ioc[.]one - OSINT Cyber Threat Intelligence Database

코니(Konni) APT 조직, 안드로이드 스파이 활동과 김수키 조직 유사성 분석

Tags

maec-delivery-vectors:

Show in Graph

Common Information

Type	Value
UUID	d304af86-2c02-4509-bdaa-3e8016e34404
Fingerprint	fade27460d7d4ffc
Analysis status	DONE
Considered CTI value	2
Text language
Published	Aug. 24, 2019, 5:42 p.m.
Added to db	Jan. 30, 2023, 4:36 p.m.
Last updated	Nov. 17, 2024, 11:36 p.m.
Headline
Title	코니(Konni) APT 조직, 안드로이드 스파이 활동과 김수키 조직 유사성 분석
Detected Hints/Tags/Attributes	18/1/142

Source URLs

	Redirection	Url
Details	Source	https://blog.alyac.co.kr/2486

URL Provider

Details	Provider	Source level domain
Details	alyac.co.kr	blog.alyac.co.kr

Attributes

Details	Type	#Events	Value
Details	Domain	1	naver.attach-download.com
Details	Domain	1	attach-download.com
Details	Domain	1	manage-downloader.com
Details	Domain	1	moo.corkmusicstation.com
Details	Domain	2	manage.app-wallet.com
Details	Domain	30	hanmail.net
Details	Domain	1	myaccount.rnailr.com
Details	Domain	1	rnailr.com
Details	Domain	2	artndesign2.cafe24.com
Details	Domain	25	daum.net
Details	Domain	2	mail.naver-download.com
Details	Domain	3	downloader-hanmail.net
Details	Domain	1	download-daum.net
Details	Domain	1	downloader-naver.com
Details	Domain	1	naver-download.com
Details	Domain	1	filer-download.com
Details	Domain	3	fighiting1013.org
Details	Domain	1	karachi-pk.com
Details	Domain	1	karachi-tan.com
Details	Domain	1	attachment-download.net
Details	Domain	246	mail.ru
Details	Domain	1	daum.attach-download.com
Details	Domain	1	webmail.attach-download.com
Details	Domain	1	mail.attach-download.com
Details	Domain	1	manage-download.com
Details	Domain	1	attach-download.net
Details	Domain	1	jang.es
Details	Domain	1	interpuber.com
Details	Domain	2	rnailb.com
Details	Domain	1	nuaver.com
Details	Domain	1	intercasher.com
Details	Domain	1	rnailo.com
Details	Domain	1	rnailn.com
Details	Domain	1	rnail-163.com
Details	Domain	1	163-mail-vertify.com
Details	Domain	1	mail-securiety.com
Details	Domain	2	app-wallet.com
Details	Domain	4	rneail.com
Details	Domain	1	rnaeil.com
Details	Domain	3	rnailm.com
Details	Domain	1	naerver.com
Details	Domain	4	rnaii.com
Details	Domain	2	grnaeil.com
Details	Domain	1	hanrnaii.net
Details	Domain	1	webrnail.net
Details	Domain	1	webrnail.com
Details	Domain	1	attach-filedown.net
Details	Domain	3	change-pw.com
Details	Domain	1	files-download.net
Details	Domain	3	down-error.com
Details	Domain	3	rnail-inbox.com
Details	Domain	1175	gmail.com
Details	Domain	7	seoulhobi.biz
Details	Domain	179	hotmail.com
Details	Domain	3	nidhelpnaver.com
Details	Domain	11	detect-respond.blogspot.com
Details	Domain	69	trojan.android
Details	Email	2	bitcoin025@hanmail.net
Details	Email	2	bitcoin014@hanmail.net
Details	Email	1	bitcoin001@hanmail.net
Details	Email	1	bitcoin040@hanmail.net
Details	Email	2	rninchurl@daum.net
