Common Information
| Type | Value |
|---|---|
| Value |
onedrive.live.com |
| Category | |
| Type | Domain |
| Misp Type | |
| Description |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2024-11-07 | 10 | Cobalt Strike Beacon Detected - 34[.]232[.]187[.]165:443 - RedPacket Security | ||
| Details | Website | 2024-10-25 | 2 | Netskope Risk Exchange Ecosystem: Combating Shadow IT | ||
| Details | Website | 2024-09-04 | 7 | Cobalt Strike Beacon Detected - 88[.]214[.]27[.]89:4443 - RedPacket Security | ||
| Details | Website | 2024-09-01 | 7 | Cobalt Strike Beacon Detected - 88[.]214[.]27[.]89:443 - RedPacket Security | ||
| Details | Website | 2024-04-09 | 9 | [QuickNote] Phishing email distributes WarZone RAT via DBatLoader | ||
| Details | 2024-01-22 | 24 | Threat Advisory | |||
| Details | 2023-11-09 | 1572 | Modern Asian APT Groups | |||
| Details | Website | 2023-10-25 | 27 | The Duck is Hiring in Italy: DUCKTAIL Spread via Compromised LinkedIn Profiles | ||
| Details | 2023-10-16 | 34 | Threat Advisory | |||
| Details | 2023-08-08 | 46 | BfV Cyber-Brief No. 01/2023 | |||
| Details | Website | 2023-08-04 | 149 | DarkGate malware campaign | ||
| Details | 2023-06-27 | 37 | Threat Advisory | |||
| Details | Website | 2023-06-26 | 7 | RST TI Report Digest: 26 Jun 2023 | ||
| Details | Website | 2023-06-23 | 100 | Securonix Threat Labs Security Advisory: New MULTI#STORM Attack Campaign Involving Python-based Loader Masquerading as OneDrive Utilities Dropping Multiple RAT Payloads Using Security Analytics | ||
| Details | Website | 2023-06-09 | 2 | Microsoft Hacked? OneDrive Services Disrupted, Anonymous Sudan Claims Responsibility | ||
| Details | Website | 2023-04-23 | 18 | 10 Google Dorks for Sensitive Data | ||
| Details | Website | 2022-11-18 | 355 | Threat Round up for November 11 to 18 | ||
| Details | Website | 2022-10-09 | 25 | Analyzing a Remcos RAT Infection | ||
| Details | Website | 2022-08-26 | 357 | Threat Roundup for August 19 to August 26 | ||
| Details | 2022-07-28 | 49 | PowerPoint Presentation | |||
| Details | Website | 2022-07-08 | 390 | Threat Roundup for July 1 to July 8 | ||
| Details | 2022-05-05 | 202 | SOLARDEFLECTION C2 Infrastructure Used by NOBELIUM in Company Brand Misuse | |||
| Details | Website | 2022-04-27 | 202 | A lookback under the TA410 umbrella: Its cyberespionage TTPs and activity | WeLiveSecurity | ||
| Details | Website | 2022-04-22 | 438 | Threat Roundup for April 15 to April 22 | ||
| Details | Website | 2022-03-25 | 306 | Threat Roundup for March 18 to March 25 |