Bladabindi Remains A Constant Threat By Using Dynamic DNS Services
Tags
Common Information
| Type | Value |
|---|---|
| UUID | b96714b7-138f-4793-b47d-9639891f5338 |
| Fingerprint | ec1869c2c1322e05 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Nov. 30, 2016, midnight |
| Added to db | Sept. 26, 2022, 9:31 a.m. |
| Last updated | Oct. 15, 2024, 9:59 p.m. |
| Headline | Bladabindi Remains A Constant Threat By Using Dynamic DNS Services |
| Title | Bladabindi Remains A Constant Threat By Using Dynamic DNS Services |
| Detected Hints/Tags/Attributes | 46/1/14 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 23 | hopto.org |
|
| Details | Domain | 8 | myftp.biz |
|
| Details | Domain | 1 | agent.li |
|
| Details | Domain | 1 | prosa15.myftp.biz |
|
| Details | File | 53 | server.exe |
|
| Details | md5 | 1 | 050ed846adcc1b8729af0a70a0fefe4d |
|
| Details | md5 | 1 | 2681e81bb4c4b3e6338ce2a456fb93a7 |
|
| Details | md5 | 1 | 8e78a69ca187088abbea70727d268e90 |
|
| Details | md5 | 1 | b88ece4c04f706c9717bbe6fbda49ed2 |
|
| Details | md5 | 1 | c4d7f8abbf369dc795fc7f2fdad65003 |
|
| Details | Windows Registry Key | 1 | HKLM\Software\Microsoft\Windows\CurrentVersion\Run\050ed846adcc1b8729af0a70a0fefe4d |
|
| Details | Windows Registry Key | 1 | HKCU\Software\050ed846adcc1b8729af0a70a0fefe4d |
|
| Details | Windows Registry Key | 1 | HKCU\Software\Microsoft\Windows\CurrentVersion\Run\050ed846adcc1b8729af0a70a0fefe4d |
|
| Details | Windows Registry Key | 1 | HKCU\di |