ioc[.]one - OSINT Cyber Threat Intelligence Database

Post-holiday spam campaign delivers Neutrino Bot | Malwarebytes Labs

Tags

cmtmf-attack-pattern:	Masquerading
attack-pattern:	Data Dns - T1071.004 Dns - T1590.002 Malware - T1587.001 Malware - T1588.001 Masquerading - T1655 Masquerading - T1036 Masquerading

Show in Graph

Common Information

Type	Value
UUID	f067f103-b4e1-4f6a-aadf-047a5ee55038
Fingerprint	3e033ef8ddf45c6c
Analysis status	DONE
Considered CTI value	2
Text language
Published	Jan. 11, 2017, midnight
Added to db	Feb. 18, 2023, 2:22 a.m.
Last updated	Oct. 1, 2024, 2:58 p.m.
Headline	Post-holiday spam campaign delivers Neutrino Bot
Title	Post-holiday spam campaign delivers Neutrino Bot \| Malwarebytes Labs
Detected Hints/Tags/Attributes	33/2/27

Source URLs

	Redirection	Url
Details	Source	https://blog.malwarebytes.com/cybercrime/2017/01/post-holiday-spam-campaign-delivers-neutrino-bot/
Details	Redirection	https://www.malwarebytes.com/blog/cybercrime/2017/01/post-holiday-spam-campaign-delivers-neutrino-bot/
Details	Source	https://www.malwarebytes.com/blog/news/2017/01/post-holiday-spam-campaign-delivers-neutrino-bot

URL Provider

Details	Provider	Source level domain
Details	malwarebytes.com	blog.malwarebytes.com
Details	malwarebytes.com	www.malwarebytes.com

Attributes

Details	Type	#Events	Value
Details	Domain	1	microsoft.report
Details	Domain	1	saferunater.top
Details	Domain	1	saferunater.xyz
Details	Domain	1	saferunater.space
Details	Domain	1	agranfoundation.org
Details	Domain	1	xn--hastabakc-2pbb.net
Details	Domain	1	ecpi.ro
Details	Domain	1	ilkhaberadana.com
Details	Domain	1	cincote.com
Details	Domain	1	mallsofjeddah.com
Details	Domain	1	dianasoligorsk.by
Details	Domain	1	www.endclothing.cu.cc
Details	File	18	report.doc
Details	File	6	tasks.php
Details	File	2	nn.exe
Details	md5	1	2b796c0e248b02aa0c6fda288cb62531
Details	md5	1	621ea6c1f02470a137569be2f8412326
Details	md5	1	084f562da639bd4bfc6b92b7d5cdc014
Details	md5	1	bc00595440e801f8a5d2a2ad13b9791b
Details	sha256	1	8dd66dd191c9f0d2f4b5407e5d94e815e8007a3de21ab16de49be87ea8a92e8d
Details	sha256	1	87b7e57140e790b6602c461472ddc07abf66d07a3f534cdf293d4b73922406fe
Details	sha256	1	b1ae6fc1b97db5a43327a3d7241d1e55b20108f00eb27c1b8aa855f92f71cb4b
Details	sha256	1	ca64848f4c090846a94e0d128489b80b452e8c89c48e16a149d73ffe58b6b111
Details	Url	1	http://saferunater.top/n/tasks.php
Details	Url	1	http://saferunater.xyz/n/tasks.php
Details	Url	1	http://saferunater.space/n/tasks.php
Details	Url	1	http://godomenbit.bit/n/tasks.phpneutrino