General
-
Target
https://ipinfo.io/?utm_source=google&utm_medium=cpc&utm_medium=cpc&utm_campaign=20002935736&utm_term=ip%20check%20tool&hsa_cam=20002935736&hsa_src=g&hsa_acc=4130784448&hsa_grp=151217896314&hsa_ad=655593168626&hsa_tgt=kwd-341471079106&hsa_kw=ip%20check%20tool&hsa_mt=p&hsa_net=adwords&hsa_ver=3&gad_source=1&gclid=Cj0KCQiAi_G5BhDXARIsAN5SX7qE1WY2o4xdLiA2RtfdsbRJ7OZbzlZ0h0BERh-QzxWcvYcnhs03vw4aAkdbEALw_wcB
-
Sample
241119-ybvvdawkfj
Malware Config
Targets
-
-
Target
https://ipinfo.io/?utm_source=google&utm_medium=cpc&utm_medium=cpc&utm_campaign=20002935736&utm_term=ip%20check%20tool&hsa_cam=20002935736&hsa_src=g&hsa_acc=4130784448&hsa_grp=151217896314&hsa_ad=655593168626&hsa_tgt=kwd-341471079106&hsa_kw=ip%20check%20tool&hsa_mt=p&hsa_net=adwords&hsa_ver=3&gad_source=1&gclid=Cj0KCQiAi_G5BhDXARIsAN5SX7qE1WY2o4xdLiA2RtfdsbRJ7OZbzlZ0h0BERh-QzxWcvYcnhs03vw4aAkdbEALw_wcB
Score6/10-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-