サイバーリスク情報提供 Dアラート 特許取得済み

不正URLへのアクセス、不正メールの受信

メール受信した
弊社お客様0 URLアクセスした
弊社お客様28
2023/10/25
※2023/10/25 更新
マルウェア感染させると考えられるURLを検知(2023/10/25) 
■IoC(※1)





Type:
IOC:
Signature:




URL
hxxp://103[.]72[.]68[.]128/S2210M/smss[.]exe
hxxp://china[.]dhabigroup[.]top/_errorpages/sbin22zx[.]exe		
Formbook




URL
hxxp://mxzex322[.]xyz/777/skx6wKf[.]exe
SystemBC




URL
hxxp://193[.]42[.]33[.]51/qasx[.]vbs
hxxp://193[.]42[.]33[.]51/smito[.]vbs
hxxp://141[.]98[.]6[.]91/2010/SAN[.]txt
hxxp://141[.]98[.]6[.]91/2010/MAH[.]txt
hxxp://141[.]98[.]6[.]91/2150/2/SMH[.]txt
hxxp://141[.]98[.]6[.]91/2150/1/MHM[.]txt
hxxp://141[.]98[.]6[.]91/windows/HNB[.]txt
hxxps://api[.]telegram[.]org/bot6663697988:AAHBsfmbPr_JinYR7jDRpZloxUBi6EcQ6HE/
hxxps://api[.]telegram[.]org/bot6475150763:AAFSaMWIpAeiCNQFdS0vxz0W6HCxWx96MFk/
hxxps://api[.]telegram[.]org/bot6965219356:AAHyrA1bIgaLJof2YxCIzYRgbH23pVjvG0U/
hxxps://api[.]telegram[.]org/bot6601795398:AAHykVzYnO-FQhZvS1CdJizylK01Qffj5l0/
hxxps://discord[.]com/api/webhooks/1164504301004136538/mthHKOfB1I63beYFyOHDyCKi6hs6K4mGMegPv58UaFknoPRxy3jDDVnOGEbWz3LMUpMm		
Agent Tesla




URL
hxxp://185[.]172[.]128[.]69/newumma[.]exe
Glupteba




URL
hxxp://volkels[.]fun/api
hxxp://hokagef[.]fun/api
hxxp://senpaireek[.]fun/api
hxxp://79[.]137[.]192[.]18/newmar[.]exe		
Lumma Stealer




URL
hxxp://jay[.]ransomproducts[.]top/_errorpages/jay/five/fre[.]php
hxxp://46[.]183[.]221[.]4/350/audiodgse[.]exe
hxxp://38[.]255[.]37[.]50/sett/ansi[.]exe
hxxp://103[.]39[.]124[.]209/satup/kung[.]exe		
LokiBot




URL
hxxp://192[.]3[.]232[.]37/windows/IGCC[.]vbs
hxxp://192[.]3[.]232[.]37/windows/winl/HTMLCachesClear[.]dOC
hxxp://141[.]98[.]6[.]91/2010/1/HTMLprofile[.]dOC
hxxp://141[.]98[.]6[.]91/2150/1/HTMLCacheCentos[.]dOC
hxxp://141[.]98[.]6[.]91/2010/1/MAH[.]vbs
hxxp://141[.]98[.]6[.]91/2150/1/mhs[.]vbs
hxxp://141[.]98[.]6[.]91/2010/2/san[.]vbs
hxxp://141[.]98[.]6[.]91/windows/HTMLobject[.]vbs
hxxps://img[.]proxies[.]world/u/ImxyQs[.]exe		
zgRAT




URL
hxxps://jqj[.]result[.]garrettcountygranfondo[.]org/editContent
hxxps://b1omodh51hw6g3d[.]com/vvmd54/
hxxps://b1omodh51hw6g3d[.]com/ZgbN19Mx
hxxps://b1omodh51hw6g3d[.]com/lander/chrome_1695206714/_index[.]php
hxxps://xqtr[.]result[.]garrettcountygranfondo[.]org/editContent		
FAKEUPDATES