Details	Email	1	65e5efe860b4c715s@mail.ru
Details	Email	1	jang.es@daum.net
Details	Email	1	bitcoin015@hanmail.net
Details	Email	2	bitcoin018@hanmail.net
Details	Email	1	bitcoin016@hanmail.net
Details	Email	3	bitcoin024@hanmail.net
Details	Email	1	11baku2017@mail.ru
Details	Email	1	hsnewstart1013@gmail.com
Details	Email	3	snow8949@hotmail.com
Details	File	1	'bithumbprotect.apk
Details	File	1	bithumbprotect.apk
Details	File	2	daumprotect.apk
Details	File	2	naverprotect.apk
Details	File	2	init.txt
Details	File	2	time.txt
Details	File	255	user.txt
Details	File	3	account.txt
Details	File	2	app.txt
Details	File	3	contact.txt
Details	File	1	sms_all.txt
Details	File	1	sdcard.txt
Details	File	1	sms_new.txt
Details	File	6	keylog.txt
Details	File	3	clipboard.txt
Details	File	1	record.mp4
Details	File	3	kakaotalk.apk
Details	File	2	qksms.apk
Details	File	2	capmarket.apk
Details	File	3	5.apk
Details	File	1	'strategy20180612.pdf
Details	File	5	img.png
Details	File	7	the-pyramid-of-pain.html
Details	md5	1	de68dffc8705c068bd475fb43dfcfdb9
Details	md5	1	adc530f0d0800e0992830c7ca8c7c198
Details	md5	1	17994bddf6416ebec82030221261e6a5
Details	md5	2	29506d03bf3f06df62089bed5af58906
Details	md5	2	6c290d6ddbe317844a4dccdc2259c6c1
Details	md5	2	9c025c3ff6ec04b7e67c9553ef4e2415
Details	md5	2	8384803283c01a529eeaec8128e6a20a
Details	md5	2	d503c3d182a632ac2c009c30e70951f2
Details	md5	2	ff9f17fb1dd02186ba461586a1734212
Details	md5	2	c1063cfa402e64882d41f88ada87c8d1
Details	md5	1	8969dc701a399d8a39c44bc99ea04f8c
Details	md5	1	aa1be190f84cbbb6d9381e467d8e5218
Details	md5	1	e0558f99a3de6619feff31d6e5e6dd39
Details	md5	1	ff9eff561fd793ddb9011cf7006d5f6c
Details	IPv4	2	193.148.16.45
Details	IPv4	2	37.72.175.223
Details	IPv4	2	91.235.116.144
Details	IPv4	1	188.241.39.220
Details	IPv4	1	62.133.58.60
Details	IPv4	1	188.241.39.10
Details	IPv4	1	104.243.41.186
Details	IPv4	1	188.241.58.59
Details	IPv4	1	46.17.175.29
Details	IPv4	2	188.241.58.60
Details	IPv4	1	156.67.222.226
Details	IPv4	1	45.34.176.130
Details	IPv4	1	154.194.120.14
Details	IPv4	1	103.227.176.19
Details	IPv4	1	198.252.103.65
Details	IPv4	1	198.252.102.89
Details	IPv4	1	27.102.106.122
Details	IPv4	1	188.241.58.61
Details	IPv4	1	194.124.34.62
Details	IPv4	2	27.255.79.205
Details	IPv4	1	160.202.162.78
Details	IPv4	1	27.102.115.16
Details	IPv4	1	185.224.138.172
Details	IPv4	1	156.67.222.228
Details	IPv4	1	91.235.116.227
Details	IPv4	4	91.235.116.232
Details	IPv4	1	27.255.77.111
Details	IPv4	3	192.186.142.74
Details	Url	1	http://193.148.16.45/manager
Details	Url	1	http://naver.attach-download.com/download/apk/kakaotalk.apk
Details	Url	1	http://attach-download.com/qksms/qksms.apk
Details	Url	1	http://artndesign2.cafe24.com/skin_board/s_build_cafeblog/exp_include/img.png
Details	Url	1	http://mail.naver-download.com
Details	Url	1	https://detect-respond.blogspot.com/2013/03/the-pyramid-of-pain.html