Threat Advisory
Image Description
Common Information
Type Value
UUID 1b5167ad-a786-4845-afd0-410e0cf914de
Fingerprint 6d4cf8662a2623841d4c6843a95a93ce9773298f75d8cfb0b661b10ae27c020e
Analysis status DONE
Considered CTI value 2
Text language
Published Dec. 12, 2023, 4:46 p.m.
Added to db Feb. 7, 2024, 7:42 p.m.
Last updated Aug. 31, 2024, 2:25 a.m.
Headline Threat Advisory
Title Threat Advisory
Detected Hints/Tags/Attributes 62/3/41
Attributes
Details Type #Events CTI Value
Details Domain 1
dan.det-ploshadka.com
Details Domain 1
novauto.com
Details Domain 3
mode.encagil.com
Details Domain 1
ssl.articella.com
Details Domain 1
ssl.e-novauto.com
Details Domain 3
ssl.explorecell.com
Details Domain 1
yum.luxyries.com
Details Domain 124
www.sentinelone.com
Details Domain 435
www.hivepro.com
Details sha1 1
a7932112b7880c95d77bc36c6fcced977f4a5889
Details sha1 1
b6d759c9ea5d2136bacb1b2289a31c33500c8de8
Details sha1 1
fc8fdf58cd945619cbfede40ba06aada10de9459
Details IPv4 1
146.70.157.20
Details IPv4 1
172.67.216.63
Details IPv4 1
185.38.142.129
Details IPv4 1
185.51.134.27
Details IPv4 2
185.82.218.230
Details IPv4 1
37.120.140.205
Details IPv4 1
45.129.199.122
Details IPv4 1
45.80.148.151
Details IPv4 1
45.90.59.17
Details IPv4 1
5.2.67.176
Details IPv4 1
5.2.72.130
Details IPv4 1
5.255.88.188
Details IPv4 1
79.110.52.160
Details MITRE ATT&CK Techniques 542
T1190
Details MITRE ATT&CK Techniques 56
T1595.002
Details MITRE ATT&CK Techniques 21
T1584.004
Details MITRE ATT&CK Techniques 122
T1543
Details MITRE ATT&CK Techniques 440
T1055
Details MITRE ATT&CK Techniques 118
T1570
Details MITRE ATT&CK Techniques 550
T1112
Details MITRE ATT&CK Techniques 42
T1588.001
Details MITRE ATT&CK Techniques 100
T1007
Details MITRE ATT&CK Techniques 157
T1560
Details MITRE ATT&CK Techniques 238
T1497
Details MITRE ATT&CK Techniques 120
T1129
Details Microsoft Threat Actor Naming Taxonomy (Groups in development) 1
Storm-0866
Details Microsoft Threat Actor Naming Taxonomy (Groups in development) 1
STORM-0866
Details Url 1
https://www.sentinelone.com/labs/sandman-apt-china-based-adversaries-embrace-lua
Details Url 1
https://www.hivepro.com/threat-advisory/sandman-apt-strikes-the-telecom-sector-with-