APT42: Crooked Charms, Cons and Compromises
Common Information
| Type | Value |
|---|---|
| UUID | 4c18523e-533f-4d90-a0ff-557b3594f0c5 |
| Fingerprint | 5b5537dbec2c7f64af3f8cadb3c6a69b83e9a3ad8f37bedf177c9f28033cff33 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Sept. 1, 2022, 1:45 a.m. |
| Added to db | March 10, 2024, 4:02 a.m. |
| Last updated | Aug. 31, 2024, 7:26 a.m. |
| Headline | APT42: Crooked Charms, Cons and Compromises |
| Title | APT42: Crooked Charms, Cons and Compromises |
| Detected Hints/Tags/Attributes | 295/4/144 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 17 | mandiant.com |
|
| Details | Domain | 182 | www.mandiant.com |
|
| Details | 6 | info@mandiant.com |
||
| Details | md5 | 3 | da7d37bfb899a0094995944d4c5e2f21 |
|
| Details | md5 | 4 | df02a8a7cb2afb80cc2b789d96f02715 |
|
| Details | md5 | 4 | 3d67ce57aab4f7f917cf87c724ed7dab |
|
| Details | md5 | 3 | 04a6997f0a8021b773ebb49977bc625f |
|
| Details | md5 | 3 | 34d37f64613f3fe00086ac8d5972db89 |
|
| Details | md5 | 3 | 8e0eb3ceb1bbe736beaf64353dda1908 |
|
| Details | md5 | 3 | 63cd07e805bcd4135a8e3a29fa3ceebd |
|
| Details | md5 | 4 | 0a3f454f94ef0f723ac6a4ad3f5bdf01 |
|
| Details | md5 | 3 | ae797446710e375f0fc9a33432d64256 |
|
| Details | md5 | 2 | 60e6523d29e8a9b83f4503f2e7fd7e1d |
|
| Details | md5 | 5 | 00b5d45433391146ce98cd70a91bef08 |
|
| Details | md5 | 2 | 335849d8fb13a4a189ba92af9bdf5d1d |
|
| Details | md5 | 3 | 9d0e761f3803889dc83c180901dc7b22 |
|
| Details | md5 | 3 | f3d25b1cedf39beee751eb9b2d8d2376 |
|
| Details | md5 | 2 | a04c2c3388da643ef67504ef8c6907fb |
|
| Details | md5 | 2 | 96444ed552ea5588dffca6a5a05298e9 |
|
| Details | md5 | 2 | afb5760c05db35a34c5dc41108ba72c2 |
|
| Details | md5 | 2 | d30abec551b0fb512dc2c327eeca3c43 |
|
| Details | md5 | 3 | bdf188b3d0939ec837987b4936b19570 |
|
| Details | md5 | 3 | 651d72776c0394693c25b1e3c9ec55d0 |
|
| Details | md5 | 3 | b7bc6a853f160df2cc64371467ed866d |
|
| Details | md5 | 2 | 88df70a0e21fb48e0f881fb91a2eaade |
|
| Details | md5 | 2 | 9a1e09b7ce904eefb83dc8d7571826f9 |
|
| Details | md5 | 2 | 9bd1caf6b79f6a69981a15d649a04c19 |
|
| Details | md5 | 2 | 3c6302fb6bdb953e2073a54b928fad9c |
|
| Details | md5 | 3 | 8a847b0f466b3174741aac734989aa73 |
|
| Details | md5 | 2 | 9dd30569aaf57d6115e1d181b78df6b5 |
|
| Details | sha1 | 3 | 9624d9613fe8cdc6833888b9e68892565e3a5d11 |
|
| Details | sha1 | 4 | 03d7ffd758e98c9a2c8c4716c93f09687000e22e |
|
| Details | sha1 | 3 | 470b850363677d3d54629a92ac8b5143f4584a09 |
|
