ioc[.]one - OSINT Cyber Threat Intelligence Database

Inside Look Evolution of Spear-Phishing Techniques of Notorious Threat Groups

Show in Graph

Common Information

Type	Value
UUID	53d05daa-7c4e-45f6-90a2-323866da2bf5
Fingerprint	388a0a7fc1f7e026e708f8133acdc3ee6effa291c44d9841d3a2cf2d9fe847e1
Analysis status	DONE
Considered CTI value	2
Text language
Published	April 13, 2023, 6:27 p.m.
Added to db	May 26, 2024, 7:09 p.m.
Last updated	Aug. 31, 2024, 8:58 a.m.
Headline	Inside Look Evolution of Spear-Phishing Techniques of Notorious Threat Groups
Title	Inside Look Evolution of Spear-Phishing Techniques of Notorious Threat Groups
Detected Hints/Tags/Attributes	85/3/201

Source URLs

	Redirection	Url
Details	Source	https://raw.githubusercontent.com/vc0RExor/Malware-Threat-Reports/3528e37f3e861004f3b82614c826e2f355eb0c0a/TA0001%20%5BPHISHING%5D/Evolution%20of%20SpearPhishing/Inside%20Look_Evolution%20of%20Spear-Phishing%20Techniques%20of%20Notorious%20Threat%20groups_EN.pdf

URL Provider

Details	Provider	Source level domain
Details	githubusercontent.com	raw.githubusercontent.com

