ioc[.]one - OSINT Cyber Threat Intelligence Database

ASEC Weekly Malware Statistics (December 19th, 2022 – December 25th, 2022) - ASEC BLOG

Tags

maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Keylogging - T1056.001 Keylogging - T1417.001 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002

Show in Graph

Common Information

Type	Value
UUID	c1224e61-769d-4b71-8720-cc009369bec4
Fingerprint	af101b42e5d822d7
Analysis status	DONE
Considered CTI value	0
Text language
Published	Jan. 2, 2023, 10:18 a.m.
Added to db	Jan. 2, 2023, 3:12 a.m.
Last updated	Nov. 17, 2024, 6:49 p.m.
Headline	ASEC Weekly Malware Statistics (December 19th, 2022 – December 25th, 2022)
Title	ASEC Weekly Malware Statistics (December 19th, 2022 – December 25th, 2022) - ASEC BLOG
Detected Hints/Tags/Attributes	38/2/74

Source URLs

	Redirection	Url
Details	Source	https://asec.ahnlab.com/en/45023/

URL Provider

Details	Provider	Source level domain
Details	ahnlab.com	asec.ahnlab.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	17	✔	ASEC	https://asec.ahnlab.com/en/feed/	2024-08-30 22:08

Attributes

Details	Type	#Events	Value
Details	Domain	3	ppp-gl.biz
Details	Domain	2	mail.galaxybreakdown.co.za
Details	Domain	2	galaxybreakdown.co.za
Details	Domain	1174	gmail.com
Details	Domain	33	smtp.yandex.com
Details	Domain	119	yandex.ru
Details	Domain	7	host39.registrar-servers.com
Details	Domain	4	nachnegg.net
Details	Domain	36	us2.smtp.mailhostbox.com
Details	Domain	5	habitatbreks.org
Details	Domain	14	svartalfheim.top
Details	Domain	5	jotunheim.name
Details	Domain	3	www.crtinha.xyz
Details	Domain	4	www.eroptik.online
Details	Domain	3	www.gawiul.xyz
Details	Domain	2	www.magenx2.info
Details	Domain	4	www.merop.online
Details	Domain	6	www.mewzom.online
Details	Domain	6	www.peiphitan.com
Details	Domain	4	www.slebuild.com
Details	Domain	3	www.solisdq.info
Details	Domain	5	www.tacosmina.info
Details	Domain	2	hq-blli.com
Details	Domain	2	mail.impressive-edge.com
Details	Domain	2	impressive-edge.com
Details	Domain	2	giftwayexpress-service.com
Details	Email	2	accounts@galaxybreakdown.co.za
Details	Email	3	teahyunkoo@gmail.com
Details	Email	2	alma.yang2@yandex.ru
Details	Email	4	account@nachnegg.net
Details	Email	5	support@habitatbreks.org
Details	Email	2	moni@hq-blli.com
Details	Email	2	goobm@impressive-edge.com
Details	Email	2	camialfieri3@gmail.com
Details	Email	2	info@giftwayexpress-service.com
Details	File	24	count.php
Details	File	6	loot.php
Details	File	37	1.php
Details	File	16	check.php
Details	File	7	host39.reg
Details	File	2	093727664.exe
Details	File	2	29388-0321.exe
Details	File	32	copy.exe
Details	File	5	sheet.exe
Details	File	2	inwardremitance48990021337565990_pdf.exe
Details	File	7	soa.exe
Details	File	95	pdf.exe
Details	File	4	notification_pdf.exe
Details	File	2	doc_pdf.exe
Details	File	2	2022pdf.exe
Details	File	2	0102322.exe
Details	File	6	confirmation.exe
Details	File	1260	explorer.exe
Details	File	4	www.crt
Details	File	2	11140109927_20221220_11440490_hesapozet.exe
Details	File	10	swift.exe
Details	File	19	l.exe
Details	File	3	note.exe
Details	File	2	987656-098765456789987654.exe
Details	File	48	documents.exe
Details	IPv4	21	45.139.105.171
Details	IPv4	6	45.9.20.13
Details	Url	3	http://www.crtinha.xyz/s20g
Details	Url	3	http://www.eroptik.online/j17j
Details	Url	3	http://www.gawiul.xyz/mi08
Details	Url	2	http://www.magenx2.info/x2ee
Details	Url	2	http://www.merop.online/b21g
Details	Url	2	http://www.mewzom.online/oi05
Details	Url	4	http://www.peiphitan.com/poub
Details	Url	4	http://www.slebuild.com/dcn0
Details	Url	2	http://www.slebuild.com/obee
Details	Url	2	http://www.solisdq.info/ugk8
Details	Url	4	http://www.tacosmina.info/n2hm
Details	Url	2	https://api.telegram.org/bot5484820495