Threat Advisory
Show in Graph
Image Description
Common Information
Type Value
UUID 70200f8a-e849-4400-8077-d2212e380d62
Fingerprint 9afa9dccef5f404858a232523ffba4aedb639245a495c08d67fb23c9a5a9bc2b
Analysis status DONE
Considered CTI value 2
Text language
Published Dec. 22, 2023, 5:28 p.m.
Added to db Feb. 7, 2024, 7:39 p.m.
Last updated Aug. 31, 2024, 1:32 a.m.
Headline Threat Advisory
Title Threat Advisory
Detected Hints/Tags/Attributes 84/4/28
Source URLs
Redirection Url
Details Source https://www.hivepro.com/wp-content/uploads/2023/12/Muddywater-Utilizes-Custom-Tools-to-Target-Telecom-Companies_TA2023517.pdf
URL Provider
Details Provider Source level domain
Details hivepro.com www.hivepro.com
Attributes
Details Type #Events CTI Value
Details Domain 72 
symantec-enterprise-blogs.security.com
Details Domain 435 
www.hivepro.com
Details File 1 
jabswitch.exe
Details IBM X-Force - Threat Group Enumeration 8 
ITG17
Details IPv4 4 
146.70.124.102
Details IPv4 4 
94.131.109.65
Details IPv4 4 
95.164.38.99
Details IPv4 4 
45.67.230.91
Details IPv4 2 
95.164.46.199
Details IPv4 4 
94.131.98.14
Details IPv4 1 
94.131.3.160
Details Mandiant Temporary Group Assumption 29 
TEMP.ZAGROS
Details MITRE ATT&CK Techniques 695 
T1059
Details MITRE ATT&CK Techniques 460 
T1059.001
Details MITRE ATT&CK Techniques 310 
T1047
Details MITRE ATT&CK Techniques 183 
T1189
Details MITRE ATT&CK Techniques 492 
T1105
Details MITRE ATT&CK Techniques 152 
T1056
Details MITRE ATT&CK Techniques 409 
T1566
Details MITRE ATT&CK Techniques 480 
T1053
Details MITRE ATT&CK Techniques 275 
T1053.005
Details MITRE ATT&CK Techniques 627 
T1027
Details MITRE ATT&CK Techniques 164 
T1574
Details MITRE ATT&CK Techniques 227 
T1574.002
Details Threat Actor Identifier by Tencent 4 
T-APT-14
Details Threat Actor Identifier by Thales 4 
ATK 51
Details Url 1 
https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/iran-apt-
Details Url 1 
https://www.hivepro.com/threat-advisory/muddywater-returns-new-spear-phishing-