IoC (TT Malware Log)

Malware の IoC(Indicator)情報

◆注意◆ マルウェア解析専析家向けサイト

     FQDN, URL,IPアドレス等はそのまま掲載しています


** Caution ** Malware expert site

                    FQDN, URL, IP address etc. are posted as they are

Ursnif (2019/08/02)

Malware: Ursnif / Gozi / DreamBot / Snifula / Papras (Banking)

【インディケータ情報】

■ハッシュ情報(Sha256) - Ursnif -
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(以上は Talos(CISCO)の情報: 引用元は )


【検索】

google: 09de71ba2e0a093748878986b5a845a6a826009638f11dbc0cac7450d55943bd
google: 184abb514e009fbeedeb23d28f3f4d2ba30f2407680dbdda112e5a2761cb904b
google: 1b4576a2a5ba0f49f1475c2b993201acea056c342bdc0c7eaabd22718e1a52bb
google: 1ec792344097e1ebd114fd49e90e3d0a040a11bb18d3bef5333aebbe12a95a59
google: 1fa590f73f1cce34190ef3975835ad9d48bf03a3718fdb306cd5dae387dc91b9
google: 1ff1c2bd12738bc3ee36651917e52d76bb2c165b6b96594dac4c9179c6ee3c1f
google: 2496306cf77459222d8aad059e22bdde9d963561c7495589e907517b4fdcf495
google: 25062ef38c0e9751e8b619eed7ab76a4fe61d4c178db9c1b9dddd2cf49afbbac
google: 28a09b1a512cbc0b51850b82a99dfec4597b8fd0a5647d461bb2642fab259792
google: 2992047d9fa9e052e63c116a4d66929306ca5e484aae00c5cbf16df8429e9c52
google: 34a36bc17cc76d13e8610b10dddd0855b4c7ec4545a21048843bba1a3b0165ed
google: 3aefeaad4bb74267dfeb3bfacba97f112df7fd4d6bcf0011da48ef723530fcdf
google: 3af45cf6205e4ccec0d57e0dafd09054167b337f4ddd4cb46ed17b16f5247b42
google: 4437c72cd4f0e98ff080328135531b5bd83cd9420731ccb1ec3c410207b931b9
google: 4dd835aa054bc5e17bd4a38454b94fec1565dcea9883b1adfbac691d5a014a3c
google: 4e1e91f011e8a233409ac3cbd4c99d5b8e202296fe11c745fdb37daf48bb9a6e
google: 4f2171077a8413912ed96f60514396708e6aeac2b88124bb9c1fce5858d42597
google: 5147f2ac46cb1f5716b6b84ad6f89480b317e788c05ce2e2dce7c8355f214e5d
google: 5efe419c36aa35ed45f7892304e509093e5d7bcf3eaeea424cc00fb44bf78aae
google: 6c22722f45247e1384fc7b1cce569cdf6e07c38faf56c8aa63880172f2a9d54a
google: 7236e727ba5221e7b863c5748e4837e170ed15cd7f9e6608029b7117a021552a
google: 7a8b10e464c31aa574dd3d8f6d41d4361ebbb5c1e48ff08b3871789287056c75
google: 8cdce07c34684d8613e50bd66df5acbe3f88513417c02049ec25d927ee6dee8f
google: 90263c41cca8e6215b1b1d90c90fbb396b104cb284463e798be50d4c3849cf72
google: 92babffc76f0e8cdd1e58ed39c001943c3b30e2e220abd7f1fcb65e8e4c3829d
google: 9f7b0e7d79bd98d6152f84c83fab6f97e994d5572a077e208b3f45eccb406045
google: 9f9b3c60def7afb9ddcbacc645671a18394657eb89f47f0c7102e56cbbaa3e82
google: a6c042b24d497065683180b0c170a60c61cfb8c43c2bf3ba72e7463774aa435e
google: aac9d2d21f634157eb8d3867a2c72042a83cabc3f0142b12763312f5a0b0a83a
google: c5860041ad8a1f0b765571eaf100fd539805491f0621a21b5cee8c1d5d30b09a
google: cb5ee51b725a9386bcf032211c13349f914f6e75e0547eb77a620a63eaf7c003
google: cc876b685987f0999fb976c5b39b5d564d81a04eb4a0bb06d435a480b0b3e053
google: d03df865bd65112fae4ffefa1d3a88a9f7f4706f77e8204ffa211e5671e12570
google: ea7f51ea399ba4f740b481ceff31b6f46499f1ad8683f5332c25b85672bdd4f4
google: fbe51723efc059a4467122254ef2ec198f73e28df4c988341d69dcca2a7e4244


