An Exploit Kit dedicated to CSRF Pharming
Tags
maec-delivery-vectors: Watering Hole
attack-pattern: Data Models Dns - T1071.004 Dns - T1590.002 Dns Server - T1583.002 Dns Server - T1584.002 Exploits - T1587.004 Exploits - T1588.005 Financial Theft - T1657 Javascript - T1059.007 Malvertising - T1583.008 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566
Show in Graph
Common Information
Type Value
UUID e4e46876-3671-47f8-9974-c21c99ea1708
Fingerprint 52340118f6908af8
Analysis status DONE
Considered CTI value 0
Text language
Published May 22, 2015, midnight
Added to db Sept. 26, 2022, 9:30 a.m.
Last updated Nov. 17, 2024, 11:40 p.m.
Headline MDNC | Malware don't need Coffee
Title An Exploit Kit dedicated to CSRF Pharming
Detected Hints/Tags/Attributes 39/2/19
Source URLs
Redirection Url
Details Source http://malware.dontneedcoffee.com/2015/05/an-exploit-kit-dedicated-to-csrf.html
Details Source https://malware.dontneedcoffee.com/2015/05/an-exploit-kit-dedicated-to-csrf.html
URL Provider
Details Provider Source level domain
Details dontneedcoffee.com malware.dontneedcoffee.com
Attributes
Details Type #Events CTI Value
Details CVE 3 
cve-2015-1187
Details CVE 4 
cve-2013-2645
Details Domain 358 
pastebin.com
Details Domain 4128 
github.com
Details Domain 1 
05-22.zip
Details File 9 
raw.php
Details File 1 
ngwblnlfmvjazwf17swal1tn5qqjbx.inf
Details File 1 
e_x.js
Details File 1 
dnd.php
Details File 1 
gcd.php
Details File 1 
detectrtc.js
Details File 1 
routerbf_2015-05-22.zip
Details Github username 1 
muaz-khan
Details IPv4 1 
185.82.216.86
Details IPv4 1 
217.12.202.93
Details IPv4 1 
37.139.50.45
Details Url 1 
http://pastebin.com/raw.php?i=tseuajtq
Details Url 1 
http://ngwblnlfmvjazwf17swal1tn5qqjbx.informationdrommers
Details Url 1 
https://github.com/muaz-khan/detectrtc/blob/master/detectrtc.js