2022护网日记第五天

杂谈

今天的分享分为三部分

• 恶意IP/域名情报
• 一些厂商漏洞汇总
• 你关心的趣事

恶意IP/域名情报

一些厂商的漏洞汇总

你关心的趣事？

有哪家单位被淘汰了吗？

目前据不完全统计这些单位可能已经出局

热心网友都在感叹为什么今年红队不猛？

因为，战斗才刚刚打响，据有关情报显示，后面红队将开放社工钓鱼限制，之前是需要报备的，现在无需报备。

同时，作为蓝队的童鞋们，一定要谨防借部分红队热心网友借助给客户修复设备的名义直接现场投毒😊

还有钓鱼🎣样本可以学习吗？

今天当然也有了，大家可以自行进行分析

URL && HASH	文件名	标签
https://www.virscan.org/report/71d12faa2adc65cab880df221870303a5879f1a9577bf9d60875dfceee494883	OfficeToPDF.exe 未检出 免杀	免杀
https://www.virscan.org/report/d53ef68a356827b1f941cfcd958487b2b73e8d19c49c8b7e88199cc1ef21499b	OfficeToPDF.exe 检出
https://www.virscan.org/report/721ba485cc016c23fa7ffd1664831ffaa9410567cd77642ebb8456709dce485a	集团通知.rar	文档
https://www.virscan.org/report/22332189e9f700344046198bb6bc70a6f0f01cd3b9185a54f89d189b7ca78fec	公司EM.docx
https://www.virscan.org/report/3f513b9e64d3238560c5d920cfb0a0f45a55aae6aafc730d997670c0e5b62d36	附件本
https://www.virscan.org/report/82e89ebd268254f83ec12f3aec76e9f2c7256286584521728ef2ea5ccfebc526
https://www.virscan.org/report/5901344b958830ed950e22280526429d5cfc6fc3a5ff8e07cc8a2be364c6c133	SHELL.EXE
https://www.virscan.org/report/daa4cf001088bc1b04fc32d692398e260e9281a46f0bcfdb802bddda9f6b9e4e	WINRAR简体商业版	免杀
https://www.virscan.org/report/a83ad0ab3fb23a39df60278f647c15f99cc557dbad47950f43946fba46255933
https://www.virscan.org/report/15713091c146f19709a877a9e9012112a2f0330693200c516b2804cd3fb3d037	a.pptx
https://www.virscan.org/report/33be55c605981d05c6d758c43189a56b2b01ff5f90ae2f6ba870e71d9452ae5c	snakes	免杀
https://www.virscan.org/report/ab03f83281f86d6a5acf535f0470fc40232a3097e00d880fef4e6a67c353c0cc
https://www.virscan.org/report/67c882b03c3cac6e49c76dbf20aafdb0763150e3b0921827f269138b077906f9
https://www.virscan.org/report/6d62f62e70b27ee9ef980ff7854b06ba23a368237f6b65d4ee3d18402f937f23
https://www.virscan.org/report/4f3e4514856a8b44ab7d6937dc30b4805bc338d5a48db9a00a3817a09c25a35f
https://www.virscan.org/report/df0a8b6fae8a42b830d6bcbfe67d56991d61ef06bd4a02a1aaf34ba844f11a6d	小秘密	钓鱼 AgentTesla
https://www.virscan.org/report/90093570ac18b2dbf099ac96cbadc37b61ca2a0ca59a9ad3e88bd7ba75b6a857	工网 安函	钓鱼
https://www.virscan.org/report/8efdfec379fcd44dfcaf9a619b6838d54b8931869d5a1d4540c898eccad3efba	集团VPN新版说明	钓鱼
https://www.virscan.org/report/6c642de4dd560d005fd59997bff5daff6c47410c9053f6aba23055ab8a6ab308	360sd.exe	钓鱼
https://www.virscan.org/report/628f71b4bd057f6ed781e429b672ce2dc2f4f5142929417199a01061bd1dbadb	合同登记2019_08_26(18_13_49_49)30102656.zip	文档 宏病毒
https://www.virscan.org/report/3f513b9e64d3238560c5d920cfb0a0f45a55aae6aafc730d997670c0e5b62d36	合同封面.docx
https://www.virscan.org/report/0e5e17aaacc525e39f0bde5b76cd086bcb8dcfb0172b4d8afed41b61ff397eab	合同目录.docx
https://www.virscan.org/report/c0bdb5de428c6962558f162073600649e22c93bbfd2c1b805b0ebda987faa71a
https://www.virscan.org/report/ec01d0215ba48538637c1e7118e55039397e36fe1ed671b3b63d2bd4366a42e4
https://www.virscan.org/report/858ae0c659b07169edc7732dd83d6fac536217093f2e2dc005c2864aa9ebba67	windows.exe	免杀，另一个漏掉了
https://www.virscan.org/report/c3b07b363a6cfab349c87b3c73dbf3578c8e92c3bbed6863ddcfafa3075d4cde	关于暗箱操作举报材料的情况说明.7z	免杀钓鱼
https://www.virscan.org/report/36b39171ac17f6cd0844d6f55dd4395513c92c23235a69e6de07b05ec57b5c16	王家成个人简历.exe	简历 钓鱼
https://www.virscan.org/report/3bf74171fe7b56548166ee7de190ea731dd729a26b2760ee7e98ae61156689b0	5 刘智远二标段技术标(2).rar
https://www.virscan.org/report/933d11d9d179055f80a4db466587cdf7a7c556220b00019e0b63ecb15d694039	附件1：工程合同施工界面划分.xls
https://www.virscan.org/report/669d9933325dc9bdf805e11f78417de08577f315ccd1972366997879ed56ac18
https://www.virscan.org/report/01a97ad911c54d0116e90665126525393795f1adb5e05ae73b27a3dc09829d78	取key client	免杀
https://www.virscan.org/report/b71017e251362b139bc5af7d349b0fac651d38d7cffd4776a8598ffadd8dfc4e
https://www.virscan.org/report/36239e0f584c09e3372641ecaf8a13e54379dc1484bdd2b29b30d5476604ac5b
https://www.virscan.org/report/a339263c70063c5a72296972161bd6d1c2cda1bf706d75169c7223092f904afe	狐狸管理员运行我.exe
https://www.virscan.org/report/1adfc4d7701f0e033e2886567cd87c22a20e7dcc641149fc73b3e3bdd933df43	TV工具.exe
https://www.virscan.org/report/c9a3c4ec5ee16da5e5b0b522a3431828aa83d88c86f70909a2945aa91fc0ba57	停车场管理系统.exe
https://www.virscan.org/report/ddf3a10721a4612334580fc59162210eb1f104e441ff82db2910e85e60ba1aad	版本2.exe
https://www.virscan.org/report/fda0a44ecb8f06c3ef22648ea7fecdddb2943637143264f6a0cb6c3385e0fa53	交建盾卫士.exe	CobaltStrike 钓鱼
https://www.virscan.org/report/5ae0192d0f2ccaae67965cde0ffbe00c8a20986ac0421d510945e7ad92f8c6d2	IP切换器.exe