ioc[.]one - OSINT Cyber Threat Intelligence Database

Iran and the Soft War for Internet Dominance

Show in Graph

Common Information

Type	Value
UUID	60738714-f4ef-488c-8f40-56b9e90369b3
Fingerprint	07836b2990f2e39dbb314d29de5c454d66f9c4298dc7a3238870cb446d20b7ac
Analysis status	DONE
Considered CTI value	2
Text language
Published	None
Added to db	April 14, 2024, 3:20 a.m.
Last updated	Aug. 31, 2024, 6:36 a.m.
Headline	Iran and the Soft War for Internet Dominance
Title	Iran and the Soft War for Internet Dominance
Detected Hints/Tags/Attributes	225/3/316

Source URLs

	Redirection	Url
Details	Source	https://www.blackhat.com/docs/us-16/materials/us-16-Guarnieri-Iran-And-The-Soft-War-For-Internet-Dominance-wp.pdf

URL Provider

Details	Provider	Source level domain
Details	blackhat.com	www.blackhat.com

Attributes

Details	Type	#Events	Value
Details	Autonomous System Number	4	AS12880
Details	Domain	2	nex.sx
Details	Domain	1	asc.upenn.edu
Details	Domain	1	www.timeshighereducation.com
Details	Domain	1	www.zone
Details	Domain	2	iranthreats.github.io
Details	Domain	24	researchcenter.paloaltonetworks.com
Details	Domain	2	ti.360.com
Details	Domain	335	www.facebook.com
Details	Domain	19	plus.google.com
Details	Domain	1	ddis.dk
Details	Domain	3	bestwebstat.com
Details	Domain	1	freekamalforoughi.com
Details	Domain	105	web.archive.org
Details	Domain	1	taptan313.blogspot.com
Details	Domain	1	www.junbish.blogspot.com
Details	Domain	2	wpstat.mine.bz
Details	Domain	1	www.bestwebstat.com
Details	Domain	1	www.kurdistannet.org
Details	Domain	124	www.nytimes.com
Details	Domain	3	updatebox4.com
Details	Domain	3	bestupdateserver.com
Details	Domain	3	updateserver1.com
Details	Domain	3	updateserver3.com
Details	Domain	1	box40xx.net
Details	Domain	3	box4054.net
Details	Domain	2	box4070.net
Details	Domain	2	box4071.net
Details	Domain	287	yahoo.com
Details	Domain	6	community.sophos.com
Details	Domain	1	arjanews.ir
Details	Domain	1	180.157.xxx
Details	Domain	1	31.14.152.xxx
Details	Domain	1	232.90.xxx
Details	Domain	1	46.100.135.xxx
Details	Domain	1	180.92.xxx
Details	Domain	1	222.214.xxx
Details	Domain	1	182.52.xxx
Details	Domain	1	180.143.xxx
Details	Domain	1	65.49.68.xxx
Details	Domain	1	192.99.220.xxx
Details	Domain	1	232.151.xxx
Details	Domain	1	232.157.xxx
Details	Domain	1	180.96.xxx
Details	Domain	1	232.135.xxx
Details	Domain	1	232.140.xxx
Details	Domain	1	232.136.xxx
Details	Domain	1	232.143.xxx
Details	Domain	1	232.154.xxx
Details	Domain	1	217.172.105.xxx
Details	Domain	3	bestbox3.com
Details	Domain	3	bestupdateserver2.com
Details	Domain	3	youripinfo.com
Details	Domain	1	232.158.xxx
Details	Domain	1	184.75.221.xxx
Details	Domain	1	nstrad.dynu.com
Details	Domain	2	uvps1.cotbm.com
Details	Domain	1	debug.me
Details	Domain	1	de4dot.com
Details	Domain	3	ilspy.net
Details	Domain	46	datetime.now
