Top Tweets for #Susp
“Esse modelo de absoluta autonomia das forças locais dos governadores, evidentemente, é um modelo falido”, diz ministro Ricardo Lewandowski. #Estúdioi
➡️ Assista à #GloboNews: https://t.co/yAMjf4cw3V
Ballari little tiger mass☠️💀
#susp
![JangPr0's tweet photo. #APT #SUSP
51ddda068e1851c97b59078f98a87a98
Info steal(identifier-0920win): $ipAddress-$currentTime-XXX-1001coincatch.txt
Dropbox upload path: /github/Log/1001coincatch/
hxxps://drive.google[.]com/uc?export=download&id=1Im5Ud6Fz1VFkQQZ9Gzkh1J7zfuwn7kB6 https://t.co/6IO4BIbeed](https://pbs.twimg.com/media/GtsPC9ZaUAAnKL8.png)
![JangPr0's tweet photo. #APT #SUSP
51ddda068e1851c97b59078f98a87a98
Info steal(identifier-0920win): $ipAddress-$currentTime-XXX-1001coincatch.txt
Dropbox upload path: /github/Log/1001coincatch/
hxxps://drive.google[.]com/uc?export=download&id=1Im5Ud6Fz1VFkQQZ9Gzkh1J7zfuwn7kB6 https://t.co/6IO4BIbeed](https://pbs.twimg.com/media/GtsPC9ZaQAIbr1P.png)
![JangPr0's tweet photo. #APT #SUSP
def6766521070a6d45b797c8c834ed88
Decoy: 국세 고지서.pdf.lnk
URL = hxxps://cdn.glitch[.]global/b33b49c5-5e3d-4a33-b66b-c719b917fa62/txbib.hta
Second files: {URL}/v3.hta?v=277522
hxxp://18.224.110[.]228:8080/stub.exe?v=2.0.3.txt&serial=SUCCESS! https://t.co/JYGhLtpINe](https://pbs.twimg.com/media/GsGdP4CW8AASzNU.png)
![JangPr0's tweet photo. #APT #SUSP
def6766521070a6d45b797c8c834ed88
Decoy: 국세 고지서.pdf.lnk
URL = hxxps://cdn.glitch[.]global/b33b49c5-5e3d-4a33-b66b-c719b917fa62/txbib.hta
Second files: {URL}/v3.hta?v=277522
hxxp://18.224.110[.]228:8080/stub.exe?v=2.0.3.txt&serial=SUCCESS! https://t.co/JYGhLtpINe](https://pbs.twimg.com/media/GsGdP3-WcAEuU_R.jpg)
![JangPr0's tweet photo. #APT #SUSP
def6766521070a6d45b797c8c834ed88
Decoy: 국세 고지서.pdf.lnk
URL = hxxps://cdn.glitch[.]global/b33b49c5-5e3d-4a33-b66b-c719b917fa62/txbib.hta
Second files: {URL}/v3.hta?v=277522
hxxp://18.224.110[.]228:8080/stub.exe?v=2.0.3.txt&serial=SUCCESS! https://t.co/JYGhLtpINe](https://pbs.twimg.com/media/GsGdP39WAAAEfS-.png)
![JangPr0's tweet photo. #APT #SUSP
def6766521070a6d45b797c8c834ed88
Decoy: 국세 고지서.pdf.lnk
URL = hxxps://cdn.glitch[.]global/b33b49c5-5e3d-4a33-b66b-c719b917fa62/txbib.hta
Second files: {URL}/v3.hta?v=277522
hxxp://18.224.110[.]228:8080/stub.exe?v=2.0.3.txt&serial=SUCCESS! https://t.co/JYGhLtpINe](https://pbs.twimg.com/media/GsGdP38WoAAuEFu.png)
![JangPr0's tweet photo. #APT #SUSP
95fc3891ce910f34080d4781bc7641be323ba6b761ec48ef50ab2f0b74f5a5b7
174.138.186[.]157:5511 & 7788 & 9558
rr7.tmp: hxxp://www.travelyoichi[.]jp/okinawa/showphoto[.]php
