ioc[.]one - OSINT Cyber Threat Intelligence Database

Threat Advisory

Show in Graph

Common Information

Type	Value
UUID	3bc08337-cdf1-4d41-9a8d-be4cb1fc451a
Fingerprint	300810c236804f95eaf057c5d4d33711b2c61862cf6b898cd725ecb7fccf041e
Analysis status	DONE
Considered CTI value	2
Text language
Published	Feb. 1, 2024, 6:02 p.m.
Added to db	Feb. 7, 2024, 7:48 p.m.
Last updated	Aug. 31, 2024, 3 a.m.
Headline	Threat Advisory
Title	Threat Advisory
Detected Hints/Tags/Attributes	66/4/64

Source URLs

	Redirection	Url
Details	Source	https://www.hivepro.com/wp-content/uploads/2024/02/UNC4990-Leverage-Hosting-Platforms-in-USB-Infection-Chain_TA2024041.pdf

URL Provider

Details	Provider	Source level domain
Details	hivepro.com	www.hivepro.com

Attributes

Details	Type	#Events	Value
Details	Domain	2	bobsmith.apiworld.cf
Details	Domain	89	arstechnica.com
Details	Domain	2	evinfeoptasw.dedyn.io
Details	Domain	2	wjecpujpanmwm.tk
Details	Domain	1	eldi8.github.io
Details	Domain	1	evh001.gitlab.io
Details	Domain	29	vimeo.com
Details	Domain	2	monumental.ga
Details	Domain	2	studiofotografico35mm.altervista.org
Details	Domain	2	ncnskjhrbefwifjhww.tk
Details	Domain	2	geraldonsboutique.altervista.org
Details	Domain	2	captcha.grouphelp.top
Details	Domain	2	captcha.tgbot.it
Details	Domain	2	luke.compeyson.eu.org
Details	Domain	2	eu1.microtunnel.it
Details	Domain	1	davebeerblog.eu.org
Details	Domain	2	lucaespo.altervista.org
Details	Domain	1	lucaesposito.herokuapp.com
Details	Domain	1	euserv3.herokuapp.com
Details	Domain	182	www.mandiant.com
Details	Domain	435	www.hivepro.com
Details	File	7	license.php
Details	File	3	updater.php
Details	File	2	src.txt
Details	File	2	804838895.json
Details	File	3	public.php
Details	File	2	public_result.php
Details	File	1205	index.php
Details	Mandiant Uncategorized Groups	3	UNC4990
Details	MITRE ATT&CK Techniques	420	T1204
Details	MITRE ATT&CK Techniques	106	T1204.001
Details	MITRE ATT&CK Techniques	695	T1059
Details	MITRE ATT&CK Techniques	460	T1059.001
Details	MITRE ATT&CK Techniques	444	T1071
Details	MITRE ATT&CK Techniques	348	T1036
Details	MITRE ATT&CK Techniques	183	T1036.005
Details	MITRE ATT&CK Techniques	409	T1566
Details	MITRE ATT&CK Techniques	219	T1113
Details	MITRE ATT&CK Techniques	1006	T1082
Details	MITRE ATT&CK Techniques	245	T1016
Details	MITRE ATT&CK Techniques	50	T1614
Details	Url	1	https://bobsmith.apiworld.cf/license.php
Details	Url	1	https://arstechnica.com/civis/members/frncbf22.1062014/about
Details	Url	1	https://evinfeoptasw.dedyn.io/updater.php
Details	Url	1	https://wjecpujpanmwm.tk/updater.php?from=usb1
Details	Url	1	https://eldi8.github.io/src.txt
Details	Url	1	https://evh001.gitlab.io/src.txt
Details	Url	2	https://vimeo.com/api/v2/video/804838895.json
Details	Url	1	https://monumental.ga/wp-admin.php
Details	Url	1	http://studiofotografico35mm.altervista.org/updater.php
Details	Url	1	http://ncnskjhrbefwifjhww.tk/updater.php
Details	Url	1	http://geraldonsboutique.altervista.org/updater.php
Details	Url	1	https://wjecpujpanmwm.tk/updater.php
Details	Url	1	https://captcha.grouphelp.top/updater.php
Details	Url	1	https://captcha.tgbot.it/updater.php
Details	Url	1	https://luke.compeyson.eu.org/runservice/api/public.php
Details	Url	1	https://luke.compeyson.eu.org/wp-admin.php
Details	Url	1	https://luke.compeyson.eu.org/runservice/api/public_result.php
Details	Url	1	https://eu1.microtunnel.it/c0s1ta/index.php
Details	Url	1	https://davebeerblog.eu.org/wp-admin.php
Details	Url	1	https://lucaespo.altervista.org/updater.php
Details	Url	1	https://lucaesposito.herokuapp.com/c0s1ta/index.php
Details	Url	1	https://euserv3.herokuapp.com/c0s1ta/index.php
Details	Url	1	https://www.mandiant.com/resources/blog/unc4990-evolution-usb-malware