Details	Domain	6	update.com
Details	Domain	57	www.clearskysec.com
Details	Domain	3	google.co
Details	Domain	1	shaftool.com
Details	Domain	1	ghalpaq.com
Details	Domain	145	api.telegram.org
Details	Domain	1	server.us
Details	Domain	1	ghalpaq.us
Details	Domain	1	pashmool.com
Details	Domain	1	kashkoolak.com
Details	Domain	2	uploader.sytes.net
Details	Domain	1	win2farsi.com
Details	Domain	29	www.cnet.com
Details	Domain	18	www.hrw.org
Details	Domain	5	dhs.gov
Details	Domain	1	anonymousemail.me
Details	Domain	1	www.uscis.gov
Details	Domain	1	microupdt.fagdns.com
Details	Domain	1	microupdt.duckdns.org
Details	Domain	73	schemas.microsoft.com
Details	Domain	2	luminosity.link
Details	Domain	1	iedb.ir
Details	Domain	1	tavaana.org
Details	Domain	1	roadrunner.properties
Details	Domain	12	tempuri.org
Details	Domain	32	schemas.xmlsoap.org
Details	Domain	150	www.w3.org
Details	Domain	3	schemas.datacontract.org
Details	Email	1	nex@nex.sx
Details	Email	1	cda@asc.upenn.edu
Details	Email	1	aminjalali_58@yahoo.com
Details	Email	1	box@yahoo.com
Details	Email	1	am54ja@yahoo.com
Details	Email	1	scopsscata@dhs.gov
Details	File	2	motahare.txt
Details	File	1	mryxdgkb20160707en.pdf
Details	File	1	entekhabat.rar
Details	File	1	bayaniehcod.rar
Details	File	1	etelaf.rar
Details	File	1	didani.pps
Details	File	1	nuclear_power.pps
Details	File	1	phishing%20uden%20fangst.pdf
Details	File	1	nostalogy.pps
Details	File	1	rose.pdf
Details	File	2	stat1.php
Details	File	1	ifr2.php
Details	File	1	post_9301.html
Details	File	1	post_27.html
Details	File	1205	index.php
Details	File	1	nimr.html
Details	File	9	x.dll
Details	File	1018	rundll32.exe
Details	File	1	kobabi.pps
Details	File	1	uglp.php
Details	File	1	rglp.php
Details	File	2	ro.php
Details	File	1	utils.db
Details	File	2	mspavilion.exe
Details	File	1	%appdata%\pavilion\mspavilion.exe
Details	File	1	program.config
Details	File	1	info.tar
Details	File	2126	cmd.exe
Details	File	2	document.docm
Details	File	2	photos.rar
Details	File	1208	powershell.exe
Details	File	11	%systemroot%\system32\shell32.dll
Details	File	10	3.jpg
Details	File	5	shortcut.exe
Details	File	1	250c8ca7b.exe
Details	File	1	taskmanager32.exe
Details	File	1	battrunner.exe
Details	File	32	start.bat
Details	File	748	kernel32.dll
Details	File	80	msvcrt.dll
Details	File	1	web_default_attr.exe
Details	File	1	485.doc
Details	File	1	90.doc
Details	File	409	c:\windows\system32\cmd.exe
Details	File	1	protocolhost.exe
Details	File	1	sigverify.exe
Details	File	2	perfwatson.exe
Details	File	1	c:\programdata\winupdt\winupdt.exe
Details	File	60	c:\windows\system32\schtasks.exe
Details	File	1	c:\users\user\appdata\local\temp\633249106.xml
Details	File	103	regasm.exe
Details	File	1	2836.html
Details	File	9	system.config
Details	File	3	properties.settings
Details	File	31	schemas.xml
