Aug 3 CVE-2009-0927 + CVE-2009-4324 + CVE-2007-5659 Please confirm from 94255015@nccu.edu.tw 140.119.166.13
Tags
| country: | Hong Kong Taiwan |
| attack-pattern: | Data Dns - T1071.004 Dns - T1590.002 Whois - T1596.002 Connection Proxy - T1090 |
Common Information
| Type | Value |
|---|---|
| UUID | b0b83044-5bd2-405f-b0d2-b78a3e8aaac5 |
| Fingerprint | 45f6e45a86a70683 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Aug. 3, 2010, 8:18 a.m. |
| Added to db | Jan. 18, 2023, 7:45 p.m. |
| Last updated | Nov. 14, 2024, 7:09 a.m. |
| Headline | UNKNOWN |
| Title | Aug 3 CVE-2009-0927 + CVE-2009-4324 + CVE-2007-5659 Please confirm from 94255015@nccu.edu.tw 140.119.166.13 |
| Detected Hints/Tags/Attributes | 38/2/54 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 26 | cve-2009-0927 |
|
| Details | CVE | 43 | cve-2009-4324 |
|
| Details | CVE | 19 | cve-2007-5659 |
|
| Details | Domain | 3 | nccu.edu.tw |
|
| Details | Domain | 23 | doc.media |
|
| Details | Domain | 1 | alumni2.nccu.edu.tw |
|
| Details | Domain | 7 | wepawet.iseclab.org |
|
| Details | Domain | 1 | w32.agent.28160.ma |
|
| Details | Domain | 22 | anubis.iseclab.org |
|
| Details | Domain | 1 | audnted.flinkup.org |
|
| Details | Domain | 1 | facecache.mypicture.info |
|
| Details | Domain | 1 | microinfo.3utilities.com |
|
| Details | Domain | 14 | www.robtex.com |
|
| Details | Domain | 1 | 187.73.246.220.static.netvigator.com |
|
| Details | 1 | 94255015@nccu.edu.tw |
||
| Details | 1 | 1280849064.24992.94255015@nccu.edu.tw |
||
| Details | File | 1 | conference_program.pdf |
|
| Details | File | 63 | report.html |
|
| Details | File | 37 | exploit.pdf |
|
| Details | File | 2 | heuristics.pdf |
|
| Details | File | 27 | exploit.js |
|
| Details | File | 73 | view.php |
|
| Details | File | 1 | %userprofile%\application data\diskchk.exe |
|
| Details | File | 1 | %userprofile%\local settings\temp\2.tmp |
|
| Details | File | 1 | c:\a.pdf |
|
| Details | File | 10 | a.pdf |
|
| Details | File | 1 | diskchk.exe |
|
| Details | File | 3 | mypicture.inf |
|
| Details | File | 1 | 187.html |
|
| Details | File | 16 | com.html |
|
| Details | md5 | 1 | 350924123cbf1b126f4e38335ed6660d |
|
| Details | md5 | 1 | 379E0B3E2C4778075511C4C1E62C0C65 |
|
| Details | md5 | 1 | 379e0b3e2c4778075511c4c1e62c0c65 |
|
| Details | sha256 | 1 | 220a1b24e02c2757eccebb6827b4021d570b0f662dd1b0772c22c96b8f6b7c1d |
|
| Details | sha256 | 1 | 5ab0bc8ef4f276e2b8a8fa989aa8e35947f1f1a2694f786ab02d4d4b7eeab2d6 |
|
| Details | IPv4 | 1 | 140.119.166.13 |
|
| Details | IPv4 | 28 | 5.2.0.5 |
|
| Details | IPv4 | 4 | 0.96.2.0 |
|
| Details | IPv4 | 4 | 5.0.0.37 |
|
| Details | IPv4 | 29 | 7.0.17.0 |
|
| Details | IPv4 | 8 | 4.6.1.107 |
|
| Details | IPv4 | 6 | 3.1.1.88 |
|
| Details | IPv4 | 59 | 7.0.0.125 |
|
| Details | IPv4 | 4 | 3.12.14.0 |
|
| Details | IPv4 | 2 | 8.2.4.46 |
|
| Details | IPv4 | 1 | 220.246.73.187 |
|
| Details | IPv4 | 59 | 255.255.255.255 |
|
| Details | IPv4 | 1 | 187.73.246.220 |
|
| Details | Url | 1 | http://www.virustotal.com/file-scan/report.html?id=220a1b24e02c2757eccebb6827b4021d570b0f662dd1b0772c22c96b8f6b7c1d |
|
| Details | Url | 1 | http://wepawet.iseclab.org/view.php?hash=350924123cbf1b126f4e38335ed6660d&type=js |
|
| Details | Url | 1 | http://www.virustotal.com/file-scan/report.html?id=5ab0bc8ef4f276e2b8a8fa989aa8e35947f1f1a2694f786ab02d4d4b7eeab2d6 |
|
| Details | Url | 1 | http://anubis.iseclab.org/?action=result&task_id=1f9a7a78ebc252b74a1362b81134726d7 |
|
| Details | Url | 1 | http://www.robtex.com/ip/220.246.73.187.html#whois |
|
| Details | Url | 1 | http://www.robtex.com/dns/187.73.246.220.static.netvigator.com.html#graph |