PandaZeuS’s Christmas Gift: Change in the Encryption scheme
Tags
attack-pattern: Data Botnet - T1583.005 Botnet - T1584.005 Credentials - T1589.001 Dns - T1071.004 Dns - T1590.002 Malware - T1587.001 Malware - T1588.001 Python - T1059.006
Show in Graph
Common Information
Type Value
UUID d89c77f0-6ac6-4183-8f2a-e65023234137
Fingerprint e40942ec918109d
Analysis status DONE
Considered CTI value 0
Text language
Published Dec. 28, 2017, midnight
Added to db Sept. 26, 2022, 9:31 a.m.
Last updated Dec. 9, 2024, 2:52 p.m.
Headline UNKNOWN
Title PandaZeuS’s Christmas Gift: Change in the Encryption scheme
Detected Hints/Tags/Attributes 29/1/14
Source URLs
Redirection Url
Details Source https://www.spamhaus.org/news/article/771/pandazeuss-christmas-gift-change-in-the-encryption-scheme
Details Source https://www.spamhaus.org/news/article/771/
URL Provider
Details Provider Source level domain
Details spamhaus.org www.spamhaus.org
Attributes
Details Type #Events CTI Value
Details Domain 1 
922b031aac47.tk
Details Domain 1 
262d65fc7f10.ga
Details Domain 2 
gromnes.top
Details Domain 2 
aklexim.top
Details Domain 21 
www.spamhaus.org
Details File 1 
2egublocatolaubhaqiec.dat
Details File 1 
1iqrozoymydfykiabloyx.dat
Details md5 1 
0d1150d89f94701b54c7feb81d83a8fd
Details md5 1 
02ac00fe985091b78eaeb64ee697d57f
Details IPv4 1 
89.18.27.155
Details IPv4 1 
27.102.67.144
Details Url 1 
https://922b031aac47.tk/2egublocatolaubhaqiec.dat
Details Url 1 
https://gromnes.top/1iqrozoymydfykiabloyx.dat
Details Url 1 
http://www.spamhaus.org/news/article/771/pandazeuss-christmas-gift-change-in-the-encryption-scheme