Attributes

Details	Type	#Events	Value
Details	File	1018	rundll32.exe
Details	File	8	bat.exe
Details	File	95	pdf.exe
Details	File	3	vbs.exe
Details	File	51	wermgr.exe
Details	sha256	2	f25f69c71066b18364cd405ae80048a8b615c4b0f2cc4cb51b916ef08ba246db
Details	sha256	1	3a60658cdbf960c135f07bd06d36124b5926b85c59a9c01948976b199e3959f8
Details	sha256	1	fe6d4c5fb28f7a3379322d4314d31d8227a3356c2992b2bd4b47922f97d3e315
Details	sha256	1	9e28cff8966bbacee0d1644f157ad3f6c96c7c1dbf04c993f868603db58ec34a
Details	sha256	2	2bbfc13c80c7c6e77478ec38d499447288adc78a2e4b3f8da6223db9e3ac2d75
Details	sha256	1	0a195fadda7b93ee2ea9502df7731425ff51e33a6cdd8dc5b2c5441853f77dd1
Details	sha256	1	61192618b654fd7a8728bafcfee2d36a6e3e5b5b7b6a30c545aad867585451eb
Details	sha256	2	9ba1b1bf9bccdf3cdd0e07616da28acea278e70f77dce249bc821c552a846aa8
Details	sha256	2	b11b51ff96dc7a5f1cf9985087a6ad4f66980a2b2a9b1945acd43e39434c8dec
Details	sha256	1	417b21104c212d3c6443c30960b43bfa3c65dda72061a5a2c0246ff97930eb18
Details	sha256	1	ef6a185793a6d6b430ef1a15e01550221919075c5693c80fcea76651e250a14f
Details	sha256	1	587b6cfa2c17da4ee0468dbcc1bfe438acaec0c8bae49961e1eaac5c9b889c69
Details	sha256	1	2cb1878faa0fc824a60b93e4b2dceb1737ef54369bcb3d2df6d68b120fa7a81a
Details	sha256	1	3fadc8328d153710ca24a8122faa0870b56c1884d55526491364a9b0344f0ba9
Details	sha256	1	c193e68f865767552e95fe466c4f4ed9b94398c4574ccd51eb2db808e2cdf3ef
Details	sha256	1	f8360776618ae88f15187275a0222863ad44565568a71e02626a0ff351e3ef9a
Details	sha256	1	a6f080b10e871e9144affc385bf0e483da5b0d10f24f3ac885017638fae92a4f
Details	sha256	1	ee1a62d1c2354e54f1763553619159f630f45db3adf53d8970d12d010de3bef5
Details	sha256	1	f9602998afc5c510a4102622cad24c15a91066f0bc26e6c9cd4e4de15f90afc5
Details	sha256	1	f4784d48cd2a8cc765e9fcedd275c97bb1261b0355386c0e6a7f31fc9a0dbf17
Details	sha256	1	b6dac05e61ee711e5e56ab6dea94ae3d400897ecc76544a0c6fd9817ac91ec88
Details	sha256	1	643b8833390a8ad198ee567d39ed4253e06dd8a1b6aec1b2a23688b536707a62
Details	IPv4	1	209.126.85.32
Details	IPv4	3	187.63.160.88
Details	IPv4	3	167.172.199.165
Details	IPv4	5	164.90.222.65
Details	IPv4	3	104.168.155.143
Details	IPv4	3	213.239.212.5
Details	IPv4	6	172.105.226.75
Details	IPv4	3	5.135.159.50
Details	IPv4	6	107.170.39.149
Details	IPv4	2	202.129.205.3
Details	IPv4	3	115.68.227.76
Details	IPv4	7	94.23.45.86
Details	IPv4	6	153.126.146.25
Details	IPv4	6	197.242.150.244
Details	IPv4	8	164.68.99.3
Details	IPv4	6	72.15.201.15
Details	IPv4	5	185.4.135.165
Details	IPv4	5	103.132.242.26
Details	IPv4	5	139.59.126.41
Details	IPv4	7	173.212.193.249
Details	IPv4	15	103.75.201.2
Details	IPv4	5	119.59.103.152
Details	IPv4	4	79.137.35.198
Details	IPv4	8	129.232.188.93
Details	IPv4	7	45.235.8.30
Details	IPv4	2	153.92.5.27
Details	IPv4	6	45.176.232.124
Details	IPv4	6	149.56.131.28
Details	IPv4	11	110.232.117.186
Details	IPv4	7	159.89.202.34
Details	IPv4	3	163.44.196.120
Details	IPv4	9	188.44.20.25
Details	IPv4	8	1.234.2.232
Details	IPv4	8	206.189.28.199
Details	IPv4	5	186.194.240.217
Details	IPv4	5	201.94.166.162
Details	IPv4	7	183.111.227.137
Details	IPv4	3	147.139.166.154
Details	IPv4	3	82.223.21.224
Details	IPv4	5	103.43.75.120
Details	IPv4	3	169.57.156.166
Details	IPv4	4	91.207.28.33
Details	IPv4	3	95.217.221.146
Details	IPv4	5	167.172.253.162
Details	IPv4	8	159.65.88.10
Details	IPv4	3	207.244.236.205
Details	IPv4	1	185.156.175.35
Details	IPv4	1	208.67.107.123
Details	IPv4	1	71.52.53.166
Details	IPv4	6	12.172.173.82
Details	IPv4	1	142.182.109.233
Details	IPv4	1	151.65.224.211
Details	IPv4	1	81.229.117.95
Details	IPv4	1	72.88.245.71
Details	IPv4	1	69.133.162.35
Details	IPv4	1	107.146.12.26