URL
hxxp://43[.]159[.]136[.]92/pixel[.]gif
hxxp://google[.]luccycatch[.]tech/g[.]pixel
hxxp://45[.]145[.]4[.]97/ca
hxxp://82[.]156[.]29[.]83:12345/dpixel
hxxp://110[.]41[.]11[.]72/fwlink
hxxp://60[.]204[.]135[.]117/fwlink
hxxps://ts[.]ibuilder360[.]com/IE9CompatViewList[.]xml
hxxps://115[.]159[.]115[.]41/__utm[.]gif
hxxp://43[.]251[.]159[.]107/fwlink
hxxps://39[.]101[.]150[.]221/socialapiVersion=1[.]1
hxxps://121[.]40[.]66[.]171/dpixel
hxxp://8[.]134[.]71[.]235/g[.]pixel
hxxp://123[.]56[.]82[.]231/wp08/wp-includes/dtcla[.]php
hxxp://47[.]104[.]179[.]218:2222/ga[.]js
hxxp://47[.]94[.]130[.]42:88/pixel[.]gif
hxxp://121[.]40[.]250[.]30/__utm[.]gif
hxxp://101[.]42[.]141[.]237:8090/g[.]pixel
hxxp://47[.]105[.]69[.]34:8000/j[.]ad
hxxp://47[.]94[.]221[.]227/load
hxxp://118[.]24[.]128[.]43:8888/pixel
hxxp://36[.]154[.]179[.]146:7799/ca
hxxp://92[.]63[.]196[.]45:82/en_US/all[.]js
hxxp://92[.]63[.]196[.]45:81/cx
hxxp://162[.]14[.]209[.]70:8000/fwlink
hxxps://172[.]245[.]92[.]226/match
hxxp://47[.]99[.]180[.]67:9090/pixel[.]gif
hxxps://172[.]234[.]29[.]224/s/ref=nb_sb_noss_1/167-3294888-0262949/field-keywords=books
hxxps://116[.]205[.]164[.]166/ca
hxxps://mlcr0s0ft[.]one/api/3
hxxps://8[.]135[.]112[.]178/jquery-3[.]3[.]1[.]min[.]js
hxxps://107[.]172[.]86[.]186/match
hxxps://cs1[.]accountsync[.]net/api/1[.]1/1dc954cb
hxxp://134[.]122[.]160[.]145/jquery-3[.]3[.]1[.]min[.]js
hxxp://39[.]107[.]113[.]250:8888/cm
hxxp://176[.]113[.]115[.]99/g[.]pixel
hxxp://101[.]43[.]170[.]225/pixel[.]gif
hxxp://101[.]43[.]12[.]111:9999/g[.]pixel
hxxp://101[.]42[.]22[.]120:8000/fwlink
hxxp://120[.]92[.]208[.]134:8888/__utm[.]gif
hxxp://207[.]148[.]78[.]147/jquary-3[.]3[.]1[.]min[.]js
hxxp://124[.]70[.]45[.]102/load
hxxp://8[.]134[.]95[.]148:9999/g[.]pixel
hxxp://47[.]94[.]160[.]118:6666/load
hxxp://138[.]2[.]118[.]254:9999/ptj
hxxps://ts[.]ibuilder360[.]com/cm
hxxps://115[.]159[.]115[.]41/updates[.]rss
hxxp://updalo-1942638394[.]cos[.]ap-hongkong[.]tencent[.]lat:8080/update_wapp2[.]aspx
hxxps://142[.]171[.]39[.]101/fwlink
hxxp://104[.]245[.]213[.]48/ga[.]js
hxxp://104[.]245[.]213[.]48/match		
Cobalt Strike




