【ブログ】
◆ Zero-day vulnerability in Telegram (SecurityList, 2018/02/13 09:00)
Cybercriminals exploited Telegram flaw to launch multipurpose attacks.
https://securelist.com/zero-day-vulnerability-in-telegram/83800/
【インディケータ情報】
■ハッシュ情報(MD5) - First Stage -
- 650DDDE919F9E5B854F8C375D3251C21
- C384E62E483896799B38437E53CD9749
- FA391BEAAF8B087A332833E618ABC358
- 52F7B21CCD7B1159908BCAA143E27945
- B1760E8581F6745CBFCBE76FBD0ACBFA
- A662D942F0E43474984766197288845B
■ハッシュ情報(MD5) - Second Stage -
- B9EEC74CA8B14F899837A6BEB7094F65
- 46B36F8FF2369E883300F472694BBD4D
- 10B1301EAB4B4A00E7654ECFA6454B20
- CD5C5423EC3D19E864B2AE1C1A9DDBBC
- 7A3D9C0E2EA27F1B96AEFED2BF8971A4
- E89FDDB32D7EC98B3B68AB7681FACCFC
- 27DDD96A87FBA2C15B5C971BA6EB80C6
- 844825B1336405DDE728B993C6B52A83
- C6A795C27DEC3F5559FD65884457F6F3
- 89E42CB485D65F71F62BC1B64C6BEC95
- 0492C336E869A14071B1B0EF613D9899
- 2CC9ECD5566C921D3876330DFC66FC02
- 1CE28167436919BD0A8C1F47AB1182C4
■C&C サーバー
■Filename
name?gpj.exe
name?gpj.rar
address?gpj.scr
address_?gpj.scr
photoadr?gepj.scr