File: bca12235a88e8d0cf734256319d985db
Metadata
| http://www.eg-tech.kr/html/ | |
| N/A | N/A |
| 2019-06-13 04:30:36 | |
| bca12235a88e8d0cf734256319d985db | |
| 2e2cd49a24ecb6aad9ee58b81af5603b71d888de | |
| fac7077bd03945e465439aea77fe3474b24255735e4d0d8f161b8a5f73a1e875 | |
| N/A | |
| N/A | |
| N/A | |
| N/A | |
APTNotes
Cyber threat intelligence reports associated with bca12235a88e8d0cf734256319d985db.
Cyber threat intelligence reports associated with bca12235a88e8d0cf734256319d985db.
Domains
Domains the malware sample communicates with.
Domains the malware sample communicates with.
| Domain | IP |
|---|---|
| egtech.webmaker21.kr | N/A |
| notopen.webmaker21.kr | N/A |
| www.eg-tech.kr | N/A |
Hosts
Hosts the malware sample communicates with.
Hosts the malware sample communicates with.
HTTP Requests
HTTP requests the malware sample makes.
HTTP requests the malware sample makes.
| Host | URL | User-Agent |
|---|---|---|
| 115.68.17.179 (www.eg-tech.kr) | /html/ | 0D 0A 55 73 65 72 2D 41 67 65 6E 74 3A 20 4D 6F [..User-Agent |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (www.eg-tech.kr) | /style.css | 55 53 0D 0A 55 73 65 72 2D 41 67 65 6E 74 3A 20 [US..User-Agent |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (www.eg-tech.kr) | /js/jquery-1.4.2.min.js | 2D 55 53 0D 0A 55 73 65 72 2D 41 67 65 6E 74 3A [-US..User-Agent:] |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (www.eg-tech.kr) | /common/png24.js | Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (www.eg-tech.kr) | /common/flashWrite.js | 53 0D 0A 55 73 65 72 2D 41 67 65 6E 74 3A 20 4D [S..User-Agent |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (www.eg-tech.kr) | /common/style02.css | Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (www.eg-tech.kr) | /js/common.js | Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (www.eg-tech.kr) | /common/url.js | Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (www.eg-tech.kr) | /images/maint.gif | 55 73 65 72 2D 41 67 65 6E 74 3A 20 4D 6F 7A 69 [User-Agent |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (www.eg-tech.kr) | /images/mainimg02.gif | 55 53 0D 0A 55 73 65 72 2D 41 67 65 6E 74 3A 20 [US..User-Agent |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (www.eg-tech.kr) | /images/mainimg01.gif | 55 53 0D 0A 55 73 65 72 2D 41 67 65 6E 74 3A 20 [US..User-Agent |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (www.eg-tech.kr) | /images/mainimg03.gif | 55 53 0D 0A 55 73 65 72 2D 41 67 65 6E 74 3A 20 [US..User-Agent |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (www.eg-tech.kr) | /images/mainimg04.gif | 55 53 0D 0A 55 73 65 72 2D 41 67 65 6E 74 3A 20 [US..User-Agent |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (www.eg-tech.kr) | /images/mainimg05.gif | 55 53 0D 0A 55 73 65 72 2D 41 67 65 6E 74 3A 20 [US..User-Agent |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (www.eg-tech.kr) | /images/bottom01.gif | 53 0D 0A 55 73 65 72 2D 41 67 65 6E 74 3A 20 4D [S..User-Agent |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (www.eg-tech.kr) | /common/style.css | Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (www.eg-tech.kr) | /images/main_bg.jpg | 0D 0A 55 73 65 72 2D 41 67 65 6E 74 3A 20 4D 6F [..User-Agent |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (www.eg-tech.kr) | /images/main02.jpg | 0A 55 73 65 72 2D 41 67 65 6E 74 3A 20 4D 6F 7A [.User-Agent |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (www.eg-tech.kr) | /common/menu.swf | Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (www.eg-tech.kr) | /common/main.swf | Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (egtech.webmaker21.kr) | /counter.php | Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (notopen.webmaker21.kr) | / | 55 73 65 72 2D 41 67 65 6E 74 3A 20 4D 6F 7A 69 [User-Agent |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (www.eg-tech.kr) | /images/bottom02.gif | 53 0D 0A 55 73 65 72 2D 41 67 65 6E 74 3A 20 4D [S..User-Agent |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (notopen.webmaker21.kr) | / | 53 0D 0A 55 73 65 72 2D 41 67 65 6E 74 3A 20 4D [S..User-Agent |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (notopen.webmaker21.kr) | /images/tit-ico.jpg | 55 53 0D 0A 55 73 65 72 2D 41 67 65 6E 74 3A 20 [US..User-Agent |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (notopen.webmaker21.kr) | /font/NanumGothic.woff | Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (notopen.webmaker21.kr) | /font/NanumGothicExtraBold.woff | 0A 55 73 65 72 2D 41 67 65 6E 74 3A 20 4D 6F 7A [.User-Agent |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (notopen.webmaker21.kr) | /font/miso-light.woff | Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko |
| N/A | ||
| N/A | ||
| N/A | ||
| 115.68.17.179 (www.eg-tech.kr) | /favicon.ico | Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko |
| N/A | ||
| N/A | ||
| N/A |
AV Detections
AV detection names associated with the malware sample.
AV detection names associated with the malware sample.
Mutants
Mutants created by the malware sample.
Mutants created by the malware sample.
Registry keys
Registry keys created by the malware sample.
Registry keys created by the malware sample.
Comments
User comments about bca12235a88e8d0cf734256319d985db.
User comments about bca12235a88e8d0cf734256319d985db.
