Moar Locky: "Bill-12345" from victim's own domain
Tags
| country: | Ukraine |
| attack-pattern: | Javascript - T1059.007 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 |
Common Information
| Type | Value |
|---|---|
| UUID | fab2e7d6-8e3e-46ad-b3aa-f2cd2e75042e |
| Fingerprint | 91573d93bd7c75a7 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Nov. 23, 2016, 12:19 p.m. |
| Added to db | Jan. 18, 2023, 8:26 p.m. |
| Last updated | Sept. 2, 2024, 8:26 a.m. |
| Headline | Dynamoo's Blog |
| Title | Moar Locky: "Bill-12345" from victim's own domain |
| Detected Hints/Tags/Attributes | 12/2/55 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | 589af1aa1aaf4cb9ce571fced687b8ac.zip |
|
| Details | Domain | 1 | asrcargo.ru |
|
| Details | Domain | 1 | decorvise.com |
|
| Details | Domain | 1 | gyreunbar.com |
|
| Details | Domain | 1 | halsklam.net |
|
| Details | Domain | 1 | myphychoice.com |
|
| Details | Domain | 1 | naruto55.com |
|
| Details | Domain | 1 | netclip.ro |
|
| Details | Domain | 1 | nikanels.pl |
|
| Details | Domain | 1 | nikitassalon.com |
|
| Details | Domain | 1 | njzhigaokt.com |
|
| Details | Domain | 1 | nkfyfs.cn |
|
| Details | Domain | 1 | noamshop.com |
|
| Details | Domain | 1 | notretribu.eu |
|
| Details | Domain | 1 | nuevarazajeans.com |
|
| Details | Domain | 1 | odtahova-sluzba-praha.eu |
|
| Details | Domain | 1 | oehome.com.cn |
|
| Details | Domain | 1 | ogrodexmilicz.pl |
|
| Details | Domain | 1 | ogustine.com |
|
| Details | Domain | 1 | onushilon.org |
|
| Details | Domain | 1 | o-sis.jp |
|
| Details | Domain | 1 | ossiatzki.com |
|
| Details | Domain | 1 | ostra.ro |
|
| Details | Domain | 1 | ouiphone.fr |
|
| Details | Domain | 1 | ovsz.ru |
|
| Details | Domain | 1 | parenclub-devilsenangels.nl |
|
| Details | Domain | 1 | paronleather.com |
|
| Details | Domain | 1 | paulking.it |
|
| Details | Domain | 1 | pedalcars.ru |
|
| Details | Domain | 1 | peppyinsta.com |
|
| Details | Domain | 1 | piaristesafriquecentrale.org |
|
| Details | Domain | 1 | plastictas.nl |
|
| Details | Domain | 1 | popek.si |
|
| Details | Domain | 1 | pppconstruction.co.za |
|
| Details | Domain | 1 | propfisher.com |
|
| Details | Domain | 1 | pusulam.com.tr |
|
| Details | Domain | 1 | qybest.cn |
|
| Details | Domain | 1 | raivel.pt |
|
| Details | Domain | 1 | rdyy.cn |
|
| Details | Domain | 1 | reaga.cz |
|
| Details | Domain | 1 | realearthproperties.in |
|
| Details | Domain | 1 | realtorpics.net |
|
| Details | Domain | 1 | receptoare-satelit.ro |
|
| Details | Domain | 1 | revaitsolutions.com |
|
| Details | Domain | 1 | rimiller.com |
|
| Details | Domain | 2 | time-host.net |
|
| Details | 1 | julia.newenham@victimdomain.tld |
||
| Details | File | 1 | 589af1aa1aaf4cb9ce571fced687b8ac.zip |
|
| Details | File | 1 | nikanels.pl |
|
| Details | File | 1 | ogrodexmilicz.pl |
|
| Details | md5 | 1 | 589af1aa1aaf4cb9ce571fced687b8ac |
|
| Details | md5 | 1 | 4e207b30c5eae01fa136f3d89d59bbbe |
|
| Details | IPv4 | 1 | 80.87.202.49 |
|
| Details | IPv4 | 1 | 94.242.55.81 |
|
| Details | IPv4 | 2 | 95.46.114.205 |