REG Run name: PUpdate(H3628.js), runkey(rr7.tmp)
Taskschd: AMicrosoftEdgeUpdateExpanding[93852691] https://t.co/o0OO3SAM9H](https://pbs.twimg.com/media/GrbnqRsbAAEQXXb.png)
![JangPr0's tweet photo. #APT #SUSP
95fc3891ce910f34080d4781bc7641be323ba6b761ec48ef50ab2f0b74f5a5b7
174.138.186[.]157:5511 & 7788 & 9558
rr7.tmp: hxxp://www.travelyoichi[.]jp/okinawa/showphoto[.]php
REG Run name: PUpdate(H3628.js), runkey(rr7.tmp)
Taskschd: AMicrosoftEdgeUpdateExpanding[93852691] https://t.co/o0OO3SAM9H](https://pbs.twimg.com/media/GrbnprSbAAQ2VEf.png)
![JangPr0's tweet photo. #APT #SUSP
95fc3891ce910f34080d4781bc7641be323ba6b761ec48ef50ab2f0b74f5a5b7
174.138.186[.]157:5511 & 7788 & 9558
rr7.tmp: hxxp://www.travelyoichi[.]jp/okinawa/showphoto[.]php
REG Run name: PUpdate(H3628.js), runkey(rr7.tmp)
Taskschd: AMicrosoftEdgeUpdateExpanding[93852691] https://t.co/o0OO3SAM9H](https://pbs.twimg.com/media/Grbno6hbcAAdmgW.png)
![JangPr0's tweet photo. #APT #SUSP
95fc3891ce910f34080d4781bc7641be323ba6b761ec48ef50ab2f0b74f5a5b7
174.138.186[.]157:5511 & 7788 & 9558
rr7.tmp: hxxp://www.travelyoichi[.]jp/okinawa/showphoto[.]php
REG Run name: PUpdate(H3628.js), runkey(rr7.tmp)
Taskschd: AMicrosoftEdgeUpdateExpanding[93852691] https://t.co/o0OO3SAM9H](https://pbs.twimg.com/media/GrbnoQ-bAAEmWLN.png)
![JangPr0's tweet photo. #APT #SUSP
6262c5ef438992966eda78d6d58e631592c4b78d09b6dd35fea3b6cdd46ac8d9
decoy: KBS 북한 수해 인터뷰 요청서(대문화아카데미 이삼열 이사장님).docx
hxxps://dl.dropboxusercontent[.]com/scl/fi/aikx6kop803lfv9uh81lt/test.docx?...
and apple-ky.txt
and apple-luc.txt https://t.co/D5uGfsWNAV](https://pbs.twimg.com/media/Gnvpwx1bYAIcyY3.png)
![JangPr0's tweet photo. #APT #SUSP
6262c5ef438992966eda78d6d58e631592c4b78d09b6dd35fea3b6cdd46ac8d9
decoy: KBS 북한 수해 인터뷰 요청서(대문화아카데미 이삼열 이사장님).docx
hxxps://dl.dropboxusercontent[.]com/scl/fi/aikx6kop803lfv9uh81lt/test.docx?...
and apple-ky.txt
and apple-luc.txt https://t.co/D5uGfsWNAV](https://pbs.twimg.com/media/GnvpwxlbsAAH9m_.png)
![JangPr0's tweet photo. #APT #SUSP
6262c5ef438992966eda78d6d58e631592c4b78d09b6dd35fea3b6cdd46ac8d9
decoy: KBS 북한 수해 인터뷰 요청서(대문화아카데미 이삼열 이사장님).docx
hxxps://dl.dropboxusercontent[.]com/scl/fi/aikx6kop803lfv9uh81lt/test.docx?...
and apple-ky.txt
and apple-luc.txt https://t.co/D5uGfsWNAV](https://pbs.twimg.com/media/Gnvpwxka4AA08tm.png)
हनुमानगढ़
#susp
O grito da mãe desesperada de nada adiantou. Mais um jovem, mais um negro, mais um crime. Tarcísio e Derrite têm sangue nas mãos. Ninguém aguenta mais!
O crime aconteceu na noite de domingo em São Vicente, São Paulo e vitimou o jovem Vinícius Fidelis Santos de Brito. Até quando?
