ioc[.]one - OSINT Cyber Threat Intelligence Database

BLOCKBUSTED: Lazarus, Blockbuster, and North Korea - Intezer

Tags

country:	China North Korea Israel
attack-pattern:	Domains - T1583.001 Domains - T1584.001 Exploits - T1587.004 Exploits - T1588.005 Malware - T1587.001 Malware - T1588.001 Visual Basic - T1059.005

Show in Graph

Common Information

Type	Value
UUID	cad7cd57-96e9-4028-96fc-cc2008e7c60a
Fingerprint	a7548bf3877b0ad6
Analysis status	DONE
Considered CTI value	2
Text language
Published	Dec. 12, 2017, 1:30 p.m.
Added to db	Jan. 30, 2023, 4:32 p.m.
Last updated	Sept. 4, 2024, 10:27 p.m.
Headline	BLOCKBUSTED: Lazarus, Blockbuster, and North Korea
Title	BLOCKBUSTED: Lazarus, Blockbuster, and North Korea - Intezer
Detected Hints/Tags/Attributes	39/2/44

Source URLs

	Redirection	Url
Details	Source	http://www.intezer.com/blockbusted-lazarus-blockbuster-north-korea/

URL Provider

Details	Provider	Source level domain
Details	intezer.com	www.intezer.com

Attributes

Details	Type	#Events	Value
Details	Domain	14	analyze.intezer.com
Details	Domain	2	www.israeldefense.co.il
Details	Domain	1	lzruziniu.com
Details	sha256	1	1d195c40169cbdb0f50eca40ebda62321aa05a54137635c7ebb2960690eb1d82
Details	sha256	1	2de5e99315a6cf42a46c8286ac4ea0bc842f6d78995833d2cab7de1cdad7dd8d
Details	sha256	1	a4a2e47161bbf5f6c1d5b1b3fba26a19dbfcdcf4eb575b56bde05c674089ae95
Details	sha256	1	ee3ecf100fc2042cfadeb0509ae4f49647daa1afcee2bd3098912247e155a1e7
Details	sha256	1	16eaa0298c66e0de40cc42568879fab9513f4d533c0fa1f5366346b4d70df50d
Details	sha256	1	dbae68e4cab678f2678da7c48d579868e35100f3596bf3fa792ee000c952c0ed
Details	sha256	3	9f177a6fb4ea5af876ef8a0bf954e37544917d9aaba04680a29303f24ca5c72c
Details	sha256	1	80b5cc9feb10fac41ee2958ab0f751bf807126e34dcb5435d2869ef1cf7abc41
Details	sha256	1	8edb59694ff239c90f33cdbb17bc67ebbd08ec77df5000c6616d7844040796b4
Details	sha256	1	db1f4abd2a8d3b17c14e8f31cb1da3a273cf51ed194ad0e4520346ed95708dad
Details	sha256	1	7429a6b6e8518a1ec1d1c37a8786359885f2fd4abde560adaef331ca9deaeefd
Details	sha256	1	4e8c10a7fa51a3ab089b284e86a7daaca779ed82ba1750607fc3bfa91681f9b1
Details	sha256	1	e79bbb45421320be05211a94ed507430cc9f6cf80d607d61a317af255733fcf2
Details	sha256	1	4481e31d42499d084317b79a3a6250e50302aa00603dacdd2dff3a8e3b911404
Details	sha256	1	9607ab45451bb6c52eeec8cf0669d1dd37c917baecef2d63564c7cec110932c0
Details	sha256	3	a606716355035d4a1ea0b15f3bee30aad41a2c32df28c2d468eafd18361d60d6
Details	sha256	1	0b4959764331ddbe7da71e6f8515d0be8f494b4107c2718bda9e0a85d8247488
Details	sha256	1	9fa326adbd71e58aeb7ea404b6b8d6be5742c547c525286b2e95444ab099ef9e
Details	sha256	1	8ba791b9611d5d6dfd40e08e43ad851675faea24c2f5bc4f541e475871999ad3
Details	sha256	1	4a84452752cf8e493ae820871096044edd9f6453366842927148e7d8e218dc87
Details	sha256	1	76e0eec565f4e50b57d74fb1a09ea9e356da0709cba3d5dab9b3702ba19d662c
Details	sha256	1	f09fb9a79bab6a927297e536594027016da7d7ab13e124c76a05889ec107ad02
Details	sha256	1	6dcd635875625426298a1d7b4ab346ee318b3afa2e6440677ab935e473bf782d
Details	sha256	1	959eb014a2d8ca8158d1f6a198205d331e0ebfb3ced5fd9004b8dcab4547987f
Details	sha256	1	3d481d166f27b48f103db39fda3845dfc962addd44e92e3187e0ddd1ee01c741
Details	sha256	1	de13155f4a4cb1af04539883545151905ad4496ea6ef34cb22e50831f7caa38a
Details	IPv4	1	114.215.107.218
Details	IPv4	3	41.131.29.59
Details	IPv4	3	176.35.250.93
Details	IPv4	3	64.86.34.24
Details	IPv4	1	58.6.21.11
Details	IPv4	1	118.140.97.6
Details	IPv4	1	190.216.219.247
Details	IPv4	1	201.26.209.137
Details	IPv4	1	14.161.14.196
Details	IPv4	2	220.132.191.110
Details	IPv4	1	92.42.54.184
Details	IPv4	1	182.180.143.39
Details	IPv4	1	193.251.27.90
Details	Url	8	https://analyze.intezer.com/#
Details	Url	1	http://www.israeldefense.co.il/he/comment/112488