TT Malware Log

マルウェア / サイバー攻撃 / 解析技術 に関する「個人」の調査・研究・参照ログ

XORDDoS, Kaiji Botnet Malware Variants Target Exposed Docker Servers

【ニュース】

◆XORDDoS, Kaiji Botnet Malware Variants Target Exposed Docker Servers (Trendmicro, 2020/06/22 04:58)
https://blog.trendmicro.com/trendlabs-security-intelligence/xorddos-kaiji-botnet-malware-variants-target-exposed-docker-servers/


【関連まとめ記事】

全体まとめ
 ◆マルウェア / Malware (まとめ)

◆Linux マルウェア (まとめ)
https://malware-log.hatenablog.com/entry/Linux_Malware


【インディケータ情報】

■ハッシュ情報(Sha256) - Kaiji -

9301d983e9d8fad3cc205ad67746cd111024daeb4f597a77934c7cfc1328c3d8
d315b83e772dfddbd2783f016c38f021225745eb43c06bbdfd92364f68fa4c56

(以上は Trendmicro の情報: 引用元は https://blog.trendmicro.com/trendlabs-security-intelligence/xorddos-kaiji-botnet-malware-variants-target-exposed-docker-servers/ )


■ハッシュ情報(Sha256) - XORDDoS -

dba757c20fbc1d81566ef2877a9bfca9b3ddb84b9f04c0ca5ae668b7f40ea8c3
6c8f95b82592ac08a03bfe32e4a4dbe637d1f542eb3ab3054042cec8ec301a3c
286f774eb5b4f2f7c62d5e68f02a37b674cca7b8c861e189f1f596789322f9fe

(以上は Trendmicro の情報: 引用元は https://blog.trendmicro.com/trendlabs-security-intelligence/xorddos-kaiji-botnet-malware-variants-target-exposed-docker-servers/ )


■URL - Kaiji -

hxxp://62[.]171[.]160[.]189/linux_arm
hxxp://62[.]171[.]160[.]189/11/123.sh


■URL - XORDDoS -

hxxp://122[.]51[.]133[.]49:10086/VIP


【検索】

google: 9301d983e9d8fad3cc205ad67746cd111024daeb4f597a77934c7cfc1328c3d8
google: d315b83e772dfddbd2783f016c38f021225745eb43c06bbdfd92364f68fa4c56

google: dba757c20fbc1d81566ef2877a9bfca9b3ddb84b9f04c0ca5ae668b7f40ea8c3
google: 6c8f95b82592ac08a03bfe32e4a4dbe637d1f542eb3ab3054042cec8ec301a3c
google: 286f774eb5b4f2f7c62d5e68f02a37b674cca7b8c861e189f1f596789322f9fe


【VT検索】

https://www.virustotal.com/gui/file/9301d983e9d8fad3cc205ad67746cd111024daeb4f597a77934c7cfc1328c3d8
https://www.virustotal.com/gui/file/d315b83e772dfddbd2783f016c38f021225745eb43c06bbdfd92364f68fa4c56

https://www.virustotal.com/gui/file/dba757c20fbc1d81566ef2877a9bfca9b3ddb84b9f04c0ca5ae668b7f40ea8c3
https://www.virustotal.com/gui/file/6c8f95b82592ac08a03bfe32e4a4dbe637d1f542eb3ab3054042cec8ec301a3c
https://www.virustotal.com/gui/file/286f774eb5b4f2f7c62d5e68f02a37b674cca7b8c861e189f1f596789322f9fe

https://www.virustotal.com/gui/url/e520ef56118b2b7b00b849b9a632f4098079fc974dcd4b29a90973ff615a2e83
https://www.virustotal.com/gui/url/6776d93d9fd4d46db04134625bad1ab91dffd209b4fb9a36732905dfa037a279
https://www.virustotal.com/gui/url/57298dc459821770c20d073a6b82741bd319c5c1ea9c33e10bfaf71ff813db44


Copyright (C) 谷川哲司 (Tetsuji Tanigawa) 1997 - 2020