![JangPr0's tweet photo. #APT #SUSP
84930b70b101c501ecca0f583e3c37fba6a59c6ad97929f0c572524df7e154d2
182.92.116[.]32:12777/protect_distribution.exe https://t.co/sV1A9yTP6u](https://pbs.twimg.com/media/GalWgUUbgAA74Ks.jpg)
![JangPr0's tweet photo. #APT #SUSP
2a9524821533e3285e9271706c67302e6a0fa8eca79090ba980ad9d8d299c8ea
Similar
00b6a18a47bdecbf3f97e0a9188e0080a59d87beb4002e8775b036ddee978d37
(1) Obfuscation Pattern
(2) TaskSchd Name
hxxps://contactcenter.mobilo[.]mx/vicidial/ploticus/mobile.php?choko=%COMPUTERNAME% https://t.co/yZq5x9KYox](https://pbs.twimg.com/media/GZ0JywYbAAATNDs.jpg)
![JangPr0's tweet photo. #APT #SUSP
2a9524821533e3285e9271706c67302e6a0fa8eca79090ba980ad9d8d299c8ea
Similar
00b6a18a47bdecbf3f97e0a9188e0080a59d87beb4002e8775b036ddee978d37
(1) Obfuscation Pattern
(2) TaskSchd Name
hxxps://contactcenter.mobilo[.]mx/vicidial/ploticus/mobile.php?choko=%COMPUTERNAME% https://t.co/yZq5x9KYox](https://pbs.twimg.com/media/GZ0Jx2saIAA02nH.jpg)
![JangPr0's tweet photo. #APT #SUSP
2a9524821533e3285e9271706c67302e6a0fa8eca79090ba980ad9d8d299c8ea
Similar
00b6a18a47bdecbf3f97e0a9188e0080a59d87beb4002e8775b036ddee978d37
(1) Obfuscation Pattern
(2) TaskSchd Name
hxxps://contactcenter.mobilo[.]mx/vicidial/ploticus/mobile.php?choko=%COMPUTERNAME% https://t.co/yZq5x9KYox](https://pbs.twimg.com/media/GZ0JvzfbUAA5lnu.jpg)
![JangPr0's tweet photo. #APT #SUSP
2a9524821533e3285e9271706c67302e6a0fa8eca79090ba980ad9d8d299c8ea
Similar
00b6a18a47bdecbf3f97e0a9188e0080a59d87beb4002e8775b036ddee978d37
(1) Obfuscation Pattern
(2) TaskSchd Name
hxxps://contactcenter.mobilo[.]mx/vicidial/ploticus/mobile.php?choko=%COMPUTERNAME% https://t.co/yZq5x9KYox](https://pbs.twimg.com/media/GZ0Ju9BbsAA2EV8.jpg)
![JangPr0's tweet photo. #APT #SUSP
41cf6298a41c27357ee5f70d8cd1c0bd48698fc30c4255fad6a91798286e5229
Name : Upbit_20240916.docx.lnk
64.49.14[.]181:8014
Run REG : Winload & C:\\ProgramData\\R9147.vbs
Taskschd : C:\\ProgramData\\07578.tmp https://t.co/Uzygi41Qri](https://pbs.twimg.com/media/GXmnUXfaQAAa5qp.jpg)
![JangPr0's tweet photo. #APT #SUSP
41cf6298a41c27357ee5f70d8cd1c0bd48698fc30c4255fad6a91798286e5229
Name : Upbit_20240916.docx.lnk
64.49.14[.]181:8014
Run REG : Winload & C:\\ProgramData\\R9147.vbs
Taskschd : C:\\ProgramData\\07578.tmp https://t.co/Uzygi41Qri](https://pbs.twimg.com/media/GXmnTd_acAAFIg3.jpg)
![JangPr0's tweet photo. #APT #SUSP
41cf6298a41c27357ee5f70d8cd1c0bd48698fc30c4255fad6a91798286e5229
Name : Upbit_20240916.docx.lnk
64.49.14[.]181:8014
Run REG : Winload & C:\\ProgramData\\R9147.vbs
Taskschd : C:\\ProgramData\\07578.tmp https://t.co/Uzygi41Qri](https://pbs.twimg.com/media/GXmnRawbsAAS4TQ.jpg)
![JangPr0's tweet photo. #APT #SUSP
41cf6298a41c27357ee5f70d8cd1c0bd48698fc30c4255fad6a91798286e5229