URL
hxxp://45[.]63[.]67[.]40/vdQ/emiss
hxxp://155[.]138[.]224[.]36/abb/unsec
hxxp://216[.]128[.]135[.]12/upDJ/Teleg
hxxps://myessayhelp[.]com/st/
hxxps://greentechelectric[.]eu/ht/
hxxps://mso[.]af/tr/
hxxps://comoinvertir[.]co/tlu/
hxxps://trimonsa[.]mx/ttua/
hxxps://adfilms[.]lk/ev/
hxxps://selphyl-th[.]com/tl/
hxxps://srg[.]az/qpi/
hxxps://sheva[.]vn/lute/
hxxps://dsmedicalusa[.]com/uiit/
hxxps://worldfantasticgifts[.]com/np/
hxxps://colegiosembrador[.]cl/nu/
hxxps://miracle-mansions[.]com/ia/
hxxps://mhdcr[.]com/xmi/
hxxps://azaherelteeb[.]com/dli/
hxxp://almarsam[.]sa/mqu/
hxxps://sia[.]dz/re/
hxxp://rsbudikemuliaan[.]id/tuss/
hxxps://1qubed[.]com/eotr/
hxxp://patos[.]mx/dne/
hxxps://wizzlimited[.]co[.]uk/eumu/
hxxps://federalpolyayede[.]edu[.]ng/eqe/
hxxp://5bchem[.]ae/er/
hxxps://myekisan[.]com/isp/
hxxp://sunnyandscramble[.]com/cac/
hxxps://ttf[.]api[.]net[.]bd/qi/
hxxps://buyfon[.]ir/ipo/
hxxps://mpvworld[.]com/uamt/
hxxp://webtv24[.]org/ut/
hxxps://lsfairland[.]co[.]za/ur/
hxxps://rso-sa[.]com/itu/
hxxps://almarsam[.]sa/mqu/
hxxps://grandkadrihotel[.]com/ei/
hxxp://khanz[.]co[.]nz/imne/
hxxps://savers24[.]com/esd/
hxxps://eshraqa[.]co/le/
hxxp://topone[.]al/it/
hxxps://ta-nk[.]co[.]jp/data/oo_ochazuke_cup[.]zip
hxxps://in-jerusalem[.]net/ins/
hxxps://village-auto[.]net/sut/
hxxps://intl-investholding[.]com/dmai/
hxxps://mensi-ip[.]com/ot/
hxxp://terrafirmanorth[.]ca/tea/
hxxp://polymersanaat[.]com/ent/
hxxps://ugelconcepcion[.]gob[.]pe/onm/
hxxps://koyahtx[.]com/rrio/
hxxp://jetarabia[.]com/ea/
hxxps://efitacademy[.]com[.]au/eoie/
hxxps://viacosmeticos[.]com/rpt/
hxxps://ppgfans[.]com/ris/
hxxp://fynefield[.]com/vee/
hxxps://iarista[.]com/aeul/
hxxp://obstetric-ultrasound[.]com/tb/
hxxps://jpbenterprise[.]com/eeos/
hxxps://gonow[.]cl/iplm/
hxxp://unicornmedialabs[.]in/pnue/
hxxps://corporativogvabogados[.]com/mu/
hxxp://efitacademy[.]com[.]au/eoie/
hxxps://francais-english-arabic[.]com/tcdt/
hxxps://newvitec360[.]com/suqu/
hxxp://worldfantasticgifts[.]com/np/
hxxps://expertaims[.]net/lse/
hxxp://opentrade[.]com[.]bo/ntc/
hxxps://slmc[.]gov[.]lk/agra/
hxxps://kayanfurniture[.]com/etf/
hxxp://souqaleasr[.]com/ctdu/
hxxps://woopazar[.]com/mt/
hxxp://gobelmarine[.]com/itet/
hxxps://inspira-inmobiliaria[.]com/cih/
hxxp://ekproducciones[.]com/el/
hxxps://hillstonmotorinn[.]com[.]au/ivx/
hxxps://arnsms[.]ir/ruee/
