ioc[.]one - OSINT Cyber Threat Intelligence Database

Corona DDoS bot – Max Kersten

Tags

attack-pattern:

Data Dns - T1071.004 Dns - T1590.002 Dns Server - T1583.002 Dns Server - T1584.002 Malware - T1587.001 Malware - T1588.001 Tool - T1588.002 Denial Of Service

Show in Graph

Common Information

Type	Value
UUID	db25eed2-e238-4d36-b25b-b11b63673196
Fingerprint	2c11bb51b8a93388
Analysis status	DONE
Considered CTI value	2
Text language
Published	Aug. 19, 2022, midnight
Added to db	Sept. 26, 2022, 9:30 a.m.
Last updated	Dec. 22, 2024, 1:39 p.m.
Headline	Corona DDoS bot
Title	Corona DDoS bot – Max Kersten
Detected Hints/Tags/Attributes	52/1/8

Source URLs

	Redirection	Url
Details	Source	https://maxkersten.nl/binary-analysis-course/malware-analysis/corona-ddos-bot/

URL Provider

Details	Provider	Source level domain
Details	maxkersten.nl	maxkersten.nl

Attributes

Details	Type	#Events	CTI	Value
Details	md5	1		c2ab26263fa70e28e6d63b4fe4519a93
Details	sha1	1		2f1194a220b677fbeb66ad6fed606e795abc5fd0
Details	sha256	1		b2aa076b43bb3369b6af3e884896679009dd91222f4c29f28426fdedc46d2bde
Details	IPv4	1		91.209.70.174
Details	IPv4	317		8.8.8.8
Details	IPv4	1576		127.0.0.1
Details	IPv4	1		91.209.70.22
Details	Url	1		http://91.209.70.174/corona.x86_64