Details	File	3	schemas.dat
Details	File	1	server.db
Details	md5	1	fe57d408252af3c0fe776b34e838ac98
Details	md5	1	dd0332049dc3fad6b81b3b2e036af718
Details	md5	1	55cb9a6e01e8b5e28633020e95a0a8e4
Details	md5	1	463205b5ddd3437f1af559ead6a750e3
Details	md5	1	f2eb7c2d886ae970e477307f1433f33c
Details	md5	1	501e2bdc7d77da15ae2b48eb5c49bc1d
Details	md5	1	0b7272dd9cf1968dea97f19f154274b8
Details	md5	1	49664f69885d40c6913378ac264afd2a
Details	md5	5	00b5d45433391146ce98cd70a91bef08
Details	md5	1	6c87fd4da4a655987d880aa687825283
Details	md5	1	93dcbbd44c53ae780a359baa4ba26da2
Details	md5	1	0239f8e9e9f242747607e5f7839d2b75
Details	md5	1	ba20e6d986d51c874fa91e4ceab25583
Details	md5	1	879a0b89a1e45a4443e36862fec07954
Details	sha256	1	2667b356b5a36232b7fbe3cedd4c9b44b9cf4150c445cf6871fa4b2c8daac16e
Details	sha256	1	2f294d20aea4741091ddb36540b1512161ddfd3caa3831bfc44fcc75c1ba1db9
Details	sha256	1	0f7b24298e1eb983adc9244ee2ff18e0a6dba5d269d42725d5dbac17910c4daf
Details	sha256	1	3c707f1ea5bd42a1c8f48e2e34e8a2cbdfa3f305f5b38aac5427ee5fc00857a3
Details	sha256	1	16bcc5064630591b7f5a85b807704262bc7923a77b7a475b4c2cb4fe7ae7056a
Details	sha256	1	fc8b141949d008a858439af68236f8eb342273ade1c38a3e0b41ebe07788cd00
Details	sha256	1	7aaef5813058a8b14a15f81b398a53e1f241dbf246108f17871727bef6a6c98d
Details	sha256	1	39d951c330277a8b22bdd8fb64db1629b1036b16754fc0d740eee2bd009d01f7
Details	sha256	1	c3eddcbb5ccabc8090cc0bbb5772da5992fa9e33cda8ecdb541399841d281661
Details	sha256	1	c379a700975a72d0ac332e28d408d3bae0b6a7243180631d62a1df0240581742
Details	sha256	1	9c19afd0afd7dea5fabf82303898a6755df7d24b8720012e32d54bdeb3bb9ffc
Details	sha256	1	3f1fe8d7a3f0562f04c095aa3fafec48797ca114477ca3b332745d0dcca617ee
Details	sha256	1	19860e921cd2d775f51ccc03edbeab80646677a0c8152589e5f1976cba768579
Details	sha256	1	c14c039407ed833d2ee65512fe91d4a0daa8ab43350371357481ae1fbfc011e2
Details	sha256	1	2d11aabc362fd7a0359a2f8023ae51f7886d76afb25a8a49ebb9cfd57ab49b87
Details	sha256	1	fbdc4364ec9d7d09e5c9b86a0ea5f5c48a37df48d274013e91bf1893b4456f95
Details	sha256	1	13efe41a4ed172b19a60f3de751daff7612bd291539c3ebcea233043275e6ff6
Details	sha256	1	3c9319749df130c00a7b563fb99028b0dc11592da9af1fbf3349f53bb7c8cad9
Details	sha256	1	6540e3c6dbab604871f7c9b29e4471c8e02aac382aaa74930aa213786ffcc72b
Details	sha256	1	a9382f4eb13ec502848efb1a85cd86a59cbb87f7e08f7ade8280c8863ee7cac8
Details	sha256	1	e3e8199cd5b6fbf0f21d52520b88821ee9944a8cb9989b950d07d99e2b6f0c9a
Details	sha256	1	46c6820b373be028dc42f190bf7c75a7b1491d56775a2797445e1cb7733009e0
Details	sha256	1	2ddb74fe0d7a1f6f633dbe575aaf7298085b414fdfc343ab26fc939fa7c0e76f
Details	sha256	1	49acbfe9afce8bd7b780d309d86319a823e0bfa302a901db997eb9a6baaffa5c
Details	sha256	1	374157480f9416bc2c486c204e8bdb6e1d149f9e7dc12fb3128c6f7ca1d89ff6
Details	sha256	1	9a6104377ca2da5f3b63dfc59978f067d65c69fd0393e05650dc972c054fde59