Name : Upbit_20240916.docx.lnk
64.49.14[.]181:8014
Run REG : Winload & C:\\ProgramData\\R9147.vbs
Taskschd : C:\\ProgramData\\07578.tmp https://t.co/Uzygi41Qri](https://pbs.twimg.com/media/GXmnOKDaQAAfSf8.jpg)
![JangPr0's tweet photo. #APT #SUSP
57e9b7d1c18684a4e8b3688c454e832833e063019ed808fd69186c4e20df930a
Name : [자문]북한 신형 자폭드론.msc
hxxps://petssecondchance.larcity[.]dev/modules/mod_custom/tmpl/andy/css.php?na=xam2
Second QueryString : ?na=sam2 https://t.co/lMFFVOkLbg](https://pbs.twimg.com/media/GXP0yScbgAAv8TT.jpg)
![JangPr0's tweet photo. #APT #SUSP
57e9b7d1c18684a4e8b3688c454e832833e063019ed808fd69186c4e20df930a
Name : [자문]북한 신형 자폭드론.msc
hxxps://petssecondchance.larcity[.]dev/modules/mod_custom/tmpl/andy/css.php?na=xam2
Second QueryString : ?na=sam2 https://t.co/lMFFVOkLbg](https://pbs.twimg.com/media/GXP0xkSacAAh6bb.jpg)
![JangPr0's tweet photo. #APT #SUSP
57e9b7d1c18684a4e8b3688c454e832833e063019ed808fd69186c4e20df930a
Name : [자문]북한 신형 자폭드론.msc
hxxps://petssecondchance.larcity[.]dev/modules/mod_custom/tmpl/andy/css.php?na=xam2
Second QueryString : ?na=sam2 https://t.co/lMFFVOkLbg](https://pbs.twimg.com/media/GXP0w5nbgAEjVl4.jpg)
![JangPr0's tweet photo. #APT #SUSP
57e9b7d1c18684a4e8b3688c454e832833e063019ed808fd69186c4e20df930a
Name : [자문]북한 신형 자폭드론.msc
hxxps://petssecondchance.larcity[.]dev/modules/mod_custom/tmpl/andy/css.php?na=xam2
Second QueryString : ?na=sam2 https://t.co/lMFFVOkLbg](https://pbs.twimg.com/media/GXP0wJObgAI0VCc.jpg)
![JangPr0's tweet photo. #APT #SUSP
bea38970febac64eb77bd9c1484cb48d2fa61fb925bbeb39d0aa6b9149e654cf
43.203.173[.]81:8080
Download File : %temp%\menual.exe
Registry Run Name / Value: Manual / %Temp%\guide.vbs https://t.co/uC4YW6f4DA](https://pbs.twimg.com/media/GWIFM9dWEAAFtsK.jpg)
![JangPr0's tweet photo. #APT #SUSP
bea38970febac64eb77bd9c1484cb48d2fa61fb925bbeb39d0aa6b9149e654cf
43.203.173[.]81:8080
Download File : %temp%\menual.exe
Registry Run Name / Value: Manual / %Temp%\guide.vbs https://t.co/uC4YW6f4DA](https://pbs.twimg.com/media/GWIFMQOWEAACTAy.jpg)
![JangPr0's tweet photo. #APT #SUSP
bea38970febac64eb77bd9c1484cb48d2fa61fb925bbeb39d0aa6b9149e654cf
43.203.173[.]81:8080
Download File : %temp%\menual.exe
Registry Run Name / Value: Manual / %Temp%\guide.vbs https://t.co/uC4YW6f4DA](https://pbs.twimg.com/media/GWIFLORaoAAWjhC.jpg)
![JangPr0's tweet photo. #APT #SUSP
bea38970febac64eb77bd9c1484cb48d2fa61fb925bbeb39d0aa6b9149e654cf
43.203.173[.]81:8080
Download File : %temp%\menual.exe
Registry Run Name / Value: Manual / %Temp%\guide.vbs https://t.co/uC4YW6f4DA](https://pbs.twimg.com/media/GWIFJrGasAEcqz-.jpg)
![JangPr0's tweet photo. #APT #SUSP
3a37c34e5b677b4388176fdcb41ce5c8971f6dc82116adc99309ca744c58ba66
hxxp://2.58.56[.]124/API481f[.]zip
