IoC (TT Malware Log)

Malware の IoC(Indicator)情報

◆注意◆ マルウェア解析専析家向けサイト

     FQDN, URL,IPアドレス等はそのまま掲載しています


** Caution ** Malware expert site

                    FQDN, URL, IP address etc. are posted as they are

Ursnif (2019/10/25)

Malware: Ursnif / Gozi / DreamBot / Snifula / Papras (Banking)

【インディケータ情報】

■ハッシュ情報(Sha256) - Ursnif -

4f03fe32e46386a2379e65b631e786cdeeec223017069d2731a723e4d2c50393
69e08aa34638b3b213dc3c7f7a188e4d56685ca8abd4bfa97f575757a1f4bc12
85fd74ee1f19173597c3995376c31c617c0cd615d1d4e862edbe2459200397ed
90635217dd43e1ccfc8c25aef6619b1a929b5e7d1800b9cebd8686d052243611
a11b566c7bd562cb4cdee2c1bc92313a11ebdacf4fdde58c224eb7eac0e6faf1
bb271b6725170345188008dfb90069c9f741b93cf0a504a9c70f177c2dd670cb
c1c1165edb4b0853d6433961aec1b54982fe3273a094d53bb1b2f23e9f6713de
ca13c5fb577c3a218a3be31c59145137e11b4c7188839b7962a3ce3e7d6277ec
d66d2ea9744ca077c3dc76c303a284c1d2b863151931ddcce656fb35a52289e6
e4f5f19e945a41ad8f0ec7e9c35b23ea039a5a2bdaaf8e42a78c8f86b231334e

(以上は Talos(CISCO)の情報: 引用元は https://blog.talosintelligence.com/2019/10/threat-roundup-1018-1025.html )


【検索】

google: 4f03fe32e46386a2379e65b631e786cdeeec223017069d2731a723e4d2c50393
google: 69e08aa34638b3b213dc3c7f7a188e4d56685ca8abd4bfa97f575757a1f4bc12
google: 85fd74ee1f19173597c3995376c31c617c0cd615d1d4e862edbe2459200397ed
google: 90635217dd43e1ccfc8c25aef6619b1a929b5e7d1800b9cebd8686d052243611
google: a11b566c7bd562cb4cdee2c1bc92313a11ebdacf4fdde58c224eb7eac0e6faf1
google: bb271b6725170345188008dfb90069c9f741b93cf0a504a9c70f177c2dd670cb
google: c1c1165edb4b0853d6433961aec1b54982fe3273a094d53bb1b2f23e9f6713de
google: ca13c5fb577c3a218a3be31c59145137e11b4c7188839b7962a3ce3e7d6277ec
google: d66d2ea9744ca077c3dc76c303a284c1d2b863151931ddcce656fb35a52289e6
google: e4f5f19e945a41ad8f0ec7e9c35b23ea039a5a2bdaaf8e42a78c8f86b231334e


【VT検索】

https://www.virustotal.com/gui/file/4f03fe32e46386a2379e65b631e786cdeeec223017069d2731a723e4d2c50393
https://www.virustotal.com/gui/file/69e08aa34638b3b213dc3c7f7a188e4d56685ca8abd4bfa97f575757a1f4bc12
https://www.virustotal.com/gui/file/85fd74ee1f19173597c3995376c31c617c0cd615d1d4e862edbe2459200397ed
https://www.virustotal.com/gui/file/90635217dd43e1ccfc8c25aef6619b1a929b5e7d1800b9cebd8686d052243611
https://www.virustotal.com/gui/file/a11b566c7bd562cb4cdee2c1bc92313a11ebdacf4fdde58c224eb7eac0e6faf1
https://www.virustotal.com/gui/file/bb271b6725170345188008dfb90069c9f741b93cf0a504a9c70f177c2dd670cb
https://www.virustotal.com/gui/file/c1c1165edb4b0853d6433961aec1b54982fe3273a094d53bb1b2f23e9f6713de
https://www.virustotal.com/gui/file/ca13c5fb577c3a218a3be31c59145137e11b4c7188839b7962a3ce3e7d6277ec
https://www.virustotal.com/gui/file/d66d2ea9744ca077c3dc76c303a284c1d2b863151931ddcce656fb35a52289e6
https://www.virustotal.com/gui/file/e4f5f19e945a41ad8f0ec7e9c35b23ea039a5a2bdaaf8e42a78c8f86b231334e


【ブログ】

◆Threat Roundup for October 18 to October 25 (Talos(CISCO), 2019/10/25)
https://blog.talosintelligence.com/2019/10/threat-roundup-1018-1025.html
https://malware-log.hatenablog.com/entry/2019/10/25/000000_3


【関連まとめ記事】

全体まとめ
 ◆脅威情報 (まとめ)

◆Talos の 1 週間における脅威のまとめ (まとめ)
https://malware-log.hatenablog.com/entry/Talos_Threat