References Malware

URLZone

- Bebloh - Shiotob

References:
  • URLZone reloaded: new evolution - 2012-09-01 - VirusBulletin - Neo Tan URLZone
  • The DGA of Shiotob - 2015-01-12 - Johannesbader - Johannes Bader URLZone

    • More Reading:

  • Vawtrak and UrlZone Banking Trojans Target Japan - 2016-02-05 - Proofpoint - Proofpoint Staff URLZone Vawtrak Angler
  • Cutwail Spam Campaign Uses Steganography to Distribute URLZone - 2018-10-25 - CrowdStrike - Brett Stone-Gross - Bex Hartley TA544 URLZone
  • 1/24のばらまきメールに添付されている難読化+ステガノを用いたマルウェアを調査してみた(マクロ) - 2019-01-26 - Sugitamuchi - Sugita Muchi TA544 URLZone
  • New Ursnif Variant Targets Japan Packed with New Features - 2019-03-12 - Cybereason - Assaf Dahan TA544 URLZone Gozi v3
  • URLZone top malware in Japan, while Emotet and LINE Phishing round out the landscape - 2019-06-19 - Proofpoint - Proofpoint Staff TA544 URLZone Gozi v3 Vawtrak TA505 FlawedAmmyy
  • Threat Actor Profile: TA544 targets geographies from Italy to Japan with a range of malware - 2019-07-11 - Proofpoint - Proofpoint Staff TA544 Nymaim Gozi ISFB URLZone