Threat Advisory
Common Information
| Type | Value |
|---|---|
| UUID | 040b323d-12b4-4ec7-aae8-bff906c405a3 |
| Fingerprint | 8c03c53a55fe11813df077b28738787d3c12f15822f0d5426b2d756a82e1a558 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Sept. 22, 2023, 11:34 a.m. |
| Added to db | Feb. 7, 2024, 7:26 p.m. |
| Last updated | Aug. 31, 2024, 2:45 a.m. |
| Headline | Threat Advisory |
| Title | Threat Advisory |
| Detected Hints/Tags/Attributes | 92/2/51 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | sezname.cz |
|
| Details | Domain | 144 | cock.li |
|
| Details | Domain | 84 | airmail.cc |
|
| Details | Domain | 167 | tutanota.com |
|
| Details | Domain | 35 | tutamail.com |
|
| Details | Domain | 83 | tuta.io |
|
| Details | Domain | 4 | mail.fr |
|
| Details | Domain | 68 | keemail.me |
|
| Details | Domain | 396 | protonmail.com |
|
| Details | Domain | 74 | proton.me |
|
| Details | Domain | 9 | swisscows.email |
|
| Details | Domain | 2 | sn.tchnews.top |
|
| Details | Domain | 3 | protonmail.me |
|
| Details | Domain | 27 | seznam.cz |
|
| Details | Domain | 2 | snatch.vip |
|
| Details | Domain | 1 | prettyoceanapplicationdrs.bi |
|
| Details | Domain | 469 | www.cisa.gov |
|
| Details | Domain | 435 | www.hivepro.com |
|
| Details | 2 | sn.tchnews.top@protonmail.me |
||
| Details | 3 | funny385@swisscows.email |
||
| Details | 2 | funny385@proton.me |
||
| Details | 2 | russellrspeck@seznam.cz |
||
| Details | 2 | russellrspeck@protonmail.com |
||
| Details | 2 | mailz13morales@proton.me |
||
| Details | 2 | datasto100@tutanota.com |
||
| Details | 2 | snatch.vip@protonmail.com |
||
| Details | sha1 | 1 | c8a0060290715f266c89a21480fed08133ea2614 |
|
| Details | MITRE ATT&CK Techniques | 442 | T1071.001 |
|
| Details | MITRE ATT&CK Techniques | 472 | T1486 |
|
| Details | MITRE ATT&CK Techniques | 276 | T1490 |
|
| Details | MITRE ATT&CK Techniques | 33 | T1590 |
|
| Details | MITRE ATT&CK Techniques | 62 | T1583.003 |
|
| Details | MITRE ATT&CK Techniques | 306 | T1078 |
|
| Details | MITRE ATT&CK Techniques | 191 | T1133 |
|
| Details | MITRE ATT&CK Techniques | 333 | T1059.003 |
|
| Details | MITRE ATT&CK Techniques | 12 | T1059.002 |
|
| Details | MITRE ATT&CK Techniques | 71 | T1078.002 |
|
| Details | MITRE ATT&CK Techniques | 348 | T1036 |
|
| Details | MITRE ATT&CK Techniques | 297 | T1070.004 |
|
| Details | MITRE ATT&CK Techniques | 550 | T1112 |
|
| Details | MITRE ATT&CK Techniques | 298 | T1562.001 |
|
| Details | MITRE ATT&CK Techniques | 28 | T1562.009 |
|
| Details | MITRE ATT&CK Techniques | 44 | T1110.001 |
|
| Details | MITRE ATT&CK Techniques | 501 | T1012 |
|
| Details | MITRE ATT&CK Techniques | 433 | T1057 |
|
| Details | MITRE ATT&CK Techniques | 160 | T1021.001 |
|
| Details | MITRE ATT&CK Techniques | 534 | T1005 |
|
| Details | Url | 2 | https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-263a |
|
| Details | Url | 1 | https://www.cisa.gov/news-events/alerts/2023/09/20/fbi-and-cisa-release-advisory-snatch- |
|
| Details | Windows Registry Key | 164 | HKLM\SOFTWARE\Microsoft\Windows |
|
| Details | Windows Registry Key | 1 | HKU\S-1-5-21-4270068108-2931534202-3907561125 |