Localization and Customization of Credit Card Stealing Malware
Tags
country: Bulgaria Italy
attack-pattern: Data Credentials - T1589.001 Domains - T1583.001 Domains - T1584.001 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004
Show in Graph
Common Information
Type Value
UUID fff84134-9eaf-440e-8c21-a30ab2496303
Fingerprint ba870483886227cf
Analysis status DONE
Considered CTI value 0
Text language
Published Dec. 6, 2018, 11 a.m.
Added to db Jan. 18, 2023, 8:54 p.m.
Last updated Sept. 1, 2024, 9:08 a.m.
Headline Localization and Customization of Credit Card Stealing Malware
Title Localization and Customization of Credit Card Stealing Malware
Detected Hints/Tags/Attributes 26/2/14
Source URLs
Redirection Url
Details Source https://blog.sucuri.net/2018/12/localization-and-customization-of-credit-card-stealing-malware.html
URL Provider
Details Provider Source level domain
Details sucuri.net blog.sucuri.net
Attributes
Details Type #Events CTI Value
Details Domain 1 
elegrina.com
Details Domain 1 
kinfirighbetted.host
Details Domain 1 
www.kinfirighbetted.host
Details Domain 1 
special-tech1.info
Details Domain 1 
special-tech2.info
Details Domain 1 
greatwebstat.com
Details Domain 1 
sales4reason.com
Details Domain 1 
l33a3730.justinstalledpanel.com
Details IPv4 1 
185.92.74.122
Details Url 1 
https://elegrina.com/assets/<domain>.js
Details Url 1 
https://elegrina.com/tr
Details Url 1 
https://kinfirighbetted.host/d/<domain>.js
Details Url 1 
https://www.kinfirighbetted.host
Details Url 1 
https://kinfirighbetted.host:443