Page 4 of 8

Re: Malware collection

PostPosted:Fri Feb 08, 2019 6:40 pm
by ikolor

Re: Malware collection

PostPosted:Fri Feb 08, 2019 7:23 pm
by Fedor22
ikolor wrote: Fri Feb 08, 2019 6:40 pm thanks you

https://www.virustotal.com/en/file/36db ... 549651050/
Emotet downloader.
Downloads exe from:
Code: Select all
hxxp://kynangdaotao.com/PpfjSFJN12uX
Connects to CnC server:
Code: Select all
hxxp://133.242.164.31:7080/

Re: Malware collection

PostPosted:Tue Feb 12, 2019 7:43 pm
by ikolor

Re: Malware collection

PostPosted:Wed Feb 13, 2019 10:23 am
by Antelox
ikolor wrote: Tue Feb 12, 2019 7:43 pm thanks

https://www.virustotal.com/en/file/ceb0 ... 550000536/
Geodo/Emotet doc downloader.

Downloads this: https://www.virustotal.com/en/file/acf4 ... /analysis/

BR,

Antelox

Re: Malware collection

PostPosted:Thu Feb 14, 2019 11:30 am
by ikolor

Re: Malware collection

PostPosted:Thu Feb 14, 2019 12:51 pm
by Fedor22
ikolor wrote: Thu Feb 14, 2019 11:30 am Thanks .I can't find good malware sorry for it.

https://www.virustotal.com/en/file/2401 ... 550144002/


https://www.virustotal.com/en/file/2a51 ... 550143653/
The fisrt sample is Drupal JavaScript, not malicious.
The second sample is Emotet downloader.
Downloads exe from:
Code: Select all
hxxp://hifucancertreatment.com/wp-content/uploads/PKL8EApdvFOUn79
Connects to CnC server:
Code: Select all
hxxp://67.254.13.154/

Re: Malware collection

PostPosted:Thu Feb 14, 2019 7:12 pm
by ikolor

Re: Malware collection

PostPosted:Fri Feb 15, 2019 10:11 am
by Antelox
ikolor wrote: Thu Feb 14, 2019 7:12 pm Thanks you .Next file who knows

https://www.virustotal.com/en/file/d1e2 ... 550171450/
PDF phishing.

Links involved:
Code: Select all
hxxps://www.djfernandodg.com.ve/OndrvE/drive/syn/
hxxps://www.djfernandodg.com.ve/OndrvE/drive/syn/ODL.html
hxxps://www.djfernandodg.com.ve/OndrvE/drive/syn/MYM.html
hxxps://www.djfernandodg.com.ve/OndrvE/drive/syn/OLK.html
hxxps://www.djfernandodg.com.ve/OndrvE/drive/syn/HML.html
hxxps://www.djfernandodg.com.ve/OndrvE/drive/syn/AII.html
BR,

Antelox

Re: Malware collection

PostPosted:Fri Feb 15, 2019 7:32 pm
by ikolor

Re: Malware collection

PostPosted:Fri Feb 15, 2019 9:51 pm
by Antelox