| _id |
62986059348d24c6a796f0d0 |
| reference |
['https://www.virustotal.com/gui/file/8bee57ab8e912254ccef51ee4e7ebaf46e15e47301f792fd0cef7a6e803e91e9/behavior/virustotal%20jujubox', 'https://twitter.com/500mk500/status/1531685054660976644', 'https://github.com/stamparm/maltrail/commit/3437da5917bb261391c7d93b324a9c64597eedf8'] |
| md5 |
[] |
| sha1 |
['3437da5917bb261391c7d93b324a9c64597eedf8'] |
| sha256 |
['8bee57ab8e912254ccef51ee4e7ebaf46e15e47301f792fd0cef7a6e803e91e9'] |
| mail |
[] |
| ip |
['45.76.47.98'] |
| domain |
['jacket71.sikoshi.ru'] |
| url |
['http://45.76.47.98'] |
| user |
500mk500 |
| tweet |
+ #APT #Gamaredon-related derivative domain. found on IP: 45.76.47.98:
hXXp://45.76.47.98
jacket71.sikoshi.ru
Pattern: /justin/NOTEPAD.cda
https://www.virustotal.com/gui/file/8bee57ab8e912254ccef51ee4e7ebaf46e15e47301f792fd0cef7a6e803e91e9/behavior/VirusTotal%20Jujubox
Detection: https://github.com/stamparm/maltrail/commit/3437da5917bb261391c7d93b324a9c64597eedf8 https://twitter.com/500mk500/status/1531685054660976644 |
| id |
1531860803464441856 |
| retweets |
2 |
| link |
https://twitter.com/500mk500/status/1531860803464441856 |
| mentions |
[] |
| hashtags |
['#APT', '#Gamaredon'] |
| date |
2022-06-01 04:50:50 |
| timestamp |
1654084250 |