Details	sha256	1	058b64614ef2ca5492346966846e494b93f9d531f8efe482e521d0ae44c1b2b7
Details	sha256	1	ccf55307429103bf795e9d477cb15072b0c490b92b6633785df95c8f050eaf6a
Details	sha256	1	14fe3923694a47a94674e98ba33308266f06aa8d0a35673325f6ee539d78f2c1
Details	sha256	1	bcb4789fb705d16657c18c0350fd86350d8feed8f8b98385512b018f41c16b12
Details	sha256	1	04b72e7a02e12e5fd795ba0593df51c6653e257a1a65750c395db2007841118c
Details	sha256	1	03931ddb969dfd7eae16114edb31b85d0cc930a74e3302f3224054dd11ea5585
Details	sha256	1	ed376d37a9d07705a33a05c33fdb2aa40d7d80d5c8d34dc681656bc1c389f151
Details	sha256	1	e355b7f1c88d8d0919d4526b113fea25902fd095a2cb934296c984d8015421dd
Details	sha256	1	e1f95a38b436afdf6a1141f07a1e092ce90740e4d6c3d85f4910e63ecbed390f
Details	sha256	1	060c1531890ab8bb5854d00355df73784b675090ee7e9e56d7aadde1b6e983ba
Details	sha256	2	0598dd550b3854380a4afe915f61ad63ca807d3adf52f4548a49290fbbf7f1e0
Details	sha256	2	9f016d21b3602ebe3f1f4db6f55e102cfb08084fd0fb2b3413b911a8f993c7f8
Details	sha256	1	ab6bc6d2802ce622f5dbbeb7ab63fea48fcd78dd3755ac2226358d8c6816c3cc
Details	sha256	1	71dbd5677d812de362e82bddbe11aedbf24edf0e10a49861e3c5ae58b14d4603
Details	sha256	1	2c4740eb58ef192f43e1e2066c2820ea8c2b9e88ac54c8ac9112114d0899be7b
Details	sha256	1	3f4d7bbe3d5513b93bd354f4120c98be7a1a388f37de1049262deaa5fb7eb2ac
Details	sha256	1	55205d75a045959054d10f0dee4277679528071b9593c76a44e6f0ba30c8b305
Details	sha256	1	818de69a85e1deb79693b326afa70a8a2a384c502d6667406608f5b86c4fea2a
Details	sha256	1	bb66faefc92f3dd799db42b3835235cbee8882015c193867cd4cbf118c95aaed
Details	sha256	1	fd948669e9f11be95cf3f7a70c4bd0adcc7857f350ed25cbb77428f8e736f7b1
Details	sha256	1	26b87a0a8a7ac56955f5013d279b30d6559b470eaf722f607dba9e382b6d7003
Details	sha256	1	37ca57083768b783beee896d3e1f84c96e7c0bb39d3fb7ccf09caff63ea13629
Details	sha256	2	43bd06de8cfc34a98ed59b29a9499d934bfe5aeb541a87296e5b509dd4a50514
Details	sha256	1	52f112c65a0532749f7e68790fee687a47aecd1d2ed50bfca546e79393e03fb4
Details	sha256	1	55c29dc2be5c681e7f1e6fdc1a46eaa7a3ba711820e9620707f8f41874cb0751
Details	sha256	1	5655adef4a05f29fc003ea573f10f219b3cad4d4a811c8355349118b89bb35ee
Details	sha256	1	587aac84cf62c768b2d30131cc9f7ac2d9c73c874ca49961aa2b70c5227d43cf
Details	sha256	1	6c5871fb6364c10afa2c949714108818388e609308f087ee3b57fe82b9c2d10e
Details	sha256	1	774b107fe5b1dad409039ab7c702112a31999089e33c37f5800ad8090b855c21
Details	sha256	1	7ef47f72a5b47df3a9f3830f21dd8478c87f5b178452679cebd93ce18ce27502
Details	sha256	1	8db637c4ff5d464dfa23fdd2b1bced369015b5fdfcee841549a2b5d8d2449c27
Details	sha256	1	8ec73a4032ca01ed7dd325a02e995548ca80e950f05ace36a656c35f47a835d8
Details	sha256	1	b7170b06ff9aefb8c82ac0d336cc99f75cb9b08ef71c6aa62b39497bb3c87a05
Details	sha256	1	ca321cf2590cda54c6c195f89d8862090355486cfbc13283534901558a055f3a