hxxps://books[.]ttc[.]edu[.]sg/qud/
hxxps://cal-liberty[.]com/euq/
hxxps://ranifood[.]com[.]bd/red/
hxxp://rso-sa[.]com/itu/
hxxp://oqily[.]com/sura
hxxp://comoinvertir[.]co/tlu/
hxxps://fishkeeping[.]com/iiq/
hxxp://cal-liberty[.]com/euq/
hxxps://khanz[.]co[.]nz/imne/
hxxps://coffesso[.]com/aus/
hxxps://fynefield[.]com/vee/
hxxp://kayanfurniture[.]com/etf/
hxxps://polymersanaat[.]com/ent/
hxxps://colombiacomputersupport[.]com/duoo/
hxxps://institutotolosa[.]edu[.]mx/duc/
hxxp://federalpolyayede[.]edu[.]ng/eqe/
hxxps://carrepairdubai[.]ae/daq/
hxxps://shringarseva[.]in/st/
hxxps://dprima[.]in/tee/
hxxp://fishkeeping[.]com/iiq/
hxxp://kec[.]edu[.]np/ulto
hxxp://iso-supporter[.]com/preu/
hxxp://adfilms[.]lk/ev/
hxxps://forbangladesh[.]com/nniu/
hxxps://waresaislamtrust[.]com/opiu/
hxxp://xv-fiesta[.]com/tatu/
hxxps://alraeid[.]com/xs/
hxxp://generalserviceprovides[.]us/esi/
hxxps://shrutratnakar[.]org/doc/
hxxps://topone[.]al/it/
hxxp://nicolewilliamsgossip[.]co[.]uk/nen/
hxxps://bhagirathitv[.]com/suq/
hxxps://linvite[.]life/vo/
hxxps://nicolewilliamsgossip[.]co[.]uk/nen/
hxxps://fedgovt[.]sbs/niad/
hxxps://lider[.]fm/tiep/
hxxp://malaysia-study[.]com/odn/
hxxps://kondisioner[.]az/tem/
hxxp://hendoshkagroup[.]com/nmi/
hxxps://sunnyandscramble[.]com/cac/
hxxps://atlanticosystems[.]com/sbeo/
hxxps://electrosolution[.]us/si/
hxxps://netstarst[.]com/qiso/
hxxps://quickie[.]com[.]do/odaq/
hxxps://centralfinance[.]com[.]np/ada/
hxxp://in-jerusalem[.]net/ins/
hxxp://newvitec360[.]com/suqu/
hxxps://careersit[.]co[.]za/irh/
hxxps://frey2[.]com/lt/
hxxps://iso-supporter[.]com/preu/
hxxp://infomastar[.]com/rns/
hxxp://justalkalinewater[.]co[.]za/ii/
hxxp://devpassion[.]com[.]mx/iot/
hxxps://edenstarsaigonhotel[.]com/sea/
hxxp://allerlesskit[.]com/ou/
hxxp://mso[.]af/tr/
hxxp://jaya-chain[.]com/adrs/
hxxp://central-ai[.]org/ina/
hxxps://infomastar[.]com/rns/
hxxps://ultraliainsurance[.]com/ruqi/
hxxps://bertam[.]com[.]my/uoau/
hxxps://jrcpalladio[.]com/mi/
hxxps://bluskyglobal[.]com/nvis/
hxxps://rinconpicoconsultoria[.]com/ee/
hxxps://souqaleasr[.]com/ctdu/
hxxps://jhinstitute[.]com/oem/
hxxp://acesseinfo[.]com[.]br/aaue/
hxxp://village-auto[.]net/sut/
hxxps://44residenceandapartment[.]org/sau/
hxxps://homesrenovations[.]us/tn/
hxxps://central-ai[.]org/ina/
hxxp://arnsms[.]ir/ruee/
hxxps://patelresidency[.]com[.]pk/le/
