| _id |
5fcabfbfe89f0922b24b1dd5 |
| reference |
['https://twitter.com/james_inthe_box/status/1334921171570098177/photo/1'] |
| md5 |
[] |
| sha1 |
[] |
| sha256 |
[] |
| mail |
[] |
| ip |
['212.80.219.173', '185.243.113.10'] |
| domain |
[] |
| url |
['http://212.80.219.173/googlemap.exe', 'http://185.243.113.10/lexus.exe'] |
| user |
James_inthe_box |
| tweet |
@bofheaded @malwrhunterteam @DissectMalware @Malwageddon So your run is a bundle..attempts to drop:
http://212.80.219.173/googlemap.exe
http://185.243.113.10/lexus.exe
attrib is the same as the @anyrun_app I tweeted. https://twitter.com/James_inthe_box/status/1334921171570098177/photo/1 |
| id |
1334921171570098177 |
| retweets |
0 |
| link |
https://twitter.com/James_inthe_box/status/1334921171570098177 |
| mentions |
['@bofheaded', '@malwrhunterteam', '@DissectMalware', '@Malwageddon', '@anyrun_app'] |
| hashtags |
[] |
| date |
2020-12-04 18:03:03 |
| timestamp |
1607101383 |