| Details | sha1 | 3 | 3b9a2e34f5d603b55cf7fd223d4e5c784b805242 |
|
| Details | sha1 | 3 | 66d36d0b170cf1a0001cca16357961a2f28cba60 |
|
| Details | sha1 | 3 | 08d2aea84d6c148ff2ad4653856fb080eb99abf2 |
|
| Details | sha1 | 3 | 2374f5a9278b209563e8193847a76c25c12eec8f |
|
| Details | sha1 | 3 | d08982960d71a101b87b1896fd841433b66c7262 |
|
| Details | sha1 | 2 | 29175a0015909186f69f827630ef3fe2c1c5302c |
|
| Details | sha1 | 2 | 6303907ec7d1d591efffe876720a0ab051bfd429 |
|
| Details | sha1 | 4 | 7649c554e87f6ea21ba86bb26ea39521d5d18151 |
|
| Details | sha1 | 2 | 08270b049ae33f0bcd1d207ed77f999d51a09d94 |
|
| Details | sha1 | 3 | ecf9b7283fda023fa37ad7fdb15be4eadded4e06 |
|
| Details | sha1 | 3 | dbb64b0202bb4da6796279b5fa88262a6e31787e |
|
| Details | sha1 | 2 | c760adecea4dbb4dd262cb3f3848f993d5007b2e |
|
| Details | sha1 | 2 | b66ae149bbdfc7ec6875f59ec9f4a5ae1756f8ba |
|
| Details | sha1 | 2 | 1504da49f6fe8638c7e39d4bcb547fbb15376462 |
|
| Details | sha1 | 2 | 8f2bc0d6adfb4cad43fdda9f3d732c859eb79e35 |
|
| Details | sha1 | 3 | aba938bf8dc5445df3d5b77a42db4d6643db4383 |
|
| Details | sha1 | 3 | e45aeccb798f5cf6cb5d877821d1f4aa7f55cf6f |
|
| Details | sha1 | 3 | e3712e3d818e63060e30aec2a6db3598cbf0db92 |
|
| Details | sha1 | 2 | e8f50ecea1a986b4f8b00836f7f00968a6ecba4f |
|
| Details | sha1 | 2 | 448e6d519a340845a55b4b1809488427c0d79cdd |
|
| Details | sha1 | 2 | 75b7db0597f234838e7c8431b57870411842775d |
|
| Details | sha1 | 2 | 186f07279ac0f15cc7be5caf68addabb2091bc84 |
|
| Details | sha1 | 3 | 03eadb4ab93a1a0232cb40b7d2ef179a1cd0174d |
|
| Details | sha1 | 2 | 280b64c0156f101eaad3f31dbe91f0c1137627dc |
|
| Details | sha256 | 1 | b9b783ad3bc523a031cdf799dd9739a7bcbcf184e7e64a0f3cc2170be4d4526f |
|
| Details | sha256 | 3 | 7a650d3b1e511a05d0441484c7c7df59a63003ce77cd4eb7081323fd79d2b9a3 |
|
| Details | sha256 | 2 | a37a290863fe29b9812e819e4c5b047c44e7a7d7c40e33da6f5662e1957862ab |
|
| Details | sha256 | 2 | 7eb564f0afc23cc8186e67f8c0d7e6c80215b75c9f0c4b35f558a9e35743ca41 |
|
| Details | sha256 | 2 | 003676e6240421426e5c0919eb40bdde52b383eb1c54596deb77218c3885cdc5 |
|
| Details | sha256 | 2 | 2c33b1dd793ad5e59180719d078301ee7ebb6cf7465286c19b042accca6ac749 |
|
| Details | sha256 | 1 | a485ef522a00edc7eb141f4ef982dd52b3e784ea8d8f1bb0ca044a61ce642eac |
|
| Details | sha256 | 2 | 6618051ea0c45d667c9d9594d676bc1f4adadd8cb30e0138489fee05ce91a9cb |
|
| Details | sha256 | 2 | 734d9639fcfffef1a3c360269ccc1cda4f1d0e9dc857fa438f945e807b022c21 |
|
