IoC (TT Malware Log)

Malware の IoC(Indicator)情報

◆注意◆ マルウェア解析専析家向けサイト

     FQDN, URL,IPアドレス等はそのまま掲載しています


** Caution ** Malware expert site

                    FQDN, URL, IP address etc. are posted as they are

Winnti

【インディケータ情報】

■ハッシュ情報(Sha256) - (Winnti) -

f0aaded01e649160ed5d133d3a5c2298fd0dd94c6af6fff2b5223b36e9aa615e
a9140dfc1ea6f9a5fb52c18b63500e38ac8fe1cad6ef3814b0e322f2a6216095
f5ab94137a9a4f769b56c9619c0056f510cc62c7488fb150ee16da44d3b39a03
a9d36dcc3b8b4ab2852f20109a8a4bad29b963c395131fcf107a19b8efdd803b
8409d94069c2ef2bda74cdfcf717a42a10ca97d63c32a5e3f3308631ca1683c9
bfa8948f72061eded548ef683830de068e438a6eaf2da44e0398a37ac3e26860

(以上は Macnica Networks の情報: 引用元は https://www.macnica.net/file/mpressioncss_2018-1h-report_mnc_rev3_nopw.pdf )


【検索】

google: f0aaded01e649160ed5d133d3a5c2298fd0dd94c6af6fff2b5223b36e9aa615e
google: a9140dfc1ea6f9a5fb52c18b63500e38ac8fe1cad6ef3814b0e322f2a6216095
google: f5ab94137a9a4f769b56c9619c0056f510cc62c7488fb150ee16da44d3b39a03
google: a9d36dcc3b8b4ab2852f20109a8a4bad29b963c395131fcf107a19b8efdd803b
google: 8409d94069c2ef2bda74cdfcf717a42a10ca97d63c32a5e3f3308631ca1683c9
google: bfa8948f72061eded548ef683830de068e438a6eaf2da44e0398a37ac3e26860


【VT検索】

https://www.virustotal.com/gui/file/f0aaded01e649160ed5d133d3a5c2298fd0dd94c6af6fff2b5223b36e9aa615e
https://www.virustotal.com/gui/file/a9140dfc1ea6f9a5fb52c18b63500e38ac8fe1cad6ef3814b0e322f2a6216095
https://www.virustotal.com/gui/file/f5ab94137a9a4f769b56c9619c0056f510cc62c7488fb150ee16da44d3b39a03
https://www.virustotal.com/gui/file/a9d36dcc3b8b4ab2852f20109a8a4bad29b963c395131fcf107a19b8efdd803b
https://www.virustotal.com/gui/file/8409d94069c2ef2bda74cdfcf717a42a10ca97d63c32a5e3f3308631ca1683c9
https://www.virustotal.com/gui/file/bfa8948f72061eded548ef683830de068e438a6eaf2da44e0398a37ac3e26860




【資料】

◆日本を狙うサイバーエスピオナージ (標的型攻撃)の動向 2018 年上半期 (Macnica Networks, 2018/10/01)
https://www.macnica.net/file/mpressioncss_2018-1h-report_mnc_rev3_nopw.pdf
https://malware-log.hatenablog.com/entry/2018/10/01/000000_7