ioc[.]one - OSINT Cyber Threat Intelligence Database

Small Sieve

Show in Graph

Common Information

Type	Value
UUID	485936d6-7e9a-4ab1-817f-f5a0760d5de2
Fingerprint	8667b31ada13bb49fc1eec91dd9777b61675bd87409bfd6c880bb24669af24c7
Analysis status	DONE
Considered CTI value	2
Text language
Published	Feb. 24, 2022, 12:48 p.m.
Added to db	March 10, 2024, 6:15 a.m.
Last updated	Aug. 31, 2024, 1:33 a.m.
Headline	Small Sieve
Title	Small Sieve
Detected Hints/Tags/Attributes	57/2/26

Source URLs

	Redirection	Url
Details	Source	https://www.ncsc.gov.uk/files/NCSC-Malware-Analysis-Report-Small-Sieve.pdf

URL Provider

Details	Provider	Source level domain
Details	ncsc.gov.uk	www.ncsc.gov.uk

Attributes

Details	Type	#Events	Value
Details	Domain	145	api.telegram.org
Details	Domain	53	ncsc.gov.uk
Details	Email	22	ncscinfoleg@ncsc.gov.uk
Details	File	4	gram_app.exe
Details	File	6	index.exe
Details	File	3	%localappdata%\microsoftwindowsoutlookdataplus.txt
Details	File	3	microsoftwindowsoutlookdataplus.txt
Details	File	2126	cmd.exe
Details	File	3	%appdata%\outlookmicrosift\index.exe
Details	File	8	index.py
Details	md5	5	15fa3b32539d7453a9a85958b77d4c95
Details	md5	5	5763530f25ed0ec08fb26a30c04009f1
Details	sha1	4	11d594f3b3cf8525682f6214acb7b7782056d282
Details	sha1	4	2a6ddf89a8366a262b56a251b00aafaed5321992
Details	sha256	4	b75208393fa17c0bcbc1a07857686b8c0d7e0471d00a167a07fd0d52e1fc9054
Details	sha256	4	bf090cf7078414c9e157da7002ca727f06053b39fa4e377f9a0050f2af37d3a2
Details	IPv4	3	10.17.32.18
Details	MITRE ATT&CK Techniques	59	T1059.006
Details	MITRE ATT&CK Techniques	380	T1547.001
Details	MITRE ATT&CK Techniques	627	T1027
Details	MITRE ATT&CK Techniques	183	T1036.005
Details	MITRE ATT&CK Techniques	442	T1071.001
Details	MITRE ATT&CK Techniques	40	T1132.002
Details	MITRE ATT&CK Techniques	48	T1480
Details	Url	3	https://api.telegram.org/bot2003026094
Details	Windows Registry Key	3	HKCU\Software\Microsoft\Windows\CurrentVersion\Run\OutlookMicrosift