UNKNOWN
Tags
country: Azerbaijan
Common Information
Type Value
UUID d3098e09-b739-40a8-b2ed-e82ad7142cf4
Fingerprint 660b40f94155c602
Analysis status IN_PROGRESS
Considered CTI value 0
Text language
Published None
Added to db Dec. 20, 2024, 7:56 a.m.
Last updated Dec. 21, 2024, 4:24 a.m.
Headline UNKNOWN
Title UNKNOWN
Detected Hints/Tags/Attributes 7/1/42
Source URLs
Attributes
Details Type #Events CTI Value
Details Domain 15
documents.zip
Details Domain 4
www.digitalpoint.com
Details Domain 122
www.reddit.com
Details Domain 222
drive.google.com
Details Domain 2
yussuf.zip
Details Domain 3
dellgenius.hopto.org
Details Domain 6752
163.com
Details File 13
documents.zip
Details File 3
reportapi.js
Details File 2
之后向远程服务器register.php
Details File 2
runss函数会执行工作目录下的python.exe
Details File 2
向view.php
Details File 2
分别访问send.php
Details File 2
和upload.php
Details File 2
上传filetoupload.txt
Details File 2
和878478ddd3.tmp
Details File 2
takecookies函数会执行特定目录下的ccv.exe
Details File 2
收集完成后向cookies.php
Details File 2
yussuf.zip
Details File 3
ccv.exe
Details File 17
x.js
Details File 2
ccv_old.exe
Details File 9
ncat.exe
Details File 2
rat进行分析时曾经提到过ccv.exe
Details File 2
这个目录下下载的ccv.exe
Details File 2
且该目录下的x.js
Details File 2
azerbaijan_special.doc
Details File 2
mofa.docx
Details md5 2
3fab9cd9a1da290bdf99256c1f51a4e9
Details md5 2
7fee8223d6e4f82d6cd115a28f0b6d58
Details md5 2
fc0f2042e63aebd9b3aeb639501dd827
Details md5 2
2f62db1a1f616deabcbe1dda5b17a00b
Details md5 2
b6e0db27c2b3e62db616b0918a5d8ed8
Details md5 3
fcce335ad11f4e568e6fe23ae766b187
Details md5 3
d76f443222551edfe07b357c3bb157da
Details md5 3
b034972a9540b3b00161310f5bf03fc9
Details md5 2
ba1618a981f755eb752aa5dc90bd70a4
Details md5 2
3aadbf7e527fc1a050e1c97fea1cba4d
Details md5 3
7c487d8462567a826da95c799591f5fb
Details IPv4 3
139.28.37.63
Details IPv4 4
185.61.137.141
Details IPv4 5
185.62.190.89