TT Malware Log

マルウェア / サイバー攻撃 / 解析技術 / 攻撃組織 に関する「個人」の調査・研究・参照ログ

トップ > Malware: Volgmer / Manuscrypt > Volgmer (まとめ)

Volgmer (まとめ)

Malware: Volgmer / Manuscrypt *インディケータ情報 攻撃組織: Lazarus / Hidden Cobra / Dark Seoul / Labyrinth Chollima / Group 77 / Hastati Group **マルウェア(まとめ) **まとめ

【別名】

マルウェア名称 呼称組織
Volgmer
Manuscrypt Kaspersky


【ニュース】

◆北朝鮮のマルウェア「Volgmer」、米当局がIPアドレスなど公表 (ITmedia, 2017/11/16 10:30)
http://www.itmedia.co.jp/news/articles/1711/16/news060.html

◆北朝鮮サイバー攻撃の脅威データを「STIX」で公表 - 「FALLCHILL」「Volgmer」の感染チェックを (Security NEXT, 2017/11/17)
http://www.security-next.com/087678


【公開情報】

◆HIDDEN COBRA – North Korean Trojan: Volgmer (US-CERT, 2017/11/14)
https://www.us-cert.gov/ncas/alerts/TA17-318B

◆IOCs related to HIDDEN COBRA, IP addresses linked to systems infected with Volgmer malware (US-CERT, 2017/11/14)
https://www.us-cert.gov/sites/default/files/publications/TA%20VOLGMER%20IOCs.csv
https://www.us-cert.gov/sites/default/files/publications/TA%20VOLGMER%20IOCs.xml

◆Malware Analysis Report (MAR) - 10135536-D (US-CERT, 2017/11/01)
https://www.us-cert.gov/sites/default/files/publications/MAR-10135536-D_WHITE_S508C.PDF
https://www.us-cert.gov/sites/default/files/publications/MAR-10135536-D_WHITE_stix.xml


【インディケータ情報】

■ハッシュ情報(MD5)

  • 2D2B88AE9F7E5B49B728AD7A1D220E84
  • 9A5FA5C5F3915B2297A1C379BE9979F0
  • BA8C717088A00999F08984408D0C5288
  • 1B8AD5872662A03F4EC08F6750C89ABC
  • E034BA76BEB43B04D2CA6785AA76F007
  • EB9DB98914207815D763E2E5CFBE96B9
  • 143cb4f16dcfc16a02812718acd32c8f
  • 1ecd83ee7e4cfc8fed7ceb998e75b996
  • 35f9cfe5110471a82e330d904c97466a
  • 5dd1ccc8fb2a5615bf5656721339efed
  • 81180bf9c7b282c6b8411f8f315bc422
  • e3d03829cbec1a8cca56c6ae730ba9a8

■IPアドレス情報

  • 199.68.196.125
  • 103.16.223.35
  • 113.28.244.194
  • 116.48.145.179
  • 186.116.9.20
  • 186.149.198.172
  • 195.28.91.232
  • 195.97.97.148
  • 199.15.234.120
  • 200.42.69.133
  • 203.131.222.99
  • 210.187.87.181
  • 83.231.204.157
  • 84.232.224.218
  • 89.190.188.42
  • 109.68.120.179
  • 85.132.123.50
  • 80.95.219.72
  • 88.201.64.185
  • 103.10.55.35
  • 45.124.169.36
  • 222.44.80.138
  • 61.153.146.207
  • 41.131.164.156
  • 82.129.240.148
  • 82.201.131.124
  • 31.146.82.22
  • 103.27.164.10
  • 103.27.164.42
  • 112.133.214.38
  • 114.79.141.59
  • 115.115.174.67
  • 115.178.96.66
  • 115.249.29.78
  • 117.211.164.245
  • 117.218.84.197
  • 117.239.102.132
  • 117.239.144.203
  • 117.240.190.226
  • 117.247.63.127
  • 117.247.8.239
  • 118.67.237.124
  • 125.17.79.35
  • 125.18.9.228
  • 14.102.46.3
  • 14.139.125.214
  • 14.141.129.116
  • 180.211.97.186
  • 182.156.76.122
  • 182.72.113.90
  • 182.73.165.58
  • 182.73.245.46
  • 182.74.42.194
  • 182.77.61.231
  • 183.82.199.174
  • 183.82.33.102
  • 203.110.91.252
  • 203.196.136.60
  • 203.88.138.79
  • 43.249.216.6
  • 45.118.34.215
  • 139.255.62.10
  • 128.65.184.131
  • 128.65.187.94
  • 178.248.41.117
  • 185.113.149.239
  • 185.115.164.86
  • 185.46.218.77
  • 213.207.209.36
  • 217.218.90.124
  • 217.219.193.158
  • 217.219.202.199
  • 37.235.21.166
  • 37.98.114.90
  • 78.38.114.15
  • 78.38.182.242
  • 78.39.125.67
  • 80.191.171.32
  • 85.185.30.195
  • 85.9.74.159
  • 89.165.119.105
  • 91.106.77.7
  • 91.98.112.196
  • 91.98.126.92
  • 91.98.36.66
  • 94.183.177.90
  • 95.38.16.188
  • 27.114.187.37
  • 116.90.226.67
  • 113.203.238.98
  • 115.186.133.195
  • 182.176.121.244
  • 182.187.139.132
  • 37.216.67.155
  • 84.235.85.86
  • 103.241.106.15
  • 203.118.42.155
  • 58.185.197.210
  • 123.231.112.147
  • 222.165.146.86
  • 122.146.157.141
  • 140.136.205.209
  • 110.77.137.38
  • 118.175.22.10
  • 125.25.206.15
  • 203.147.10.65
  • 58.82.155.98
  • 61.91.47.142
  • 185.134.98.141

Copyright (C) 谷川哲司 (Tetsuji Tanigawa) 1997 - 2023