IoC (TT Malware Log)

Malware の IoC(Indicator)情報

◆注意◆ マルウェア専門家向けサイト

     FQDN, URL,IPアドレス等はそのまま掲載しています


** Caution ** Malware expert site

                    FQDN, URL, IP address etc. are posted as they are

Sora

【インディケータ情報】

■ハッシュ情報(Sha256) --

35b0d5dbcaba3edd0d7b3e7b14b36cb96527148c
4bbe4ec21a148000838b66a334e956944797eeab
8d8b01e3fc145a1f64eed6d39bdf5db2d8fbec60
abaf3640c849a4bc32304a40f9bf0adaeef8c893
bd37f93e284cf2b7d9320808b50ed98cd6d0ffa3
c2809d998c267a1a24660ca7f33becb86f5b02ce
d56d2e59185b19b5a06ae1dc2652c3eb856c005b
f86fe270ff7a1502a3fbce8aa148a13cbe194a92
fa17c4545946027f11c8fb7c5a4f08ff8f26ce75

(以上は Trendmicro の情報: 引用元は https://blog.trendmicro.co.jp/wp-content/uploads/2020/02/IoCs_SORA_UNSTABLE.pdf )


【検索】

google: 35b0d5dbcaba3edd0d7b3e7b14b36cb96527148c
google: 4bbe4ec21a148000838b66a334e956944797eeab
google: 8d8b01e3fc145a1f64eed6d39bdf5db2d8fbec60
google: abaf3640c849a4bc32304a40f9bf0adaeef8c893
google: bd37f93e284cf2b7d9320808b50ed98cd6d0ffa3
google: c2809d998c267a1a24660ca7f33becb86f5b02ce
google: d56d2e59185b19b5a06ae1dc2652c3eb856c005b
google: f86fe270ff7a1502a3fbce8aa148a13cbe194a92
google: fa17c4545946027f11c8fb7c5a4f08ff8f26ce75


【VT検索】

https://www.virustotal.com/gui/file/35b0d5dbcaba3edd0d7b3e7b14b36cb96527148c
https://www.virustotal.com/gui/file/4bbe4ec21a148000838b66a334e956944797eeab
https://www.virustotal.com/gui/file/8d8b01e3fc145a1f64eed6d39bdf5db2d8fbec60
https://www.virustotal.com/gui/file/abaf3640c849a4bc32304a40f9bf0adaeef8c893
https://www.virustotal.com/gui/file/bd37f93e284cf2b7d9320808b50ed98cd6d0ffa3
https://www.virustotal.com/gui/file/c2809d998c267a1a24660ca7f33becb86f5b02ce
https://www.virustotal.com/gui/file/d56d2e59185b19b5a06ae1dc2652c3eb856c005b
https://www.virustotal.com/gui/file/f86fe270ff7a1502a3fbce8aa148a13cbe194a92
https://www.virustotal.com/gui/file/fa17c4545946027f11c8fb7c5a4f08ff8f26ce75


【ブログ】

◆ホームルータや監視カメラ用ストレージシステムを狙うIoTマルウェア:「SORA」と「UNSTABLE」 (Trendmicro, 2020/02/17)
https://blog.trendmicro.co.jp/archives/23916
https://malware-log.hatenablog.com/entry/2020/02/17/000000_2