{ "f434d638-be0d-4aca-aa0b-e03897dbf1dc": { "event_id": 12347, "created_at": "2022-02-14T11:17:45.556943+00:00", "updated_at": "2022-02-14T16:46:02.162654+00:00", "name": "Campagna Qakbot italiana", "description": "", "subject": "Re:", "tlp": "0", "campaign_type": "malware", "method": "linked", "country": "italy", "file_type": [ "zip", "xlsb" ], "theme": "Resend", "malware": "Qakbot", "phishing": null, "via": "email", "tag": [], "ioc_list": { "md5": [ "1d467825ca78fdec32c4b9845d51186c", "aecd1dcd78bb25b7586323c9237702e7", "89b97cc36826e1227a438454ba1fb3e5", "65c8710d0d696d4b2d34d91ed3942261", "0fd59a93334ef91e2f9d598e9984e580", "872b1c45fb0809c9a36cb78fd516cc72", "b6987259c15b506097157a5e3800278c", "4573909e491c9aa55f6238598106d38d", "927d983abc35c7b51bc18fba79487912", "5f12ef6f04e25a05428d7fe159649c15", "3c0fb2cf9fb57bf9edd3d023202d31ef", "d8bbe89469aa0dcec9850797415ab605", "08513974ad4c3bcaaaa5564739425a14", "a8ad5e9f3e7e03b7f0f7d03759200021", "fd68132031dbeed3ff7a47af3ae7e9ae", "bd5cc61136b955d29d2c1a690282233e", "3c30c0fc86b05482ef85b375c4059d03", "f55e0308d4f2c5efed835ffa2544e199", "1ebb368940a9cdcd0a749c14cf8df7ec", "94a9319d3dbcb73bdc316b23d0175ab1", "02ce6bf9eb81318a256176b627595b58", "724501b83c8df5ecd8393cedb92625ce", "6bd55d42437ec8cee8aba124b213dbbc", "f70a399a028f129284e8ea33ce40eb1f", "45a27d9e8a629719a31b517245d5cd59", "9eb87e7e31e23f8f9c9a3ca7d86ecab6", "f588dadd8d717f6a1c12c94deb2c28c0", "87fb963e4a5cf263dc481beaf105f17e", "3d215cd84869b4a40299e7825b4dee75", "f02c024e4253a631eb89e74d5355474d", "27017602cdefff47b84668b0dd8f0290", "eb25d5a2b6b520302723f968741c88eb" ], "sha1": [ "141efa1753a655dab371487594d41b52290d3856", "7788061c1dc7bec73f61e636a0ef3744a10bda3c", "4f3ddb5b46eb1d61ee1e5a35a7beb23f4cd929f2", "1c24506d76cfcad1d9f52473ca6412697d039ee8", "3e626485fa42e191788d1a6ac9cbeb288b723a91", "cedca3ebf1c8a3de331ba190e52c8f4c754a34cd", "84d3d6c7c1a4acee4630759e6fa6fe5315fc43aa", "551ca0c98f557482e28c581ed0f02a6a7e33d946", "2dbf266eb99e8e9574d3e5b337a36c685e65eb08", "4526685e27df68000a259ae0dd33c6d80f6894f5", "80f3675cbc1dbbd13ca5a4bd5be652205816c43a", "fc4e33ac5374d202eaec369e8854dcf92964ea79", "6c4e67d5ba977765b0f33635ffeb5aef17c6c158", "1fe6c1d7f7256b4269e79766e4c6267017c8ab01", "6d5c9a7e9d483af3e9b57ff5ea7d1d5fe7c9d7b2", "e075530c7c22a1abfedcbc81bbf66c8f87612160", "799572b5ea1d32ee1817a3ee6fea65ec8d1fcc8f", "ff2f29bf222b0143c7debd9e749779406ef45c0d", "99e0544a803eb02431932fa4738afad960f59743", "7726df6d09777b6a94e7fb6e4c4736133dff0377", "1ea9022cb9a13811e5e027c3755953087fc9da3f", "8555ed876341a5df1aa5d7a2137c721a0336be1b", "0480d58471bcc519c298f6b23e253af5a3b2ee86", "002e14586b180c91154f70961d434f1d82c7dd87", "e3084b25355c766cf1b8bf8b14f9a27ca30cd67f", "c640cd4fb1d5990f5ba78364350212412287d70f", "c4bd79431a7307991f26f8865e684f40e9527bec", "e70c6ee7b5d8ff47e50ab0950fca3b6997c26cb0", "9dd6e8c9fda0b30360ac51c5a21ba8a9a670ba76", "4e92a479f7dce205a2f5035be68891b6297a00ee", "f06e02b0c50302f6b0ebea04cba1a15d3c14823a", "14c9296232bf5fb57892140f39b05c0ac229611a" ], "sha256": [ "0351fd491a1476f4c5eb28ad2b4aec17dfaf3bc81b9cbce8dbc0d691f851a17b", "b287c7db5eaa639b15e65b86832293e0ee22bfe974fd669c360952c0ed541eed", "14818ddf9c2a21a7f09ebcd9761e8b543cbc2f247cdc135b086e27b2661d70d3", "79a93787df006b78a2785dd705c31bb6d24fdb45dffe6ef14fde52043c91f0e7", "810218ffd5a86d14d0ed2bf0aa527281789e4dbebfeda315c99cc559ead47ad1", "3315e94a0f4c22e121285e78a4fc75ae06776419b4704239d51fdca313701279", "eb28db5ce19bbc827432061041a0c1e6b95fd10703d416218675d1aa57abc72b", "cbff3e0ab0fded0c880d4a2cfae899cacd3bc519b829e410cd238ad41010ac9e", "a0ad7c1960f3603fa1698846fa75215eff49773a859e8f4706e85b092a91219e", "3d6263be3f517132f692cfb0b5865bccdd5d965a504cfede88a7a7ed86983848", "06f77ce9750f803bd3c2f2076999231174b3e208d62f16601436f5d3f23747d8", "546d424b9f45e36e35b3f608f4e47abb6d42f50ed4afca4b7dc049f198e5b3d7", "e3093e962ece0f28ac624055f4460915c184be6051af7b3067a0a72cafeb71e3", "22d3797498af071af1245181866a0282721668df3dbf345ea7678cc999ba7f96", "a7bceeda147d4deea87f545b63b784dcad70c8f28d155e89817bca8b9475b6c4", "ef12019b04466ee8845f564072edd04609520faccc139939e50d957baeb7dfe8", "b734469125db1e8a10af73f0e47e65f57fede3d974725d319eb036bc00c30070", "3d517486a086d9470b6d6115cbcb0229c28af22e908a358b8394db0e6957c79d", "c79f98a52549ec49311a90e3a51fed5c3a3b4bf575279de775306335fd1b4b88", "39e3a6de15f3e5741bd72dd2290dc364692ce381f2580f429a981fdbe8368344", "aea77403b33f84cfb6f8cc816f88f89dc2ddf4534b31e05dd5b45bc737044f7a", "2485cd80d6a09cd41fb1b82155c4ba801d1bfdbe7a9aa0887e46a0eb78bfb653", "4ca30efaee3cd2f1fabf7c7fe59bb5728755fb120fb30e701335ffd2a6f7171d", "baa81b80915037d1f381dcbc6db61d865b69ff0f122c70da910042eaae6f8989", "a130f3f3b07f75849b70ff5dd94fb9cbca52fc86dc53d9688b5aec06708c69b5", "78706b4f0e297a709685cc864f12e2381bee5cbd551be82a21318c1494254e3e", "34efe811bc038004b7797c113f553935cee004068029450e0e9a0b88b46807a7", "3ef28785c18acba803900ad1a8d0bd79d8b80029f545118d24502a234216d0e7", "7fc3778b53491cd3c504a30344bff485bc4de95bb463bdc53ba4e5d43e0c528a", "7e719ddaf549a9d023aa55cca06694455db04725ea6c2c83ea175c1720ca2606", "b5f94d11537befc316607619186d8c19303d3c0431b13c85f87940d20e77429b" ], "imphash": [ "d8b6fe98d2b0a8d6f73ca1ea92363dc6" ], "domain": [ "f68d18d72f052102b461023d63c5a06d40965ef93f4e4212d3b6373169d09a0" ], "url": [ "https://passmyielts.com/PvYsQMezfHK/93i.png", "https://lawyeryouwant.com/LACxAeU53/92i.png", "https://gigaprimes.com/bremoriulre/snmnincaudnoeoimoul-e-isrmistedtm", "https://judgebryantweekes.com/R4uDKgmAJJY/9i.png", "https://proximis.net/fquagiu/vmuqobumo-uqamsilatsrupacne-outtliu", "https://brw.tfp.mu/tiueeclneciruosqmsit/nuutoeqrattsuu-tecmitotelas-upqanve", "https://greekrestaurantgustosa.com/pisida/mpmruiiuironstneamv-rluppeei-ahtiarmra", "https://panjabihit.in/soolepamuartvis/memanvtuetetipt-ouproaeeusmritar-sulxu", "https://networkseurope.org/rousepomric/eusnsuuqausmaoscii-rdnmaiitqqiuqqeei-", "https://connecttheheart.com/dqeituem/onils-s-atevmiemtutlotduauspit", "https://ram.az/rumarqeui/rsaeauesreatoeuquaumu-memtqucndng-ntnmm", "https://96.21.251.127:2222", "https://78.164.40.62:995", "https://86.98.49.16", "https://80.6.192.58/t4", "https://105.184.195.32:995", "https://67.209.195.198", "https://43.231.252.200:443/t4", "https://92.177.45.46", "https://73.151.236.31/t4", "https://31.35.28.29/t4", "https://96.21.251.127:2222/t4", "https://105.184.195.32:995/t4", "https://93.48.80.198:995", "https://78.164.40.62:995/t4", "https://umakisushi.com/DLkAMNiKboD/d.png", "https://94.60.254.81/t4", "https://86.216.184.108:2222/t4", "https://86.98.49.16/t4", "https://institutodecienciasac.com/6P8ZY30bP7RO/d.png", "https://96.246.158.154", "https://24.53.49.240", "https://78.164.40.62", "https://ceciliamakeup.com/XH3AXY4l8dZ/d.png", "https://105.184.195.32", "https://92.177.45.46:2078", "https://24.53.49.240/t4", "https://80.6.192.58", "https://96.21.251.127", "https://92.177.45.46:2078/t4", "https://93.48.80.198", "https://96.246.158.154:995", "https://94.60.254.81", "https://soymotivo.com/eormerus/puair-usiluab-teaouoiautluilrrdsqrm", "https://31.35.28.29", "https://43.231.252.200", "https://73.151.236.31", "https://96.246.158.154:995/t4", "https://43.231.252.200/t4", "https://67.209.195.198/t4", "https://89.86.33.217", "https://86.216.184.108:2222", "https://89.86.33.217/t4", "https://93.48.80.198:995/t4", "https://86.216.184.108", "https://hotelrelaissaintjacques.com/mtaeoauapvteetbl/mauatedcurllru-v-aopomoatrilptetpau", "https://goldensssgroup.com/xiadeipetd/ameucinttqiduielo-tsam-sntpvipuoho", "https://enthu-tech.com/olmluiinatmaialdut/raelsteoemsisinvsporteua-dunnr-oatma", "https://suezdistribution.com/lueoebrmi/tssu-mnrcuteaqut-asiiotopeiartceareecchas", "https://tukamoda.com/uiqsstaiunenlodrcbtia/ttonteledcnolt-ti-mtpetaiimtaavuaoupairriaemsxueb" ], "ipv4": [ "96.246.158.154", "73.151.236.31", "93.48.80.198", "24.53.49.240", "92.177.45.46", "89.86.33.217", "94.60.254.81", "96.21.251.127", "31.35.28.29", "78.164.40.62", "43.231.252.200", "67.209.195.198", "105.184.195.32", "86.216.184.108", "80.6.192.58", "86.98.49.16" ], "email": [] }, "email_victim": [], "ioca_version": "1.0", "organization": "cert-agid" } }