Threat Advisory
Common Information
| Type | Value |
|---|---|
| UUID | 4a22299c-7e93-4c11-89f5-309e497280ac |
| Fingerprint | 715d0504310e2da56ceb7e4bb732c74fbd543ae0556aba1238f134150f2c4da6 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Oct. 6, 2023, 3:44 p.m. |
| Added to db | Feb. 7, 2024, 7:29 p.m. |
| Last updated | Aug. 31, 2024, 2:36 a.m. |
| Headline | Threat Advisory |
| Title | Threat Advisory |
| Detected Hints/Tags/Attributes | 55/4/23 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 261 | blog.talosintelligence.com |
|
| Details | Domain | 4127 | github.com |
|
| Details | Domain | 435 | www.hivepro.com |
|
| Details | File | 3 | ransom.txt |
|
| Details | Github username | 15 | cisco-talos |
|
| Details | IPv4 | 4 | 89.23.96.203 |
|
| Details | IPv4 | 3 | 188.34.188.7 |
|
| Details | MITRE ATT&CK Techniques | 695 | T1059 |
|
| Details | MITRE ATT&CK Techniques | 75 | T1010 |
|
| Details | MITRE ATT&CK Techniques | 409 | T1566 |
|
| Details | MITRE ATT&CK Techniques | 504 | T1140 |
|
| Details | MITRE ATT&CK Techniques | 238 | T1497 |
|
| Details | MITRE ATT&CK Techniques | 585 | T1083 |
|
| Details | MITRE ATT&CK Techniques | 243 | T1018 |
|
| Details | MITRE ATT&CK Techniques | 433 | T1057 |
|
| Details | MITRE ATT&CK Techniques | 1006 | T1082 |
|
| Details | MITRE ATT&CK Techniques | 440 | T1055 |
|
| Details | MITRE ATT&CK Techniques | 444 | T1071 |
|
| Details | MITRE ATT&CK Techniques | 492 | T1105 |
|
| Details | MITRE ATT&CK Techniques | 145 | T1588 |
|
| Details | MITRE ATT&CK Techniques | 42 | T1588.001 |
|
| Details | Url | 2 | https://blog.talosintelligence.com/qakbot-affiliated-actors-distribute-ransom |
|
| Details | Url | 1 | https://github.com/cisco-talos/iocs/blob/main/2023/10/qakbot-affiliated-actors-distribute- |