New Panda Stealer Targets Cryptocurrency Wallets
Tags
Common Information
| Type | Value |
|---|---|
| UUID | fc9e6958-10b1-41a9-9ef8-8d5636c0a65c |
| Fingerprint | a5b9a9dbb2ff3647 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | May 4, 2021, midnight |
| Added to db | Sept. 11, 2022, 12:30 p.m. |
| Last updated | Nov. 17, 2024, 6:55 p.m. |
| Headline | New Panda Stealer Targets Cryptocurrency Wallets |
| Title | New Panda Stealer Targets Cryptocurrency Wallets |
| Detected Hints/Tags/Attributes | 51/2/65 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 45 | paste.ee |
|
| Details | Domain | 7 | agile.net |
|
| Details | Domain | 1 | bingoroll2.net |
|
| Details | Domain | 1 | cryptojora.club |
|
| Details | Domain | 1 | f0522235.xsph.ru |
|
| Details | Domain | 1 | micromagican.com |
|
| Details | Domain | 1 | repairyou.com |
|
| Details | Domain | 1 | traps.ml |
|
| Details | Domain | 1 | tydaynsosi.ru |
|
| Details | Domain | 1 | cocojambo.collector-steal.ga |
|
| Details | Domain | 1 | guarantte.xyz |
|
| Details | Domain | 1 | f0527189.xsph.ru |
|
| Details | Domain | 1 | f0527703.xsph.ru |
|
| Details | Domain | 1 | j1145058.myjino.ru |
|
| Details | Domain | 1 | 1wftyu121cwr24v3hswa1234g.tk |
|
| Details | Domain | 1 | f0527262.xsph.ru |
|
| Details | Domain | 1 | steammd0.beget.tech |
|
| Details | Domain | 1 | prtboss.com |
|
| Details | Domain | 1 | biscosuae.com |
|
| Details | Domain | 1 | prtanet.com |
|
| Details | File | 149 | msbuild.exe |
|
| Details | File | 22 | build.exe |
|
| Details | File | 1 | tai1.exe |
|
| Details | File | 1 | chirik.exe |
|
| Details | File | 1 | sosi.exe |
|
| Details | File | 14 | build2.exe |
|
| Details | File | 1 | henry.exe |
|
| Details | File | 1 | 1kwo.txt |
|
| Details | File | 1 | 1tgk.txt |
|
| Details | File | 3 | collect.php |
|
| Details | sha256 | 1 | 6413be289cf38c2462bd8c6b8bad47f8d953f399e1ccba30126a1fb70d13a733 |
|
| Details | sha256 | 1 | 4ff1f8a052addbc5a0388dfa7f32cc493d7947c43dc7096baa070bfc4ae0a14e |
|
| Details | sha256 | 1 | 0a9f466fb5526fd512dd48c3ba9551dbd342bdb314a87d5c6f730d3c80041da6 |
|
| Details | sha256 | 1 | 05d38ac5460418b0aa813fc8c582ee5be42be192de10d188332901157c54287c |
|
| Details | sha256 | 1 | 1efa74e72060865ff07bda90c4f5d0c470dd20198de7144960c88cef248c4457 |
|
| Details | IPv4 | 1 | 23.92.213.108 |
|
| Details | IPv4 | 1 | 83.220.175.66 |
|
| Details | Url | 1 | http://23.92.213.108/po/tai1.exe |
|
| Details | Url | 1 | http://83.220.175.66/build.exe |
|
| Details | Url | 1 | https://bingoroll2.net/chirik.exe |
|
| Details | Url | 1 | http://bingoroll2.net/chirik.exe |
|
| Details | Url | 1 | http://cryptojora.club/sosi.exe |
|
| Details | Url | 1 | http://f0522235.xsph.ru/build.exe |
|
| Details | Url | 1 | http://f0522235.xsph.ru/build2.exe |
|
| Details | Url | 1 | http://micromagican.com/chirik.exe |
|
| Details | Url | 1 | http://repairyou.com/henry.exe |
|
| Details | Url | 1 | http://traps.ml/build.exe |
|
| Details | Url | 1 | http://tydaynsosi.ru/loader/23/1kwo.txt |
|
| Details | Url | 1 | http://tydaynsosi.ru/loader/23/1tgk.txt |
|
| Details | Url | 1 | http://cocojambo.collector-steal.ga/collect.php |
|
| Details | Url | 1 | http://f0522235.xsph.ru/collect.php |
|
| Details | Url | 1 | http://guarantte.xyz/collect.php |
|
| Details | Url | 1 | http://f0527189.xsph.ru/collect.php |
|
| Details | Url | 1 | http://f0527703.xsph.ru/collect.php |
|
| Details | Url | 1 | http://j1145058.myjino.ru/collect.php |
|
| Details | Url | 1 | http://1wftyu121cwr24v3hswa1234g.tk/collect.php |
|
| Details | Url | 1 | http://f0527262.xsph.ru/collect.php |
|
| Details | Url | 1 | http://steammd0.beget.tech/collect.php |
|
| Details | Url | 1 | http://23.92.213.108/po/axsz3.exe |
|
| Details | Url | 1 | http://prtboss.com/collect.php |
|
| Details | Url | 1 | http://biscosuae.com |
|
| Details | Url | 1 | http://prtanet.com |
|
| Details | Url | 1 | https://paste.ee/r/plpr9 |
|
| Details | Url | 1 | https://paste.ee/r/qsowz |
|
| Details | Url | 1 | https://paste.ee/r/6toiy |