 | 04350035-219978.png |
|
| Details | File | 2 | invoice_vm220200200208.exe |
|
| Details | File | 2 | 220125-po.exe |
|
| Details | File | 2 | ei2022-5002.exe |
|
| Details | File | 30 | doc.exe |
|
| Details | File | 2 | 220128.exe |
|
| Details | File | 2 | 09122263501_xxxxxxxxx.exe |
|
| Details | File | 82 | fre.php |
|
| Details | File | 2 | 6yitlxghahmcogt.exe |
|
| Details | File | 4 | logger.exe |
|
| Details | File | 2 | nbvxcmvxcjkd.exe |
|
| Details | File | 2 | grfy.exe |
|
| Details | File | 1260 | explorer.exe |
|
| Details | IPv4 | 2 | 195.178.120.184 |
|
| Details | IPv4 | 4 | 146.70.79.13 |
|
| Details | IPv4 | 3 | 5.2.75.164 |
|
| Details | IPv4 | 4 | 162.213.249.190 |
|
| Details | Url | 2 | http://195.178.120.184/pbkyaoegmlaplai189.asd |
|
| Details | Url | 2 | http://195.178.120.184/jlywdiijhfuw95.pcx |
|
| Details | Url | 2 | http://allvar.hr/wed3.fla |
|
| Details | Url | 2 | http://146.70.79.13/fsnptohwp201.pfm |
|
| Details | Url | 2 | http://blexknad.dd-dns.de/fcofxiqng192.pcz |
|
| Details | Url | 2 | http://decadaenergetica.es/mon.hhp |
|
| Details | Url | 3 | http://5.2.75.164/ioxdlbkega114.snp |
|
| Details | Url | 2 | http://162.213.249.190/?3qyd5phxmgqeromykuu |
|
| Details | Url | 2 | http://162.213.249.190/?qbcci493gttnmnfb9ab9k3ywtrqkkhyksanbexeu1yinmxyw7kfs |
|
| Details | Url | 2 | http://162.213.249.190/?loop |
|
| Details | Url | 2 | http://sempersim.su/gj23/fre.php |
|
| Details | Url | 2 | http://162.213.249.190/?sgonzkahsm0f7f535q8mr6lsixl68bp1ropqyz80l8ftnlxc |
|
| Details | Url | 2 | http://162.213.249.190/?sgonzkahsm0f7f535q8mr6lsixl68bp1ropqyz80l8ftnlxtc6pecawu7i1gtrhvfgmo |
|
| Details | Url | 2 | http://monsutiur4.com |
|
| Details | Url | 2 | http://nusurionuy5ff.at |
|
| Details | Url | 2 | http://moroitomo4.net |
|
| Details | Url | 2 | http://susuerulianita1.net |
|
| Details | Url | 2 | http://cucumbetuturel4.com |
|
| Details | Url | 2 | http://nunuslushau.com |
|
| Details | Url | 3 | http://linislominyt11.at |
|
| Details | Url | 2 | http://luxulixionus.net |
|
| Details | Url | 2 | http://lilisjjoer44.com |
|
| Details | Url | 2 | http://nikogminut88.at |
|
| Details | Url | 4 | http://www.mujid24s.com/rsea |
|
| Details | Url | 3 | http://www.fxivcama.com/zgtb |
|
| Details | Url | 2 | http://www.grebmot.online/ol09 |
|
| Details | Url | 2 | http://www.keilewn.online/p94a |
|
| Details | Url | 2 | http://www.cholasy.xyz/dw85 |
|
| Details | Url | 2 | http://www.pangrid.xyz/lsg6 |
|
| Details | Url | 3 | http://www.firtokyshop.xyz/na24 |