Details	sha256	1	ca50bb6c13d2f44b2e41c868d69696751abe027a58fec4a3ced32652f074c867
Details	sha256	1	cb5219513c3eb3cf8aaf10676b7976db97370a843cdb58bb2fcc2391493257b2
Details	sha256	1	d84b30a0752b9aec2fab7f32cfbf53193cb74db6d1c5c6b63b40756176e5b473
Details	sha256	1	12ab8e615eb8f2b531534e2724ebd34917539343b9f5b43d7c62860d19fb9954
Details	sha256	2	7b0bc1442036e4fed232073ffcf13322d1d5fd9b60a2b8c0f14848d6e3c4a596
Details	sha256	1	935e9fce0422e6dcbb7b7462379c31ba01da3a6475e508ab5926c1bd340b0c02
Details	sha256	1	261c5f32abb8801576ce81be2c66bca564a8a28ab5ea0954bad6bac7071e299b
Details	sha256	5	2c92da2721466bfbdaff7fedd9f3e8334b688a88ee54d7cab491e1a9df41258f
Details	sha256	1	ff5ff4fee5b52c6b53fd1c01790df235d65d673b927c1cc90b7020a571c21894
Details	sha256	1	0c1fe38b035a125253f4d28c08c63433f5325a113810cb7e750c80e3bfcdeea9
Details	sha256	1	333430c63c407b343fde95634d4620682ba8e660cefb6b5c17e5a473e0780024
Details	sha256	1	58b0ce144d830b2d19c47c2abf0d357d188ef923b525e748085fca7ab6b1bbb0
Details	sha256	1	3b20dc9e9eebd9457cce3d0a4a0497f36599925c4157147b116e9eb7cf7e0db7
Details	sha256	1	96590f60cf2f2c4484e4130c79738f32fac2e689bbc2ecd28dc02425ad06c38e
Details	sha256	1	0fa3583fb34ab722129f64a5ee2aeec353152988e505a042da3ba26955ee35f4
Details	sha256	1	11cad49a9b0a811db4e159e8802d25e96b5d7a3d35abfe1875de59de85a4a547
Details	sha256	1	37e9d941b603e364dfabb1738b9257800d1fb0d17c2674385165683f69e86d62
Details	sha256	1	dac3a657ef25701895bcc8b76eab4d72d8469917dbd3adef2865ed1777a42f74
Details	sha256	1	ec55ba45ac6aa9dd60c7210c02271476d41f05e9ce12bbb2c4d9e39ce6b83bf7
Details	IPv4	1	192.69.200.143
Details	IPv4	2	138.201.47.153
Details	IPv4	1	192.69.208.203
Details	IPv4	1	192.69.208.202
Details	IPv4	2	10.10.34.34
Details	IPv4	1	85.17.172.180
Details	IPv4	1	109.172.51.147
Details	IPv4	1	176.102.64.206
Details	IPv4	1	185.130.226.12
Details	IPv4	1	148.251.55.114
Details	IPv4	1	154.127.59.97
Details	IPv4	1	87.121.52.83
Details	IPv4	31	2.0.0.0
Details	IPv4	619	0.0.0.0
Details	Url	1	https://www.timeshighereducation.com/world
Details	Url	1	http://www.zoneh.org/stats/notifierspecial
Details	Url	2	https://iranthreats.github.io
Details	Url	1	http://researchcenter.paloaltonetworks.com/2016/05/prince
Details	Url	1	http://researchcenter.paloaltonetworks.com/2016/06/unit42
Details	Url	1	https://ti.360.com/upload/report/file/mryxdgkb20160707en.pdf
Details	Url	1	https://www.facebook.com/admin.comnews/posts/10151468451866274?fref=nf
Details	Url	1	https://plus.google.com/%2bnimaakbarpour/posts/smp1vytaa1m
Details	Url	1	https://www.facebook.com/nikowsar/posts/261690493970257
Details	Url	3	https://plus.google.com
Details	Url	1	https://feddis.dk/cfcs/cfcsdocuments/phishing%20uden%20fangst.pdf
Details	Url	1	https://www.fireeye.com/content/dam/fireeyewww/global/en/currentthreats/pdfs/rptoperationsaffronrose.pdf
