Android Malware Appears Linked to Lazarus Cybercrime Group
Tags
attack-pattern: Data Domains - T1583.001 Domains - T1584.001 Ip Addresses - T1590.005 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004
Show in Graph
Common Information
Type Value
UUID cc803738-41e7-488f-9b8e-4e04e64b471a
Fingerprint ed359d10c8baaacf
Analysis status DONE
Considered CTI value 2
Text language
Published Nov. 20, 2017, noon
Added to db Dec. 21, 2022, 4:44 p.m.
Last updated Sept. 2, 2024, 4:04 p.m.
Headline Android Malware Appears Linked to Lazarus Cybercrime Group
Title Android Malware Appears Linked to Lazarus Cybercrime Group
Detected Hints/Tags/Attributes 41/1/19
Source URLs
Redirection Url
Details Source https://securingtomorrow.mcafee.com/mcafee-labs/android-malware-appears-linked-to-lazarus-cybercrime-group/#sf174581990
Details Source https://www.mcafee.com/blogs/other-blogs/mcafee-labs/android-malware-appears-linked-to-lazarus-cybercrime-group/
URL Provider
Details Provider Source level domain
Details mcafee.com securingtomorrow.mcafee.com
Details mcafee.com www.mcafee.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 504 https://blogs.mcafee.com/tag/cybercrime/feed 2024-08-31 10:08
Attributes
Details Type #Events CTI Value
Details Domain 1 
mail.wavenet.com.ar
Details Domain 1 
vmware-probe.zol.co.zw
Details Domain 1 
wtps.org
Details File 1 
dnscd.db
Details md5 1 
24f61120946ddac5e1d15cd64c48b7e6
Details md5 1 
8b98bdf2c6a299e1fed217889af54845
Details md5 1 
9ce9a0b3876aacbf0e8023c97fd0a21d
Details IPv4 1 
110.45.145.103
Details IPv4 1 
114.215.130.173
Details IPv4 1 
119.29.11.203
Details IPv4 1 
124.248.228.30
Details IPv4 1 
139.196.55.146
Details IPv4 1 
14.139.200.107
Details IPv4 2 
175.100.189.174
Details IPv4 1 
181.119.19.100
Details IPv4 1 
197.211.212.31
Details IPv4 1 
199.180.148.134
Details IPv4 2 
217.117.4.110
Details IPv4 1 
61.106.2.96