찾아줄게요
CERBER 파일은 무엇입니까?
-
안녕하세요. 제 컴퓨터에서 CERBER라는 파일을 찾았는데 이것이 무엇인지 잘 모르겠습니다. 알려주시면 감사하겠습니다.
-
CERBER 파일은 Cerber 1.0 암호화 파일 입니다. Cerber 에서 배포한 파일인 것으로 보입니다. 2017-10-19 00:17:40에 처음으로 보고되었으며 2017-11-26 09:07:33에 마지막으로 보고되었습니다.
-
Cerber 프로그램을 다운로드하여 CERBER 파일을 열 수 있습니다.
-
Cerber 랜섬웨어 암호화 파일
Cerber ransomware encrypted file -
# DECRYPT MY FILES # (HTML, TXT, URL, VBS)
# HELP DECRYPT # (HTML, TXT, URL)
@___README___@ (HTML, LNK, TXT, URL)
_HELP_HELP_HELP_[a-zA-Z0-9] (HTA, JPG)
_HELP_HELP_HELP_[a-zA-Z0-9]_ (HTA, PNG)
_H -
연관 링크 #1: 첨부된 링크가 없습니다.
-
연관 링크 #2: 첨부된 링크가 없습니다.
-
-
[2021-06-07 17:21:48] @Certego_Intel #Malware #Cerber #Blocklist Domain: 3000tl-onlinedestek.com VirusTotal: https://www.virustotal.com/gui/domain/3000tl-onlinedestek.com #CyberSecurity #ThreatIntel (bot generated)
-
[2021-06-04 17:21:46] @Certego_Intel #Malware #Cerber #Blocklist Domain: saglikdevlethibesi.com VirusTotal: https://www.virustotal.com/gui/domain/saglikdevlethibesi.com #CyberSecurity #ThreatIntel (bot generated)
-
[2021-04-04 20:12:26] @alamutepesi2 http://193.37.212.137 #cerberus @TRCert @B0rys_Grishenko @Cengiz86035319 @LukasStefanko @ReBensk https://www.virustotal.com/gui/file-analysis/Y2ZlZmJkMmU1ODUzYTcwNDNlZjkzZDY0YTYyZDI2MmI6MTYxNzU0MTkxNQ= = /detection
-
[2021-04-04 17:31:33] @noexceptcpp @malwrhunterteam ????️Cerberus v2 ????️ Endpoint: urlAdminPanel: http://gostmarest.ga key: 2y8A247qzTucI ????Relations: https://www.virustotal.com/gui/ip-address/91.214.124.121/relations https://twitter.com/noexceptcpp/status/1378656478328987653/photo/1
-
[2021-03-27 10:16:56] @Arkbird_SOLG Mid March : https://app.any.run/tasks/ef9a1555-f349-41c8-9643-16512c11e5d4/ AutoIT: Sample : https://app.any.run/tasks/9d8dac9a-4fcc-42ae-aa09-9ca73ff6656f Loader au3 : https://github.com/StrangerealIntel/Cerberus/blob/master/Taurus/2020-11-24/loader.au3 Old Analysis: https://github.com/StrangerealIntel/CyberThreatIntel/blob/9490631911f6c163416f9240dabb8d766ed6feb2/Additional%20Analysis/UnknownTA/2020-09-07/Analysis.md
-
[2021-03-25 18:06:25] @500mk500 @ReBensk + domainpastcode.xyz (the same IP with oddlysatis.xyz : 212.80.216.36): https://www.virustotal.com/gui/file/6df747adf0a1ecfbce5baa3a649caf1d77559cbc181edefaab74211731181f38/detection #Android #Cerberus
-
[2021-03-15 03:07:47] @bl4ckh0l3z @malwrhunterteam #cerberus #banker ???? C2: 144.76.217.118
-
[2021-03-02 23:30:37] @500mk500 @B0rys_Grishenko @PaczkomatyPL @apkdetect @CSIRT_KNF @CERT_OPL @CERT_Polska @PPiekutowski @ThreatLabsPL As far as I can see/guess: all .*ga. *.top. *.tw domains for 2021 year could be covered as #Android #Cerberus detection: https://www.virustotal.com/gui/ip-address/47.254.157.47/relations
-
[2021-02-26 16:59:36] @500mk500 #Android #Cerberus Domain: supershopt-short.com https://www.virustotal.com/gui/file/7ea4d75755b93fe577bdef0fd5b1a68a5d44cc61f0acbe5bbdfe7f80ec4d1e88/detection cc @ReBensk @Cengiz86035319 @B0rys_Grishenko @Vlad86317048 @HandanG93391703
-
[2021-01-26 02:05:18] @500mk500 Looks like #Android #Cerberus that targets Italian customers. https://www.virustotal.com/gui/file/9ae593c5611fa04fc0b7cf85f356b0ac92dcbe51fc5f481425ec7d6743368447/detection C2: montanatony.xyz (from article). cc @ReBensk @Cengiz86035319 @B0rys_Grishenko @Vlad86317048 https://twitter.com/AgidCert/status/1353763168909225987