| Details | sha256 | 2 | 3cad59c65ee1e261658c2489dc45a7c6875d8ccb917d291d282e48bca1b74752 |
|
| Details | sha256 | 5 | 2c92da2721466bfbdaff7fedd9f3e8334b688a88ee54d7cab491e1a9df41258f |
|
| Details | sha256 | 2 | 971c5b5396ee37827635badea90d26d395b08d17cbe9e8027dc87b120f8bc0a2 |
|
| Details | sha256 | 2 | d4375a22c0f3fb36ab788c0a9d6e0479bd19f48349f6e192b10d83047a74c9d7 |
|
| Details | sha256 | 3 | 90e5fa3f382c5b15a85484c17c15338a6c8dbc2b0ca4fb73c521892bd853f226 |
|
| Details | sha256 | 1 | c2c1d804aeed1913f858df48bf89a58b1f9819d7276a70b50785cf91c9d34083 |
|
| Details | sha256 | 2 | 9410963ede9702e7b74b4057fee952250ded09f85a4bb477d45a64f2352ec811 |
|
| Details | sha256 | 2 | 4bcc2ad5b577954a6bd23aff16566ce0784a71f9526a5ae849347ae766f4033f |
|
| Details | sha256 | 2 | 21c5661eb5e54d537c6c9394d7bd4accf53e06851978a36c94b649c4f404a42e |
|
| Details | sha256 | 4 | 28de2ccff30a4f198670b66b6f9a0ce5f5f9b7f889c2f5e6a4e365dea1c89d53 |
|
| Details | sha256 | 2 | c0d5043b57a96ec00debd3f24e09612bcbc38a7fb5255ff905411459e70a6bb4 |
|
| Details | sha256 | 4 | a8c062846411d3fb8ceb0b2fe34389c4910a4887cd39552d30e6a03a02f4cc78 |
|
| Details | sha256 | 1 | c1664df788f690fd061994ed3eb9d767e2f293448ce9d7ff5bff37549e9e4dab |
|
| Details | sha256 | 1 | afd06652b24811d7e03d5525b292293dbdf49b8c0e450d748cab0289aecdbc02 |
|
| Details | sha256 | 2 | 5ee98a677f58b897df3287448e63a1a781d312d2a951f438e1d7e4ab658fa4a0 |
|
| Details | sha256 | 2 | 110c77f66a8d4d8ccc9dc468744302cf368efd071e3e4af39338b699f6bc7808 |
|
| Details | sha256 | 3 | 5d3ff202f20af915863eee45916412a271bae1ea3a0e20988309c16723ce4da5 |
|
| Details | sha256 | 2 | 9f2bc9aebb3ee87cfbdef1716b5f67834db305cf400b41b278d5458800c5eeeb |
|
| Details | IBM X-Force - Threat Group Enumeration | 34 | ITG18 |
|
| Details | Mandiant Uncategorized Groups | 18 | UNC788 |
|
| Details | Mandiant Uncategorized Groups | 20 | UNC2448 |
|
| Details | MITRE ATT&CK Techniques | 62 | T1583.003 |
|
| Details | MITRE ATT&CK Techniques | 66 | T1584 |
|
| Details | MITRE ATT&CK Techniques | 26 | T1587.003 |
|
| Details | MITRE ATT&CK Techniques | 18 | T1588.004 |
|
| Details | MITRE ATT&CK Techniques | 191 | T1133 |
|
| Details | MITRE ATT&CK Techniques | 310 | T1566.001 |
|
| Details | MITRE ATT&CK Techniques | 183 | T1566.002 |
|
| Details | MITRE ATT&CK Techniques | 310 | T1047 |
|
| Details | MITRE ATT&CK Techniques | 460 | T1059.001 |
|
| Details | MITRE ATT&CK Techniques | 137 | T1059.005 |
|
| Details | MITRE ATT&CK Techniques | 93 | T1059.007 |
|
| Details | MITRE ATT&CK Techniques | 174 | T1569.002 |
