Overview - Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | ransom.here |
|
| Details | Domain | 12 | security.org |
|
| Details | Github username | 2 | mthcht |
|
| Details | File | 1 | x.iso |
|
| Details | File | 1 | 23oakland3.pdf |
|
| Details | File | 1 | chop_ndss23.pdf |
|
| Details | Github username | 1 | knudsenmorten |
|
| Details | Github username | 1 | leftp |
|
| Details | Github username | 1 | ispras |
|
| Details | Github username | 1 | prescience-data |
|
| Details | md5 | 1 | f2b0c6b3e7794d3f3d3b2bba5709c672 |
|
| Details | Url | 1 | https://cert.gov.ua/article/4279195 |
|
| Details | Url | 1 | https://blog.sekoia.io/overview-of-the-russian-speaking-infostealer-ecosystem-the-distribution |
|
| Details | Url | 2 | https://objective-see.org/blog/blog_0x74.html |
|
| Details | Url | 1 | https://www.radware.com/security/threat-advisories-and-attack-reports/dragonforce-malaysia-opspetir |
|
| Details | Url | 1 | https://www.avanan.com/blog/phishing-from-quickbooks |
|
| Details | Url | 1 | https://securelist.com/google-play-threats-on-the-dark-web/109452 |
|
| Details | Url | 1 | https://docs.velociraptor.app/blog/2023/2023-04-05-qakbot |
|
| Details | Url | 1 | https://burningmalware.com/catching-threat-actors-using-honeypots |
|
| Details | Url | 1 | https://github.com/mthcht/purpleteam |
|
| Details | Url | 1 | https://www.vanimpe.eu/2023/04/03/misp-to-sentinel-integration |
|
| Details | Url | 1 | https://learn.microsoft.com/en-us/azure/azure-monitor/reference/tables/microsoftgraphactivitylogs |
|
| Details | Url | 1 | https://github.com/knudsenmorten/clientinspectorv2 |
|
| Details | Url | 1 | https://mortenknudsen.net/?p=1433 |
|
| Details | Url | 1 | https://mortenknudsen.net/?p=1446 |