TT Malware Log

マルウェア / サイバー攻撃 / 解析技術 に関する「個人」の調査・研究・参照ログ

Metamorfo Campaigns Targeting Brazilian Users

【ニュース】

◆Metamorfo Campaigns Targeting Brazilian Users (FireEye, 2018/04/24)
https://www.fireeye.com/blog/threat-research/2018/04/metamorfo-campaign-targeting-brazilian-users.html


【インディケータ情報】

■ハッシュ情報(MD5)

  • 860fa744d8c82859b41e00761c6e25f3
  • 3e9622d1a6d7b924cefe7d3458070d98
  • f402a482fd96b0a583be2a265acd5e74
  • f329107f795654bfc62374f8930d1e12
  • 789a021c051651dbc9e01c5d8c0ce129
  • 68f818fa156d45889f36aeca5dc75a81
  • c2cc04be25f227b13bcb0b1d9811e2fe
  • 6d2cb9e726c9fac0fb36afc377be3aec
  • dd73f749d40146b6c0d2759ba78b1764
  • d9d1e72165601012b9d959bd250997b3
  • 03e4f8327fbb6844e78fda7cdae2e8ad
  • 2999724b1aa19b8238d4217565e31c8e
  • 181c8f19f974ad8a84b8673d487bbf0d
  • d3f845c84a2bd8e3589a6fbf395fea06
  • 2365fb50eeb6c4476218507008d9a00b
  • d726b53461a4ec858925ed31cef15f1e
  • a8b2b6e63daf4ca3e065d1751cac723b
  • d9682356e78c3ebca4d001de760848b0
  • 330721de2a76eed2b461f24bab7b7160
  • 6734245beda04dcf5af3793c5d547923
  • a920b668079b2c1b502fdaee2dd2358f
  • fe09217cc4119dedbe85d22ad23955a1
  • 82e2c6b0b116855816497667553bdf11
  • 4610cdd9d737ecfa1067ac30022d793b
  • 34a8dda75aea25d92cd66da53a718589
  • 88b808d8164e709df2ca99f73ead2e16
  • d3f845c84a2bd8e3589a6fbf395fea06
  • 28a0968163b6e6857471305aee5c17e9
  • 1285205ae5dd5fa5544b3855b11b989d
  • 613563d7863b4f9f66590064b88164c8
  • 3dd43e69f8d71fcc2704eb73c1ea7daf

■URL情報

hxxp://5.83.162.24/ilha/pz/logs.php
hxxp://5.83.162.24/28022018/pz.zip
ibamanetibamagovbr[.]org/virada/pz/logs.php
sistemasagriculturagov[.]org
hxxp://187.84.229.107/05022018/al.zip
hxxps://panel-dark.com/w3af/img2.jpg
hxxps://panel-dark.com/w3af/img1.jpg


Copyright (C) 谷川哲司 (Tetsuji Tanigawa) 1997 - 2019