ASEC Weekly Malware Statistics (June 28th, 2021 – July 4th, 2021) - ASEC BLOG
Tags
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Keylogging - T1056.001 Keylogging - T1417.001 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Tool - T1588.002 Program Download |
Common Information
| Type | Value |
|---|---|
| UUID | c0c211a0-6c67-4b22-af4c-4be451c39733 |
| Fingerprint | 2f2c3d688dbb07b1 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | July 8, 2021, 11:15 a.m. |
| Added to db | Sept. 11, 2022, 4:59 p.m. |
| Last updated | Nov. 17, 2024, 11:40 p.m. |
| Headline | ASEC Weekly Malware Statistics (June 28th, 2021 – July 4th, 2021) |
| Title | ASEC Weekly Malware Statistics (June 28th, 2021 – July 4th, 2021) - ASEC BLOG |
| Detected Hints/Tags/Attributes | 38/2/113 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://asec.ahnlab.com/en/24995/ |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | smtp.wickwirewerehouse.com |
|
| Details | Domain | 1 | wickwirewerehouse.com |
|
| Details | Domain | 5 | mail.privateemail.com |
|
| Details | Domain | 1 | cuprum-es.me |
|
| Details | Domain | 8 | smtp.vivaldi.net |
|
| Details | Domain | 6 | vivaldi.net |
|
| Details | Domain | 5 | www.baincot.com |
|
| Details | Domain | 3 | www.blaxies3.com |
|
| Details | Domain | 5 | www.blinbins.com |
|
| Details | Domain | 2 | www.bonap56.com |
|
| Details | Domain | 1 | www.buntunm3.com |
|
| Details | Domain | 3 | www.cenfoxy.com |
|
| Details | Domain | 3 | www.jam-nins.com |
|
| Details | Domain | 6 | www.jumtix.xyz |
|
| Details | Domain | 2 | www.resctub.com |
|
| Details | Domain | 1 | www.smacey.com |
|
| Details | Domain | 2 | www.tepevizyon.com.tr |
|
| Details | Domain | 1 | ctp1.xyz |
|
| Details | Domain | 1 | inhanoi.net.vn |
|
| Details | Domain | 4 | manvim.co |
|
| Details | Domain | 1 | xeilzy47.top |
|
| Details | Domain | 1 | mororx04.top |
|
| Details | Domain | 1 | lopcpd05.top |
|
| Details | Domain | 2 | xeinxk65.top |
|
| Details | Domain | 2 | morksu06.top |
|
| Details | Domain | 2 | lopywn08.top |
|
| Details | Domain | 1 | xeiovz21.top |
|
| Details | Domain | 1 | morhef02.top |
|
| Details | Domain | 1 | loppku02.top |
|
| Details | Domain | 1 | cyprae67.top |
|
| Details | Domain | 1 | morbai06.top |
|
| Details | Domain | 1 | dugzay09.top |
|
| Details | 1 | blessingss@wickwirewerehouse.com |
||
| Details | 1 | info@cuprum-es.me |
||
| Details | 1 | gracebox123@vivaldi.net |
||
| Details | File | 1 | po33134.exe |
|
| Details | File | 1 | rfquotation9900.pdf |
|
| Details | File | 1 | 04418.exe |
|
| Details | File | 32 | quotation.exe |
|
| Details | File | 1 | reminder.exe |
|
| Details | File | 11 | specification.exe |
|
| Details | File | 2 | requirement.exe |
|
| Details | File | 1 | img00291552.exe |
|
| Details | File | 35 | invoice.exe |
|
| Details | File | 2 | sec.exe |
|
| Details | File | 1 | order-36287932.exe |
|
| Details | File | 1260 | explorer.exe |
|
| Details | File | 1 | requestbk210622.exe |
|
| Details | File | 1 | request_po20210702.exe |
|
| Details | File | 1 | request_po210628.exe |
|
| Details | File | 1 | request_po210630.exe |
