【インディケータ情報】
■ハッシュ情報(Sha256) - XXMM downloader -
de18ebedc5b29d66244773dda80b22ecf2c453cdbeaa85149c4ff0e96bdc4478
70ef2e2fa3ac2c44a34963aca5dfe79e2b4f51795181374cca63bbf789f8a7f0
b11941e0510e02283e7732a72f853027ea9271a2d4dc87d736ae33275eab2806
(以上は SecureWorks(Dell) の情報: 引用元は https://www.secureworks.com/research/bronze-butler-targets-japanese-businesses )
【検索】
google: de18ebedc5b29d66244773dda80b22ecf2c453cdbeaa85149c4ff0e96bdc4478
google: 70ef2e2fa3ac2c44a34963aca5dfe79e2b4f51795181374cca63bbf789f8a7f0
google: b11941e0510e02283e7732a72f853027ea9271a2d4dc87d736ae33275eab2806
【VT検索】
https://www.virustotal.com/gui/file/de18ebedc5b29d66244773dda80b22ecf2c453cdbeaa85149c4ff0e96bdc4478
https://www.virustotal.com/gui/file/70ef2e2fa3ac2c44a34963aca5dfe79e2b4f51795181374cca63bbf789f8a7f0
https://www.virustotal.com/gui/file/b11941e0510e02283e7732a72f853027ea9271a2d4dc87d736ae33275eab2806
【ブログ】
◆BRONZE BUTLER Targets Japanese Enterprises (SecureWorks, 2017/10/12)
https://www.secureworks.com/research/bronze-butler-targets-japanese-businesses
⇒ http://malware-log.hatenablog.com/entry/2017/10/12/000000_6