Update and rename mark-ioc to aptnote0403

2025-05-06 19:03:35 +00:00 · 2019-04-03 13:36:29 +08:00 · 2019-04-03 13:36:29 +08:00 · 7207c68193
commit 7207c68193
parent 7f6359c4f6
2 changed files with 29 additions and 7 deletions
--- a/kimsuky/aptnote0403
+++ b/kimsuky/aptnote0403
@ -0,0 +1,29 @@
+mark
+
+20190403
+Kimsuky Organization, Operation Stealth Power Silence Operation
+https://blog.alyac.co.kr/2234
+
+hwp: 
+3.17 미국의 편타곤 비밀 국가안보회의.hwp
+최근 한반도 관련 주요국 동향.hwp
+the creator name  "Tom"
+computer name : Tom
+
+mshta.exe http://xxx/shop/price/com/first.hta
+http://xxx/shop/price/com/expres.php?op=1
+http://xxx/shop/kcp/js/com/expres.php?op=1
+cow.php
+moonx.hta
+
+upload.php
+$env:temp\processlist.txt 
+$env:temp\ttmuprc.ssa 
+$env:temp\servcicelist.txt
+
+PDF:
+enindi25-142.godo.co[.]kr（106.249.25.142 ）
+phishing:
+tcjst.com/img/dot[.]gif
+
+Operation Stealth Power related Low Kick （https://blog.alyac.co.kr/2209）
--- a/kimsuky/mark-ioc
+++ b/kimsuky/mark-ioc
@ -1,7 +0,0 @@
-mark
-
-20190403
-
-hwp: 최근 한반도 관련 주요국 동향.hwp
-the creator name  "Tom"
-computer name : Tom