0检测的Melofee 木马新变种曝光,专攻RHEL 7.9系统
Tags
| maec-delivery-vectors: | Watering Hole |
Common Information
| Type | Value |
|---|---|
| UUID | f7755c2a-36b7-412d-b9a6-80aaa9c69ecf |
| Fingerprint | 393cdd2f35019db8 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Nov. 12, 2024, midnight |
| Added to db | Nov. 12, 2024, 4:57 a.m. |
| Last updated | Nov. 12, 2024, 2:52 p.m. |
| Headline | 0检测的Melofee 木马新变种曝光,专攻RHEL 7.9系统 |
| Title | 0检测的Melofee 木马新变种曝光,专攻RHEL 7.9系统 |
| Detected Hints/Tags/Attributes | 16/1/10 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://blog.xlab.qianxin.com/analysis_of_new_melofee_variant/ |
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 420 | ✔ | 奇安信 X 实验室 | https://blog.xlab.qianxin.com/rss/ | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 3 | filemanage.micrsofts-file.com |
|
| Details | Domain | 3 | micrsofts-file.com |
|
| Details | Domain | 3 | www.micrsofts-file.com |
|
| Details | md5 | 2 | 603e38a59efcf6790f2b4593edb9faf5 |
|
| Details | md5 | 2 | 839f60efee25f07df7b23ba9d6bef892 |
|
| Details | sha1 | 2 | 48bcb3f7c78bc746e25264058a76145b63bbf440 |
|
| Details | sha1 | 2 | c440028449ebce5c899a51ef0eb4d7fc43493253 |
|
| Details | IPv4 | 3 | 45.92.156.166 |
|
| Details | IPv4 | 5 | 91.195.240.123 |
|
| Details | Url | 2 | http://45.92.156.166/klove/pskt |