TT Malware Log

マルウェア / サイバー攻撃 / 解析技術 に関する「個人」の調査・研究・参照ログ

トップ > Malware: Emotet > Emotetが5カ月ぶりに攻撃再開

Emotetが5カ月ぶりに攻撃再開

Malware: Emotet

【ニュース】

◆Emotetが5カ月ぶりに攻撃再開 (Proofpoint, 2020/07/17 15:18)
https://www.proofpoint.com/jp/blog/security-briefs/emotet-returns-after-five-month-hiatus


【インディケータ情報】

■ハッシュ情報(Sha256) - Emotet -

64b341748b4d7b79976592e9eb4f04444436073d12384d8b98834931e9bc84cf
b7056c2e7ac89807060c5de0d28090f2dc827182433c186bbf8a28355a375627

(以上は Proofpoint の情報: 引用元は https://www.proofpoint.com/jp/blog/security-briefs/emotet-returns-after-five-month-hiatus )


■IPアドレス(C2) - Emotet -

5.196.74.210:8080
209.141.54.221:8080
50.116.86.205:8080
78.24.219.147:8080
210.165.156.91:80
37.187.72.193:8080
157.245.99.39:8080
190.55.181.54:443
37.139.21.175:8080
169.239.182.217:8080
104.236.246.93:8080
200.55.243.138:8080
74.208.45.104:8080
5.39.91.110:7080
79.7.158.208:80


【検索】

google: 64b341748b4d7b79976592e9eb4f04444436073d12384d8b98834931e9bc84cf
google: b7056c2e7ac89807060c5de0d28090f2dc827182433c186bbf8a28355a375627

google: 5.196.74.210:8080
google: 209.141.54.221:8080
google: 50.116.86.205:8080
google: 78.24.219.147:8080
google: 210.165.156.91:80
google: 37.187.72.193:8080
google: 157.245.99.39:8080
google: 190.55.181.54:443
google: 37.139.21.175:8080
google: 169.239.182.217:8080
google: 104.236.246.93:8080
google: 200.55.243.138:8080
google: 74.208.45.104:8080
google: 5.39.91.110:7080
google: 79.7.158.208:80

google: 5.196.74.210
google: 209.141.54.221
google: 50.116.86.205
google: 78.24.219.147
google: 210.165.156.91
google: 37.187.72.193
google: 157.245.99.39
google: 190.55.181.54
google: 37.139.21.175
google: 169.239.182.217
google: 104.236.246.93
google: 200.55.243.138
google: 74.208.45.104
google: 5.39.91.110
google: 79.7.158.208


【VT検索】

https://www.virustotal.com/gui/file/64b341748b4d7b79976592e9eb4f04444436073d12384d8b98834931e9bc84cf
https://www.virustotal.com/gui/file/b7056c2e7ac89807060c5de0d28090f2dc827182433c186bbf8a28355a375627

https://www.virustotal.com/gui/ip-address/5.196.74.210
https://www.virustotal.com/gui/ip-address/209.141.54.221
https://www.virustotal.com/gui/ip-address/50.116.86.205
https://www.virustotal.com/gui/ip-address/78.24.219.147
https://www.virustotal.com/gui/ip-address/210.165.156.91
https://www.virustotal.com/gui/ip-address/37.187.72.193
https://www.virustotal.com/gui/ip-address/157.245.99.39
https://www.virustotal.com/gui/ip-address/190.55.181.54
https://www.virustotal.com/gui/ip-address/37.139.21.175
https://www.virustotal.com/gui/ip-address/169.239.182.217
https://www.virustotal.com/gui/ip-address/104.236.246.93
https://www.virustotal.com/gui/ip-address/200.55.243.138
https://www.virustotal.com/gui/ip-address/74.208.45.104
https://www.virustotal.com/gui/ip-address/5.39.91.110
https://www.virustotal.com/gui/ip-address/79.7.158.208

Copyright (C) 谷川哲司 (Tetsuji Tanigawa) 1997 - 2023