|
| Details | File | 1 | request_po210701.exe |
|
| Details | File | 6 | request.exe |
|
| Details | File | 1 | charges.pdf |
|
| Details | File | 1 | bancario.pdf |
|
| Details | File | 1 | __________________.exe |
|
| Details | File | 7 | soa.exe |
|
| Details | File | 1 | lista_de.exe |
|
| Details | File | 1 | po_210625.exe |
|
| Details | File | 2 | purchase-order.exe |
|
| Details | File | 1 | scan_20210630_074628711.exe |
|
| Details | File | 1 | scan_20210701_074628711.exe |
|
| Details | File | 1 | scan_20210702_074628711_.exe |
|
| Details | File | 1 | scandocument0000000123_pdf.exe |
|
| Details | File | 82 | fre.php |
|
| Details | File | 1 | gugufdre.php |
|
| Details | File | 2 | 32.php |
|
| Details | File | 1206 | index.php |
|
| Details | File | 98 | download.php |
|
| Details | File | 17 | lv.exe |
|
| Details | File | 1 | askinstall36.exe |
|
| Details | File | 7 | main_setup_x86x64.exe |
|
| Details | File | 1 | paypall.exe |
|
| Details | File | 208 | setup.exe |
|
| Details | File | 17 | setup_x86_x64_install.exe |
|
| Details | File | 6 | x86_x64_setup.exe |
|
| Details | File | 53 | main.php |
|
| Details | IPv4 | 1 | 185.110.190.5 |
|
| Details | IPv4 | 4 | 192.119.111.43 |
|
| Details | IPv4 | 1 | 192.236.179.121 |
|
| Details | IPv4 | 2 | 192.236.193.138 |
|
| Details | IPv4 | 3 | 63.141.228.141 |
|
| Details | IPv4 | 3 | 157.90.127.76 |
|
| Details | IPv4 | 1 | 195.133.40.227 |
|
| Details | Url | 3 | http://www.baincot.com/nins |
|
| Details | Url | 1 | http://www.baincot.com/hme1 |
|
| Details | Url | 1 | http://www.blaxies3.com/n86i |
|
| Details | Url | 2 | http://www.blaxies3.com/xfts |
|
| Details | Url | 1 | http://www.blinbins.com/uqf5 |
|
| Details | Url | 1 | http://www.bonap56.com/rnn4 |
|
| Details | Url | 1 | http://www.buntunm3.com/di4r |
|
| Details | Url | 1 | http://www.buntunm3.com/u6bi |
|
| Details | Url | 3 | http://www.cenfoxy.com/bgr7 |
|
| Details | Url | 1 | http://www.jam-nins.com/bumr |
|
| Details | Url | 1 | http://www.jam-nins.com/iic6 |
|
| Details | Url | 1 | http://www.jam-nins.com/onga |
|
| Details | Url | 1 | http://www.jumtix.xyz/g9pb |
|
| Details | Url | 2 | http://www.resctub.com/ctrt |
|
| Details | Url | 1 | http://www.smacey.com/bk2s |
|
| Details | Url | 2 | http://www.tepevizyon.com.tr/xx/panel/fre.php |
|
| Details | Url | 1 | http://185.110.190.5/gugufdre.php/nhnmtuods6fzz |
|
| Details | Url | 1 | http://192.119.111.43/dw/fre.php |
|
| Details | Url | 2 | http://192.119.111.43/obai/fre.php |
|
| Details | Url | 1 | http://192.236.179.121/capo/fre.php |
|
| Details | Url | 1 | http://192.236.179.121/od/fre.php |
|
| Details | Url | 1 | http://192.236.193.138/ogaanyi/fre.php |
|
| Details | Url | 1 | http://63.141.228.141/32.php/vkuep8jt3rhq5 |
|
| Details | Url | 1 | http://ctp1.xyz/w2/fre.php |
|
| Details | Url | 1 | http://inhanoi.net.vn/.mnhnc/lolo/lolol/modified/acccess/fre.php |
|
| Details | Url | 1 | http://manvim.co/fd2/fre.php |
|
| Details | Url | 1 | http://157.90.127.76/932 |
|
| Details | Url | 1 | http://195.133.40.227/az//main.php |
|
| Details | Url | 2 | http://157.90.127.76/706 |