Details	IPv4	1	84.219.213.130
Details	IPv4	1	173.178.151.233
Details	IPv4	1	62.35.100.38
Details	IPv4	1	92.154.17.149
Details	IPv4	1	181.164.217.211
Details	IPv4	1	209.140.8.70
Details	IPv4	1	93.24.192.142
Details	IPv4	1	213.31.90.183
Details	IPv4	1	82.127.204.82
Details	IPv4	3	198.2.51.242
Details	IPv4	1	94.105.123.142
Details	IPv4	1	88.111.182.118
Details	IPv4	1	41.228.236.143
Details	IPv4	1	76.170.252.153
Details	IPv4	5	73.161.176.218
Details	IPv4	1	76.64.202.44
Details	IPv4	1	75.143.236.149
Details	IPv4	1	85.61.165.153
Details	IPv4	1	181.118.206.65
Details	IPv4	1	122.184.143.82
Details	IPv4	1	98.145.23.67
Details	IPv4	1	72.80.94.230
Details	IPv4	2	50.68.204.71
Details	IPv4	1	162.248.14.107
Details	IPv4	3	75.98.154.19
Details	IPv4	1	86.130.9.232
Details	IPv4	2	85.241.180.94
Details	IPv4	1	91.170.115.68
Details	IPv4	1	136.35.241.159
Details	IPv4	1	109.150.179.236
Details	IPv4	5	73.29.92.128
Details	IPv4	2	72.203.216.98
Details	IPv4	1	190.206.75.58
Details	IPv4	1	66.35.126.223
Details	IPv4	1	35.143.97.145
Details	IPv4	2	174.104.184.149
Details	IPv4	2	24.228.132.224
Details	IPv4	1	70.27.104.2
Details	IPv4	1	86.207.227.152
Details	IPv4	2	109.11.175.42
Details	IPv4	2	24.206.27.39
Details	IPv4	1	85.74.149.3
Details	IPv4	2	98.147.155.235
Details	IPv4	1	24.69.84.237
Details	IPv4	1	83.7.53.157
Details	IPv4	1	87.221.197.113
Details	IPv4	5	67.187.130.101
Details	IPv4	2	172.248.42.122
Details	IPv4	1	84.35.26.14
Details	IPv4	1	45.50.233.214
Details	IPv4	2	47.34.30.133
Details	IPv4	1	93.156.99.48
Details	IPv4	1	97.93.192.2
Details	IPv4	1	210.84.30.161
Details	IPv4	1	98.22.28.34
Details	IPv4	1	77.86.98.236
Details	IPv4	1	24.239.69.244
Details	IPv4	1	68.108.122.180
Details	IPv4	1	173.18.126.3
Details	IPv4	1	156.216.125.255
Details	IPv4	1	24.71.120.191
Details	IPv4	1	95.150.121.151
Details	IPv4	5	73.165.119.20
Details	IPv4	1	72.188.121.121
Details	IPv4	1	98.163.227.79
Details	IPv4	2	90.104.22.28
Details	IPv4	2	74.33.196.114
Details	IPv4	1	121.121.100.207
Details	IPv4	1	81.157.227.223
Details	IPv4	1	149.74.159.67
Details	IPv4	2	92.27.86.48
Details	IPv4	2	213.67.255.57
Details	IPv4	1	193.253.100.236
Details	IPv4	1	47.149.78.242
Details	IPv4	1	94.30.98.134
Details	IPv4	1	89.152.120.181
Details	IPv4	1	86.188.32.131
Details	IPv4	1	72.194.232.94
Details	IPv4	1	85.231.105.49
Details	IPv4	1	75.156.125.215
Details	IPv4	2	47.21.51.138
Details	IPv4	1	90.165.109.4
Details	IPv4	5	201.142.207.183
Details	IPv4	1	70.51.153.37
Details	IPv4	1	2.13.73.146
Details	IPv4	1	91.254.132.23
Details	IPv4	1	86.96.72.139
Details	IPv4	1	188.83.248.76
Details	IPv4	1	64.237.185.60
Details	IPv4	1	104.35.24.154
Details	IPv4	2	201.244.108.183
Details	IPv4	2	184.176.35.223
Details	IPv4	1	190.11.198.75
Details	IPv4	1	82.212.115.188
Details	IPv4	1	205.164.227.222
Details	IPv4	2	217.128.91.196
Details	IPv4	4	88.126.94.4
Details	IPv4	2	37.14.229.220
Details	IPv4	5	27.109.19.90
Details	IPv4	1	208.180.17.32
Details	IPv4	1	86.250.12.217
Details	IPv4	5	103.12.133.134
Details	IPv4	5	98.37.25.99
Details	IPv4	1	128.254.207.26
Details	IPv4	1	94.131.115.19
Details	IPv4	1	139.180.170.206
Details	IPv4	1	206.53.48.51
Details	IPv4	1	87.236.146.84
Details	IPv4	1	198.44.132.63
Details	IPv4	1	122.228.37.54
Details	IPv4	1	10.169.148.185
Details	MITRE ATT&CK Techniques	409	T1566
Details	MITRE ATT&CK Techniques	310	T1566.001
Details	MITRE ATT&CK Techniques	183	T1566.002
Details	MITRE ATT&CK Techniques	22	T1566.003
Details	Threat Actor Identifier - APT-C	83	APT-C-36
Details	Threat Actor Identifier - APT	181	APT33
Details	Windows Registry Key	38	HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run