IoC (TT Malware Log)

Malware の IoC(Indicator)情報

◆注意◆　マルウェア解析専析家向けサイト

　　　　　FQDN, URL,IPアドレス等はそのまま掲載しています

** Caution ** Malware expert site

FQDN, URL, IP address etc. are posted as they are

Snake / EKANS (まとめ)

Malware: Snake / EKANS (Ransomware) *マルウェア種別: ランサムウェア

【インディケータ情報】

■ハッシュ情報(Sha256) - Snake /Ekans -

e5262db186c97bbe533f0a674b08ecdafa3798ea7bc17c705df526419c168b60

(以上は MalwareHunterTeam の情報: 引用元は https://www.bleepingcomputer.com/news/security/snake-ransomware-is-the-next-threat-targeting-business-networks/ )
⇒ https://ioc.hatenablog.com/entry/2020/01/08/000000
(以上は Sentinel Labs の情報: 引用元は https://labs.sentinelone.com/new-snake-ransomware-adds-itself-to-the-increasing-collection-of-golang-crimeware/ )
⇒ https://ioc.hatenablog.com/entry/2020/01/23/000000_1

■ハッシュ情報(Sha256) - Snake /Ekans (Target: Honda) -

d4da69e424241c291c173c8b3756639c654432706e7def5025a649730868c4a1

(以上は独自の情報)
⇒ https://ioc.hatenablog.com/entry/2020/06/09/000000

■ハッシュ情報(Sha256) - Snake / Ekans (Target: Enel) -

edef8b955468236c6323e9019abb10c324c27b4f5667bc3f85f3a097b2e5159a

(以上は独自の情報)
⇒ https://ioc.hatenablog.com/entry/2020/06/11/000000

【検索】

google: e5262db186c97bbe533f0a674b08ecdafa3798ea7bc17c705df526419c168b60
google: d4da69e424241c291c173c8b3756639c654432706e7def5025a649730868c4a1
google: edef8b955468236c6323e9019abb10c324c27b4f5667bc3f85f3a097b2e5159a

【VT検索】

https://www.virustotal.com/gui/file/e5262db186c97bbe533f0a674b08ecdafa3798ea7bc17c705df526419c168b60
https://www.virustotal.com/gui/file/d4da69e424241c291c173c8b3756639c654432706e7def5025a649730868c4a1
https://www.virustotal.com/gui/file/edef8b955468236c6323e9019abb10c324c27b4f5667bc3f85f3a097b2e5159a

【ブログ】

◆New Snake Ransomware Adds Itself to the Increasing Collection of Golang Crimeware (Sentinel Labs, 2020/01/23)
https://labs.sentinelone.com/new-snake-ransomware-adds-itself-to-the-increasing-collection-of-golang-crimeware/
⇒ https://malware-log.hatenablog.com/entry/2020/01/23/000000_15