-
[2021-01-12 17:07:24] @ni_fi_70 Nice #Bank99 phishing mld.seriesnow.website/clutch.php -> meine.bank99.at-sicherheitsid198193635191}.xyz Ah. not surprising. leads to #Android #Cerberus https://www.virustotal.com/gui/file/8db2a30f18f944b3c37d7182c3f5814f736b3ba730442dca8ccfca5882b28240/detection https://twitter.com/ni_fi_70/status/1348919495893639168/photo/1
-
[2021-01-03 09:02:01] @500mk500 @Vlad86317048 @TRCert I strongly believe we can have all *.tk domains detected as #Android #Cerberus from 95.179.147.178: https://www.virustotal.com/gui/ip-address/95.179.147.178/relations
-
[2020-11-26 18:19:34] @f3d__ @malwrhunterteam @JAMESWT_MHT @bl4ckh0l3z @AgidCert @D3LabIT related cerberus sample delivered via play.gooogle.services 2 months ago: https://www.virustotal.com/gui/file/d08dd3a84dcecdec0f4bcee3096b5f17602817647badaf3eb46eb97cb364419c/detection
-
[2020-11-22 06:48:59] @Arkbird_SOLG Thanks to @ffforward for the sample. Full code + Decoder (for automatise the analysis): https://github.com/StrangerealIntel/Cerberus/tree/master/UnknownJSLoader/2020-11-21 Yara rule: https://github.com/StrangerealIntel/DailyIOC/tree/master/2020-11-21/Gootkit Malquery : https://www.hybrid-analysis.com/yara-search/results/9bed7163c8810d2b149645e7a616f9389c044e12bc65cf57fa5d40eb0289ba41 ref: https://twitter.com/ffforward/status/1330214661577437187
-
[2020-11-10 02:08:21] @jjrruiz @GoogleCloud_ES #malware en los servidores de Google Cloud. #Troyanos bancariss de la familia #Cerberus: * http://34.105.212 . 184 * http://34.66.208 . 94 Pruebas en #virustotal: * http://virustotal.com/gui/url/cd7d81a3d77400682de241d4af05179a9658bcb06bcb2a3afa662d0318aa0cac/detection * http://virustotal.com/gui/url/530c6360c365c72f8c01e486387ddeca86963b448e8bedd5f48a850fa6e5e72f/detection Por favor. retiradlos a la brevedad
-
[2020-09-29 22:37:18] @Arkbird_SOLG Thanks to @KorbenD_Intel @JAMESWT_MHT for their help. Code. pictures. samples: https://github.com/StrangerealIntel/Cerberus/tree/master/FIN7/2020-09-29 Bazaar: https://bazaar.abuse.ch/sample/003645e2686bf863585f95532e847dfe8f3b791c5b36f1a02ea2060f97b12125/
-
[2020-09-13 00:33:35] @mertcangokgoz Cerberus Botnet Incident IOC URL: http://pandemi-ihtiyaci-gov-tr.online Name: eDestek.apk Hash: b3ab188c5dd5e7f49580d691cdd089f57fdeab72c98ffcb5bb80beace42fa70d Cc: cengizsokak1.com https://www.virustotal.com/gui/file/b3ab188c5dd5e7f49580d691cdd089f57fdeab72c98ffcb5bb80beace42fa70d/detection … @malwrhunterteam
-
[2020-09-04 18:25:18] @500mk500 All domains from 47.254.178.220 are #Android #Cerberus : https://www.virustotal.com/gui/ip-address/47.254.178.220/relations … here. not only tokatcilarkrali007.site
-
[2020-08-28 00:04:00] @B0rys_Grishenko @Paczkomaty znalazłem na Koodous. wciąż aktywna i świeża próbka InPost - 1.0 https://www.virustotal.com/gui/file/4280cf105b5c5ce02545f4749d3def909afd724bff72273e11c73fe6c6e49f85/relations … @CERT_OPL @CERT_Polska @ThreatLabsPL jakieś info o domenie z której pochodzi? @apkdetect potwierdzisz że to #cerberus?
