IoC (TT Malware Log)

Malware の IoC(Indicator)情報

◆注意◆ マルウェア解析専析家向けサイト

     FQDN, URL,IPアドレス等はそのまま掲載しています


** Caution ** Malware expert site

                    FQDN, URL, IP address etc. are posted as they are

トップ > Malware: iqy > iqy マルウェア

iqy マルウェア

Malware: iqy

【インディケータ情報】

■ハッシュ情報(Sha256) - (Maliqy) -

8c985fd851f06d726709024eacd51b67ea268c5fee822cfa1460f581e7e38636

(以上は Trendmicro の情報: 引用元は https://www.trendmicro.com/vinfo/au/security/news/cybercrime-and-digital-threats/new-variant-of-paradise-ransomware-spreads-through-iqy-files )


■URL

hxxp://ocean-v.com/wp-content/1.txt
hxxp://ocean-v.com/wp-content/1.exe
hxxps://ugajin.net/wp-content/upgrade/upd.txt
hxxps://ugajin.net/wp-content/upgrade/key.exe
hxxps://iplogger.org/1AsWy7
hxxp://prt-recovery.support/chat/25-decryptor


【検索】

google: 8c985fd851f06d726709024eacd51b67ea268c5fee822cfa1460f581e7e38636


【VT検索】

https://www.virustotal.com/gui/file/8c985fd851f06d726709024eacd51b67ea268c5fee822cfa1460f581e7e38636

https://www.virustotal.com/gui/url/http://ocean-v.com/wp-content/1.txt
https://www.virustotal.com/gui/url/http://ocean-v.com/wp-content/1.exe
https://www.virustotal.com/gui/url/https://ugajin.net/wp-content/upgrade/upd.txt
https://www.virustotal.com/gui/url/https://ugajin.net/wp-content/upgrade/key.exe
https://www.virustotal.com/gui/url/https://iplogger.org/1AsWy7
https://www.virustotal.com/gui/url/http://prt-recovery.support/chat/25-decryptor




【ブログ】

◆New Variant of Paradise Ransomware Spreads Through IQY Files (Trendmicro, 20120/03/18)
https://www.trendmicro.com/vinfo/au/security/news/cybercrime-and-digital-threats/new-variant-of-paradise-ransomware-spreads-through-iqy-files
https://malware-log.hatenablog.com/entry/2020/03/18/000000_4