hxxp://smroller[.]com/ssm/
hxxps://devpassion[.]com[.]mx/iot/
hxxp://thelocationgold[.]com/cuu/
hxxps://projectdemo[.]xyz/ef/
hxxps://ekproducciones[.]com/el/
hxxp://mail[.]srg[.]az/ge
hxxps://lensclicker[.]com/odbe/
hxxps://khaithaclothien[.]edu[.]vn/tssu/
hxxps://yugenkatsu[.]online/eauu/
hxxp://mpvworld[.]com/uamt/
hxxp://agriformexico[.]com/squi/
hxxps://hendoshkagroup[.]com/nmi/
hxxp://woopazar[.]com/mt/
hxxp://institutotolosa[.]edu[.]mx/duc/
hxxp://grandkadrihotel[.]com/ei/
hxxp://mhdcr[.]com/xmi/
hxxp://44residenceandapartment[.]org/sau/
hxxp://valueworldgroupe[.]co[.]ke/et/
hxxps://siliconsquad[.]in/eq/
hxxps://thelocationgold[.]com/cuu/
hxxps://inspiringwomen[.]co[.]za/il/
hxxp://sheva[.]vn/lute/
hxxps://xv-fiesta[.]com/tatu/
hxxps://nguyendinhchieudng[.]edu[.]vn/eece/
hxxps://mbbadvertiser[.]com/on/
hxxps://jakamagroup[.]com/pe/
hxxps://redeseshoradecrecer[.]com/sts/
hxxps://ironreward[.]com/apu/
hxxps://justalkalinewater[.]co[.]za/ii/
hxxps://abrfitness[.]com/aps/
hxxps://lawguie[.]com/eafi/
hxxps://jetarabia[.]com/ea/
hxxps://academiajabez[.]com/sec/
hxxp://shrutratnakar[.]org/doc/
hxxps://valueworldgroupe[.]co[.]ke/et/
hxxps://ounizly[.]com/om/
hxxp://plusmag[.]ro/aas/
hxxps://5bchem[.]ae/er/
hxxps://kurstjensballonvaarten[.]nl/cd/
hxxps://patos[.]mx/dne/
hxxp://mbbadvertiser[.]com/on/
hxxp://eshraqa[.]co/le/
hxxps://flashnewsbensedira[.]com/deui/
hxxps://smroller[.]com/ssm/
hxxps://trimonsa[.]mx/uuil/
hxxp://buyfon[.]ir/atv
hxxp://viacosmeticos[.]com/rpt/
hxxps://terrafirmanorth[.]ca/tea/
hxxps://stonecut[.]co[.]uk/gaai/
hxxp://nobshomeinsurance[.]com/eea/
hxxps://webtv24[.]org/ut/
hxxp://dsmedicalusa[.]com/uiit/
hxxps://buildermediasolutions[.]com/utne/
hxxps://obstetric-ultrasound[.]com/tb/
hxxps://generalserviceprovides[.]us/esi/
hxxps://kopihitam[.]click/soar/
hxxp://intl-investholding[.]com/dmai/
hxxp://nguyendinhchieudng[.]edu[.]vn/eece/
hxxps://rawdah-mlhm[.]com/mai/
hxxps://3plecom[.]com/pv/
hxxps://gobelmarine[.]com/itet/
hxxps://inspiringwomen[.]co[.]za/etn/
hxxps://netspeedmeter[.]com/ta/
hxxps://generationsholdings[.]com/uct/
hxxps://medicalsoft[.]ec/oem/
hxxp://centralfinance[.]com[.]np/ada/
hxxps://happybirthdaysmeme[.]com/ti/
hxxp://rubiomoveis[.]com[.]br/ltui/
hxxps://lfk-es[.]com/fiu/
hxxp://academiajabez[.]com/sec/
hxxp://elevapark[.]com[.]mx/iss/
hxxp://stappenvzw[.]be/ute/