Details	Url	1	http://freekamalforoughi.com
Details	Url	1	https://web.archive.org/web/20110830125243/http://taptan313.blogspot.com
Details	Url	1	https://web.archive.org/web/20100819184243/http://www.junbish.blogspot.com
Details	Url	1	http://wpstat.mine.bz/e1/stat1.php
Details	Url	1	http://www.bestwebstat.com/e/nt/ifr2.php
Details	Url	1	http://taptan313.blogspot.com/2010/07/blogpost_9301.html
Details	Url	1	http://taptan313.blogspot.com/2010/07/blogpost_27.html
Details	Url	1	https://web.archive.org/web/20150522072531/http://www.kurdistannet.org/2015/index.php
Details	Url	1	http://www.nytimes.com/2016/01/04/world/middleeast/iransaudiarabiaexecutionsheikhnimr.html
Details	Url	1	https://community.sophos.com/products/unified
Details	Url	1	http://arjanews.ir/%d8%ac%d9%87%d8%a7%d8%af
Details	Url	1	http://10.10.34.34?type=invalid
Details	Url	1	http://de4dot.com
Details	Url	2	http://ilspy.net
Details	Url	1	http://www.clearskysec.com/gholee
Details	Url	1	https://api.telegram.org/bot209917679
Details	Url	1	http://uploader.sytes.net/download/slideshow/3.jpg
Details	Url	1	http://uploader.sytes.net/download/shortcut.exe
Details	Url	1	http://www.cnet.com/news/fbi
Details	Url	1	https://www.hrw.org/news/2016/01/29/iran
Details	Url	1	https://www.hrw.org/about/people/peter
Details	Url	1	http://148.251.55.114/download/[redacted]/my%20biography%e2%80%aexcod.scr
Details	Url	1	http://148.251.55.114/download
Details	Url	1	https://www.uscis.gov/about
Details	Url	1	https://www.uscis.gov/sites/default/files/files/form/i485.doc
Details	Url	1	http://148.251.55.114/uscis.gov/sites/default/files/files/form/form%20i
Details	Url	1	https://www.uscis.gov/sites/default/files/files/form/i90.doc
Details	Url	19	http://schemas.microsoft.com/windows/2004/02/mit/task
Details	Url	1	https://luminosity.link
Details	Url	1	http://iedb.ir/acc/da86daafd988d986d987d8a7d8b2db8cdaa9d8b1t2836.html
Details	Url	1	https://tavaana.org/fa/hr_reports
Details	Url	2	http://tempuri.org/ibuilder/areyouavaliable
Details	Url	24	http://schemas.xmlsoap.org/soap/envelope
Details	Url	22	http://www.w3.org/2001/xmlschema
Details	Url	4	http://tempuri.org
Details	Url	2	http://tempuri.org/itargetutils/registertarget
Details	Url	2	http://tempuri.org/itargetutils/imonline
Details	Url	1	http://tempuri.org/itargetutils/sendtargetsysteminfo
Details	Url	1	http://schemas.datacontract.org/2004/07/common
Details	Url	1	http://schemas.microsoft.com/2003/10/serialization/a
Details	Url	1	http://tempuri.org/iclienpluginutils/gettargetplugins
Details	Url	1	http://schemas.datacontract.org/2004/07/server.dbm
Details	Url	1	http://tempuri.org/ifilemanagerutils/getfilemanagercommand
Details	Windows Registry Key	36	HKEY_CURRENT_USER\Software\Microsoft\Windows
Details	Windows Registry Key	582	HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run