TT Malware Log

マルウェア / サイバー攻撃 / 解析技術 に関する「個人」の調査・研究・参照ログ

Doh! New "Bart" Ransomware from Threat Actors Spreading Dridex and Locky

f:id:tanigawa:20180610194610p:plain
Desktop background is replaced with the recover.bmp file
出典: https://www.proofpoint.com/us/threat-insight/post/New-Bart-Ransomware-from-Threat-Actors-Spreading-Dridex-and-Locky


【ブログ】

◆Doh! New "Bart" Ransomware from Threat Actors Spreading Dridex and Locky (Proofpoint, 2016/06/24)
https://www.proofpoint.com/us/threat-insight/post/New-Bart-Ransomware-from-Threat-Actors-Spreading-Dridex-and-Locky


【インディケータ情報】

■ハッシュ情報(Sha256)

247e2c07e57030607de901a461719ae2bb2ac27a90623ea5fd69f7f036c4ea0d
7bb1e8e039d222a51a71599af75b56151a878cf8bbe1f9d3ad5be18200b2286b
5d3e7c31f786bbdc149df632253fd538fb21cfc0aa364d0f03a79671bbaec62d
51ff4a033018d9343049305061dcde77cb5f26f5ec48d1be42669f368b1f5705


■URL

hxxp://camera-test.hi2.ro/89ug6b7ui?voQeTqDw=RUYEzU
hxxps://summerr554fox.su/api/
hxxps://summerr554fox.su/files/6kuTU1.exe


Copyright (C) 谷川哲司 (Tetsuji Tanigawa) 1997 - 2020