Zip File ExtractToDir : %appdata%
Execute script.a3x Via AutoIt3.exe https://t.co/HqdU0jrfbV](https://pbs.twimg.com/media/GVkBL_lbUAAt_mu.jpg)
![JangPr0's tweet photo. #APT #SUSP
3a37c34e5b677b4388176fdcb41ce5c8971f6dc82116adc99309ca744c58ba66
hxxp://2.58.56[.]124/API481f[.]zip
Zip File ExtractToDir : %appdata%
Execute script.a3x Via AutoIt3.exe https://t.co/HqdU0jrfbV](https://pbs.twimg.com/media/GVkBLRIbgAY41ut.jpg)
![JangPr0's tweet photo. #APT #SUSP
3a37c34e5b677b4388176fdcb41ce5c8971f6dc82116adc99309ca744c58ba66
hxxp://2.58.56[.]124/API481f[.]zip
Zip File ExtractToDir : %appdata%
Execute script.a3x Via AutoIt3.exe https://t.co/HqdU0jrfbV](https://pbs.twimg.com/media/GVkBKJlaIAAR6b2.jpg)
![JangPr0's tweet photo. #APT #SUSP
3a37c34e5b677b4388176fdcb41ce5c8971f6dc82116adc99309ca744c58ba66
hxxp://2.58.56[.]124/API481f[.]zip
Zip File ExtractToDir : %appdata%
Execute script.a3x Via AutoIt3.exe https://t.co/HqdU0jrfbV](https://pbs.twimg.com/media/GVkA4VxbQAAeyse.jpg)
![JangPr0's tweet photo. #APT #SUSP
dd0bb4c7b41a775ec4426fb74a80d995fde39c87197b8c19b8391139e17491fd
Decoy : UPBIT_20240728.docx.lnk
IP : 79.133.56[.]173
Port : 7003, 7016 https://t.co/h2h5pquBF3](https://pbs.twimg.com/media/GTtUXgEacAATqTv.jpg)
![JangPr0's tweet photo. #APT #SUSP
dd0bb4c7b41a775ec4426fb74a80d995fde39c87197b8c19b8391139e17491fd
Decoy : UPBIT_20240728.docx.lnk
IP : 79.133.56[.]173
Port : 7003, 7016 https://t.co/h2h5pquBF3](https://pbs.twimg.com/media/GTtUW1PasAAtFA7.jpg)
![JangPr0's tweet photo. #APT #SUSP
dd0bb4c7b41a775ec4426fb74a80d995fde39c87197b8c19b8391139e17491fd
Decoy : UPBIT_20240728.docx.lnk
IP : 79.133.56[.]173
Port : 7003, 7016 https://t.co/h2h5pquBF3](https://pbs.twimg.com/media/GTtUV91aQAAlxOn.jpg)
![JangPr0's tweet photo. #APT #SUSP
dd0bb4c7b41a775ec4426fb74a80d995fde39c87197b8c19b8391139e17491fd
Decoy : UPBIT_20240728.docx.lnk
IP : 79.133.56[.]173
Port : 7003, 7016 https://t.co/h2h5pquBF3](https://pbs.twimg.com/media/GTtUU9gbIAAApa9.jpg)
Last Seen Hashtags on Sotwe
Most Popular Users
Elon Musk 
@elonmusk
240.6M followers
Barack Obama
@barackobama
119.2M followers
Donald J. Trump
@realdonaldtrump
111.7M followers
Cristiano Ronaldo
@cristiano
110.5M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.6M followers
NASA
@nasa
92.2M followers
Justin Bieber
@justinbieber
90.9M followers
KATY PERRY
@katyperry
87.6M followers
Taylor Swift
@taylorswift13
81.4M followers
Lady Gaga
@ladygaga
73M followers
Virat Kohli
@imvkohli
69.8M followers
Kim Kardashian
@kimkardashian
69.8M followers
YouTube
@youtube
68.7M followers
Bill Gates
@billgates
63.9M followers
Neymar Jr
@neymarjr
62.5M followers
The Ellen Show
@theellenshow
62.4M followers
CNN
@cnn
61.9M followers
X
@x
60.8M followers
Selena Gomez
@selenagomez
60.7M followers