|
| Details | MITRE ATT&CK Techniques | 106 | T1204.001 |
|
| Details | MITRE ATT&CK Techniques | 365 | T1204.002 |
|
| Details | MITRE ATT&CK Techniques | 14 | T1098.002 |
|
| Details | MITRE ATT&CK Techniques | 180 | T1543.003 |
|
| Details | MITRE ATT&CK Techniques | 380 | T1547.001 |
|
| Details | MITRE ATT&CK Techniques | 20 | T1547.004 |
|
| Details | MITRE ATT&CK Techniques | 440 | T1055 |
|
| Details | MITRE ATT&CK Techniques | 116 | T1134 |
|
| Details | MITRE ATT&CK Techniques | 160 | T1027.002 |
|
| Details | MITRE ATT&CK Techniques | 42 | T1027.005 |
|
| Details | MITRE ATT&CK Techniques | 297 | T1070.004 |
|
| Details | MITRE ATT&CK Techniques | 550 | T1112 |
|
| Details | MITRE ATT&CK Techniques | 504 | T1140 |
|
| Details | MITRE ATT&CK Techniques | 40 | T1221 |
|
| Details | MITRE ATT&CK Techniques | 97 | T1497.001 |
|
| Details | MITRE ATT&CK Techniques | 57 | T1497.003 |
|
| Details | MITRE ATT&CK Techniques | 66 | T1564.003 |
|
| Details | MITRE ATT&CK Techniques | 501 | T1012 |
|
| Details | MITRE ATT&CK Techniques | 245 | T1016 |
|
| Details | MITRE ATT&CK Techniques | 1006 | T1082 |
|
| Details | MITRE ATT&CK Techniques | 585 | T1083 |
|
| Details | MITRE ATT&CK Techniques | 72 | T1087.001 |
|
| Details | MITRE ATT&CK Techniques | 185 | T1518 |
|
| Details | MITRE ATT&CK Techniques | 160 | T1021.001 |
|
| Details | MITRE ATT&CK Techniques | 59 | T1021.004 |
|
| Details | MITRE ATT&CK Techniques | 289 | T1003 |
|
| Details | MITRE ATT&CK Techniques | 25 | T1111 |
|
| Details | MITRE ATT&CK Techniques | 118 | T1056.001 |
|
| Details | MITRE ATT&CK Techniques | 442 | T1071.001 |
|
| Details | MITRE ATT&CK Techniques | 31 | T1071.002 |
|
| Details | MITRE ATT&CK Techniques | 159 | T1095 |
|
| Details | MITRE ATT&CK Techniques | 149 | T1102 |
|
| Details | MITRE ATT&CK Techniques | 492 | T1105 |
|
| Details | MITRE ATT&CK Techniques | 96 | T1132 |
|
| Details | MITRE ATT&CK Techniques | 74 | T1573.002 |
|
| Details | MITRE ATT&CK Techniques | 422 | T1041 |
|
| Details | MITRE ATT&CK Techniques | 48 | T1529 |
|
| Details | MITRE ATT&CK Techniques | 219 | T1113 |
|
| Details | MITRE ATT&CK Techniques | 82 | T1115 |
|
| Details | MITRE ATT&CK Techniques | 23 | T1123 |
|
| Details | MITRE ATT&CK Techniques | 32 | T1125 |
|
| Details | MITRE ATT&CK Techniques | 56 | T1213 |
|
| Details | MITRE ATT&CK Techniques | 29 | T1560.002 |
|
| Details | Threat Actor Identifier - APT | 121 | APT42 |
|
| Details | Threat Actor Identifier - APT | 194 | APT35 |