TT Malware Log

マルウェア / サイバー攻撃 / 解析技術 に関する「個人」の調査・研究・参照ログ

ランサムウェア・レポート:BandarChorの台頭

【ブログ】

◆ランサムウェア・レポート:BandarChorの台頭 (F-Secure, 2015/03/07 01:45)
http://blog.f-secure.jp/archives/50744700.html


【IoC情報】

◆BandarChor (2015/03/07 )
https://ioc.hatenablog.com/entry/2015/03/07/000000


【インディケータ情報】

■ハッシュ情報(MD5) - BandarChor -

31aa8ec187e1241a94127336996f9cb38719eb9b
4b356b88fb3a3dce1f009e4e92cd4a59383e0764
5f71be645e8ac995555a891087b46ed357386dbe
afd4216e93a82feebafd3a68e9308ca4b0b54372
b4362fcd75fd071fc8237c543c56df5736b8e177
ba8909eef5ee280ae43b935cf4ae38ccf21bde56
de7ced27456a1e4581d6a4bf126f56061b7f9859

(以上は F-Secure の情報: 引用元は http://blog.f-secure.jp/archives/50744700.html )


■FQDN - BandarChor -

martyanovdrweb.com
www.fuck-isil.com
www.ahalaymahalay.com
kapustakapaet.com
www.decryptindia.com
www.enibeniraba.com
www.netupite.com
89025840.com
xsmailsos.com
sosxsmaillockedwriteonxsmailindia.com
baitforany.com
euvalues.com

(以上は F-Secure の情報: 引用元は http://blog.f-secure.jp/archives/50744700.html )


【検索】

google: 31aa8ec187e1241a94127336996f9cb38719eb9b
google: 4b356b88fb3a3dce1f009e4e92cd4a59383e0764
google: 5f71be645e8ac995555a891087b46ed357386dbe
google: afd4216e93a82feebafd3a68e9308ca4b0b54372
google: b4362fcd75fd071fc8237c543c56df5736b8e177
google: ba8909eef5ee280ae43b935cf4ae38ccf21bde56
google: de7ced27456a1e4581d6a4bf126f56061b7f9859


【VT検索】

https://www.virustotal.com/gui/file/31aa8ec187e1241a94127336996f9cb38719eb9b
https://www.virustotal.com/gui/file/4b356b88fb3a3dce1f009e4e92cd4a59383e0764
https://www.virustotal.com/gui/file/5f71be645e8ac995555a891087b46ed357386dbe
https://www.virustotal.com/gui/file/afd4216e93a82feebafd3a68e9308ca4b0b54372
https://www.virustotal.com/gui/file/b4362fcd75fd071fc8237c543c56df5736b8e177
https://www.virustotal.com/gui/file/ba8909eef5ee280ae43b935cf4ae38ccf21bde56
https://www.virustotal.com/gui/file/de7ced27456a1e4581d6a4bf126f56061b7f9859

https://www.virustotal.com/gui/domain/martyanovdrweb.com
https://www.virustotal.com/gui/domain/www.fuck-isil.com
https://www.virustotal.com/gui/domain/www.ahalaymahalay.com
https://www.virustotal.com/gui/domain/kapustakapaet.com
https://www.virustotal.com/gui/domain/www.decryptindia.com
https://www.virustotal.com/gui/domain/www.enibeniraba.com
https://www.virustotal.com/gui/domain/www.netupite.com
https://www.virustotal.com/gui/domain/89025840.com
https://www.virustotal.com/gui/domain/xsmailsos.com
https://www.virustotal.com/gui/domain/sosxsmaillockedwriteonxsmailindia.com
https://www.virustotal.com/gui/domain/baitforany.com
https://www.virustotal.com/gui/domain/euvalues.com


Copyright (C) 谷川哲司 (Tetsuji Tanigawa) 1997 - 2020