-
[2020-08-27 18:20:53] @ni_fi_70 This is #Cerberus and the same here. also not so much detected ;-) https://www.virustotal.com/gui/file/627ff665d91e875675b613226a1292a32ba6766be5b7aba9f57440d6d0b86821/detection … https://twitter.com/malwrhunterteam/status/1298884692586962944 … pic.twitter.com/tf5xzhCPjr
-
[2020-08-13 18:05:44] @ni_fi_70 Nice #PayLife #phishing from wearehentai\art ;-) leads to #Cerberus #Banker https://www.virustotal.com/gui/file/ca37e180bb28e9389bce93712c63beec5c7d71f2b71cea0b7d4d82563e5baa5e/detection … pic.twitter.com/pPgjs600bM
-
[2020-07-29 20:06:08] @ni_fi_70 #Cerberus #Banker from #BawagPSK Phishing ebanking-bawagpsk-id194719712.}xyz/psk/e22a7ea26f9a60dccdadaae0cab32d61/login/? https://www.virustotal.com/gui/file/5046239ec5ea6a704e7d5e767a6f924840dd553068018eb33dbdea5808039bc5/detection … pic.twitter.com/JvKzZcTMjq
-
[2020-07-24 21:07:45] @500mk500 All *.xyz and *.top domains from IP: 8.209.108.211 here could be marked as #Android #Cerberus C2 : https://www.virustotal.com/gui/ip-address/8.209.108.211/relations …
-
[2020-07-20 17:20:00] @Certego_Intel #Malware #Cerber #Blocklist Domain: illustriousx.site VirusTotal: https://www.virustotal.com/gui/domain/illustriousx.site … #CyberSecurity #ThreatIntel (bot generated)
-
[2020-07-13 01:58:30] @500mk500 All *.top domains from IP: 8.208.25.69 belong to #Android #Cerberus : https://www.virustotal.com/gui/ip-address/8.208.25.69/relations …
-
[2020-07-11 22:25:33] @B0rys_Grishenko #Inpost #malware #cerberus SHA256: 17bb9276d3243445b1a52e2d4ba4a83ecec5c8a18d7dfeadaf46a077c7cfe04c https://www.virustotal.com/gui/file/17bb9276d3243445b1a52e2d4ba4a83ecec5c8a18d7dfeadaf46a077c7cfe04c/details … C2: hxxp://gugkokrlers.top hxxp://gugkrlers.top @malwrhunterteam @ThreatLabsPL
-
[2020-06-22 17:10:07] @Jan0fficial but also Cerberus. the classes.dex 4/61 https://www.virustotal.com/gui/file/e1942a95081899dc65177f41106df45e20d03ad813578aef35506ea973699cef/detection …
-
[2020-06-18 16:49:16] @yusaerguven #Android #Banking #Trojan #Malware #Cerberus https://dstk-sosyal-pndmi.com/pandemi.apk https://sinizsiz20gb-internet.com/googleplay.apk Sample: https://www.virustotal.com/gui/file/cea4d343c84bfa963dc830ab6e567089f96c615a55c21994370e16e2d787e1dc/detection … https://analyze.intezer.com/#/analyses/0f9ec0d9-e05d-4631-8ef9-0dbb45d82d37 … @TRCert @malwrhunterteam @Spam404 @MalwarePatrol pic.twitter.com/A5lkckRBnX
-
[2020-06-16 00:55:56] @yusaerguven #Android #Banking #Trojan #Malware #Cerberus https://pndmi-ssyal-dstk.com/pandemi.apk Sample: https://www.virustotal.com/gui/file/dd1e50285fbc3fcf0453901486d31df530cb697e7aca1ea11a6513131ddd54e2/detection … https://analyze.intezer.com/#/analyses/4e3dfc49-9168-437e-99fe-fe7e57d6e8f1 … @TRCert @malwrhunterteam @Spam404 @MalwarePatrol pic.twitter.com/kNqgMKyiRQ
-
[2020-06-14 18:52:24] @yusaerguven #Android #Banking #Trojan #Malware #Cerberus https://dstk-ssyal-pandemi.com/pandemi.apk Sample: https://www.virustotal.com/gui/file/3d3a9762de70e2bbc1f2f4d68f5e64244e79284d4ed68ab5484f1a9182990cfa … https://analyze.intezer.com/#/analyses/41008990-d00b-4efa-8c0d-6262207a505c … @TRCert @malwrhunterteam @Spam404 @MalwarePatrol pic.twitter.com/1JqZ693sIQ
-
보이스피싱, 불법촬영물, 랜섬웨어, 사이버 안보위협 등에 관련된 사안의 경우 다음과 같은 기관 및 단체의 도움을 받을 수 있습니다. 노모어랜섬(No More Ransom) 경찰청 사이버범죄 신고시스템 국가정보원 민원센터