【VT検索】

https://www.virustotal.com/gui/file/09de71ba2e0a093748878986b5a845a6a826009638f11dbc0cac7450d55943bd
https://www.virustotal.com/gui/file/184abb514e009fbeedeb23d28f3f4d2ba30f2407680dbdda112e5a2761cb904b
https://www.virustotal.com/gui/file/1b4576a2a5ba0f49f1475c2b993201acea056c342bdc0c7eaabd22718e1a52bb
https://www.virustotal.com/gui/file/1ec792344097e1ebd114fd49e90e3d0a040a11bb18d3bef5333aebbe12a95a59
https://www.virustotal.com/gui/file/1fa590f73f1cce34190ef3975835ad9d48bf03a3718fdb306cd5dae387dc91b9
https://www.virustotal.com/gui/file/1ff1c2bd12738bc3ee36651917e52d76bb2c165b6b96594dac4c9179c6ee3c1f
https://www.virustotal.com/gui/file/2496306cf77459222d8aad059e22bdde9d963561c7495589e907517b4fdcf495
https://www.virustotal.com/gui/file/25062ef38c0e9751e8b619eed7ab76a4fe61d4c178db9c1b9dddd2cf49afbbac
https://www.virustotal.com/gui/file/28a09b1a512cbc0b51850b82a99dfec4597b8fd0a5647d461bb2642fab259792
https://www.virustotal.com/gui/file/2992047d9fa9e052e63c116a4d66929306ca5e484aae00c5cbf16df8429e9c52
https://www.virustotal.com/gui/file/34a36bc17cc76d13e8610b10dddd0855b4c7ec4545a21048843bba1a3b0165ed
https://www.virustotal.com/gui/file/3aefeaad4bb74267dfeb3bfacba97f112df7fd4d6bcf0011da48ef723530fcdf
https://www.virustotal.com/gui/file/3af45cf6205e4ccec0d57e0dafd09054167b337f4ddd4cb46ed17b16f5247b42
https://www.virustotal.com/gui/file/4437c72cd4f0e98ff080328135531b5bd83cd9420731ccb1ec3c410207b931b9
https://www.virustotal.com/gui/file/4dd835aa054bc5e17bd4a38454b94fec1565dcea9883b1adfbac691d5a014a3c
https://www.virustotal.com/gui/file/4e1e91f011e8a233409ac3cbd4c99d5b8e202296fe11c745fdb37daf48bb9a6e
https://www.virustotal.com/gui/file/4f2171077a8413912ed96f60514396708e6aeac2b88124bb9c1fce5858d42597
https://www.virustotal.com/gui/file/5147f2ac46cb1f5716b6b84ad6f89480b317e788c05ce2e2dce7c8355f214e5d
https://www.virustotal.com/gui/file/5efe419c36aa35ed45f7892304e509093e5d7bcf3eaeea424cc00fb44bf78aae
https://www.virustotal.com/gui/file/6c22722f45247e1384fc7b1cce569cdf6e07c38faf56c8aa63880172f2a9d54a
https://www.virustotal.com/gui/file/7236e727ba5221e7b863c5748e4837e170ed15cd7f9e6608029b7117a021552a
https://www.virustotal.com/gui/file/7a8b10e464c31aa574dd3d8f6d41d4361ebbb5c1e48ff08b3871789287056c75
https://www.virustotal.com/gui/file/8cdce07c34684d8613e50bd66df5acbe3f88513417c02049ec25d927ee6dee8f
https://www.virustotal.com/gui/file/90263c41cca8e6215b1b1d90c90fbb396b104cb284463e798be50d4c3849cf72
https://www.virustotal.com/gui/file/92babffc76f0e8cdd1e58ed39c001943c3b30e2e220abd7f1fcb65e8e4c3829d
https://www.virustotal.com/gui/file/9f7b0e7d79bd98d6152f84c83fab6f97e994d5572a077e208b3f45eccb406045
https://www.virustotal.com/gui/file/9f9b3c60def7afb9ddcbacc645671a18394657eb89f47f0c7102e56cbbaa3e82
https://www.virustotal.com/gui/file/a6c042b24d497065683180b0c170a60c61cfb8c43c2bf3ba72e7463774aa435e
https://www.virustotal.com/gui/file/aac9d2d21f634157eb8d3867a2c72042a83cabc3f0142b12763312f5a0b0a83a
https://www.virustotal.com/gui/file/c5860041ad8a1f0b765571eaf100fd539805491f0621a21b5cee8c1d5d30b09a
https://www.virustotal.com/gui/file/cb5ee51b725a9386bcf032211c13349f914f6e75e0547eb77a620a63eaf7c003
https://www.virustotal.com/gui/file/cc876b685987f0999fb976c5b39b5d564d81a04eb4a0bb06d435a480b0b3e053
https://www.virustotal.com/gui/file/d03df865bd65112fae4ffefa1d3a88a9f7f4706f77e8204ffa211e5671e12570
https://www.virustotal.com/gui/file/ea7f51ea399ba4f740b481ceff31b6f46499f1ad8683f5332c25b85672bdd4f4
https://www.virustotal.com/gui/file/fbe51723efc059a4467122254ef2ec198f73e28df4c988341d69dcca2a7e4244


【ブログ】

◆Threat Roundup for July 26 to Aug. 2 (Talos, 2019/08/02)
https://blog.talosintelligence.com/2019/08/threat-roundup-0726-0802.html
https://malware-log.hatenablog.com/entry/2019/08/02/000000_8