hxxps://tempserver[.]space/enut/
hxxps://malaysia-study[.]com/odn/
hxxp://tempserver[.]space/enut/
hxxp://lfk-es[.]com/fiu/
hxxp://mensi-ip[.]com/ot/
hxxps://marnite[.]co/qnc/
hxxps://iprotech[.]fun/ma/
hxxps://conadeh[.]hn/ieg/
hxxp://conadeh[.]hn/ieg/
hxxp://fmclog[.]co[.]uk/eit/
hxxps://elevapark[.]com[.]mx/iss/
hxxp://iprotech[.]fun/ma/
hxxps://di-revol[.]com/ru/
hxxps://moucecore[.]org/to/
hxxps://extintoresflash[.]cl/teci/
hxxps://discoverscience[.]be/aole/
hxxps://medtraxcourierservices[.]com/am/
hxxps://whoareyoukidshoes[.]com/tnup/
hxxps://acesseinfo[.]com[.]br/aaue/
hxxp://edenstarsaigonhotel[.]com/sea/
hxxp://pollosantiago[.]com/ere/
hxxps://rubiomoveis[.]com[.]br/ltui/
hxxps://jaya-chain[.]com/adrs/
hxxps://dessertartbydeepali[.]com/et/
hxxp://haulmaxtyres[.]com[.]au/rea/
hxxps://pollosantiago[.]com/ere/
hxxps://plusmag[.]ro/aas/
hxxps://fmclog[.]co[.]uk/eit/
hxxps://deputadoevandroaraujo[.]com[.]br/aet/
hxxps://istaffrecruits[.]com/il/
hxxp://lsfairland[.]co[.]za/ur/
hxxps://aseagro[.]com[.]ar/ssm/
hxxp://stonecut[.]co[.]uk/gaai/
hxxp://marnite[.]co/qnc/
hxxp://bhagirathitv[.]com/suq/
hxxps://creapb[.]org[.]br/ch/
hxxps://haulmaxtyres[.]com[.]au/rea/
hxxp://fmcidade[.]com/eqmu/
hxxps://opentrade[.]com[.]bo/ntc/
hxxps://unicornmedialabs[.]in/pnue/
hxxps://e-amwaj[.]com/no/
hxxps://nobshomeinsurance[.]com/eea/
hxxps://arishhomeschool[.]com[.]ng/ead/
hxxp://bar-nightclub-insurance[.]com/lete/
hxxp://abrfitness[.]com/aps/
hxxp://patelresidency[.]com[.]pk/le/
hxxps://rsbudikemuliaan[.]id/tuss/
hxxps://1qubed[.]com/puc/
hxxps://allerlesskit[.]com/ou/
hxxp://ounizly[.]com/om/
hxxp://deputadoevandroaraujo[.]com[.]br/aet/
hxxps://fmcidade[.]com/eqmu/
hxxps://exsef[.]com/hu/
hxxps://bar-nightclub-insurance[.]com/lete/
hxxp://jrcpalladio[.]com/mi/
hxxp://azaherelteeb[.]com/dli/
hxxps://oftalmologia2020[.]com/eu/
hxxp://ppgfans[.]com/ris/
hxxp://jakamagroup[.]com/pe/
hxxp://whoareyoukidshoes[.]com/tnup/
hxxps://blanchecatfight[.]com/to/
hxxps://myfootball247[.]com/sen/
hxxp://blanchecatfight[.]com/to/
hxxp://colombiacomputersupport[.]com/duoo/
hxxps://footballeague[.]co[.]uk/nere/
hxxps://stracons[.]org/ustt/
hxxps://stappenvzw[.]be/ute/
hxxp://netstarst[.]com/qiso/
hxxp://discoverscience[.]be/aole/
hxxp://jhinstitute[.]com/eev
hxxp://stocksstudy[.]com/oseo
hxxp://extintoresflash[.]cl/teci/		
Pikabot




URL
hxxp://45[.]40[.]96[.]248/img/bola[.]txt
Remcos




URL
hxxps://yours-app[.]xyz/arsLan/phone[.]txt
hxxps://yours-app[.]xyz/arsLan
hxxps://yours-app[.]xyz/arsLan/log[.]php
hxxps://vpn-v2rynge-ir[.]tk/mr/web[.]txt
hxxps://vpn-v2rynge-ir[.]tk/mr/log[.]php
hxxps://vpn-v2rynge-ir[.]tk/sal/log[.]php
hxxps://vpn-v2rynge-ir[.]tk/sal/web[.]txt
hxxps://vpn-v2rynge-ir[.]tk/neda/web[.]txt
hxxps://vpn-v2rynge-ir[.]tk/neda/log[.]php
hxxps://markazpay[.]com/sbsc
hxxps://markazpay[.]com/sbs/contact[.]php
hxxps://markazpay[.]com/sbs/id[.]txt
hxxps://markazpay[.]com/sbs/sms[.]php
hxxps://markazpay[.]com/sbs/sms[.]php?result=ok&action=upload&androidid=
hxxps://markazpay[.]com/sbs/requests[.]php
hxxps://vpn-v2rynge-ir[.]tk/may/web[.]txt
hxxps://vpn-v2rynge-ir[.]tk/may/log[.]php		
IRATA




URL
hxxp://4859395cm[.]whiteproducts[.]ru/L1nc0In[.]php
DCRat




URL
hxxp://116[.]203[.]24[.]34/6747f50ff0a064fd[.]php
hxxp://116[.]203[.]24[.]34/2ad3a523537ac99b/mozglue[.]dll
hxxp://116[.]203[.]24[.]34/2ad3a523537ac99b/softokn3[.]dll
hxxp://116[.]203[.]24[.]34/2ad3a523537ac99b/vcruntime140[.]dll
hxxp://116[.]203[.]24[.]34/2ad3a523537ac99b/msvcp140[.]dll
hxxp://116[.]203[.]24[.]34/2ad3a523537ac99b/sqlite3[.]dll
hxxp://116[.]203[.]24[.]34/2ad3a523537ac99b/freebl3[.]dll
hxxp://116[.]203[.]24[.]34/2ad3a523537ac99b/nss3[.]dll		
Stealc




URL
hxxp://81[.]19[.]135[.]17:8080/msirqdppgyg
hxxp://81[.]19[.]135[.]17:8080/rqdppgyg		
DarkGate




URL
hxxp://lrvsd[.]shop/NOV22/index[.]php
Azorult




URL
hxxps://kenesrakishev[.]net/cllip[.]exe
hxxps://kenesrakishev[.]net/bin/audios[.]exe		
RedLine Stealer




URL
hxxp://jamesjordan[.]top/timeSync[.]exe
Mars Stealer






※1「i-FILTER」アクセスログを検索し端末を特定してください
    不要なアクセスを避けるため、一部変更しております。


■製品対応状況(※2)
▽i-FILTER(※3)
・[脅威情報サイト]カテゴリでブロック可能

※2 ブロックの可否は各製品の設定によるため、実際の結果はアクセスログを参照してください。
※3 暗号化された通信の場合は、SSL Adapterの設定を「利用」にする必要があります。

※ 特許取得済み(特許6716051号)/ Webサイトの改ざんの検知において特許を取得

「Dアラート」よりも詳細な情報に加え、適切な対処方法もご案内する
「i-FILTER@Cloud Dアラート発信レポートサービス」というオプションもご用意しております

「Dアラート発信レポートサービス」
▲「i-FILTER@Cloud Dアラート配信レポートサービス」の詳細はこちらから
イベント・セミナー情報