ioc[.]one - OSINT Cyber Threat Intelligence Database

Despite Infighting and Volatility, Iran Maintains Aggressive Cyber Operations Structure

Show in Graph

Common Information

Type	Value
UUID	7d1c217c-ee6a-4769-8530-6e36c5fafdb9
Fingerprint	33663d71eb0c02f555f1c8043e6711e3c9a315cf8089f4b9e7d057ca75188f1a
Analysis status	DONE
Considered CTI value	2
Text language
Published	April 8, 2020, 9:14 a.m.
Added to db	March 10, 2024, 12:54 a.m.
Last updated	Aug. 30, 2024, 10:28 p.m.
Headline	Despite Infighting and Volatility, Iran Maintains Aggressive Cyber Operations Structure
Title	Despite Infighting and Volatility, Iran Maintains Aggressive Cyber Operations Structure
Detected Hints/Tags/Attributes	239/3/79

Source URLs

	Redirection	Url
Details	Source	https://go.recordedfuture.com/hubfs/reports/cta-2020-0409.pdf

URL Provider

Details	Provider	Source level domain
Details	recordedfuture.com	go.recordedfuture.com

Attributes

Details	Type	#Events	Value
Details	Domain	2	parstoday.com
Details	Domain	1	primus.com.jo
Details	Domain	1	mopa.ae
Details	Domain	1	dmi.ae
Details	Domain	1	nitc.gov.jo
Details	Domain	1	adac.ae
Details	Domain	1	etihad.ae
Details	Domain	1	epc.ae
Details	Domain	1	nbrri.gov.ng
Details	Domain	1	nsa.gov.bh
Details	Domain	1	cdhq.gov.ae
Details	Domain	1	enoc.com
Details	Domain	1	fcsa.gov.ae
Details	Domain	1	da.gov.kw
Details	Domain	1	pmo.gov.ae
Details	Domain	1	scad.ae
Details	Domain	1	gov.om
Details	File	7	port.exe
Details	File	5	www.tab
Details	File	4	jason.exe
Details	md5	1	3ab7c5ef2248a418ae9760e21bd4fc3d
Details	IPv4	2	217.218.175.0
Details	IPv4	1	46.209.144.0
Details	IPv4	1	78.38.25.0
Details	IPv4	1	94.0.0.0
Details	IPv4	1	94.184.92.211
Details	IPv4	1	194.225.24.0
Details	IPv4	1	80.66.176.0
Details	IPv4	1	185.211.88.0
Details	IPv4	1	194.225.166.0
Details	IPv4	1	81.31.186.0
Details	IPv4	1	143.95.251.23
Details	IPv4	1	213.42.174.226
Details	IPv4	1	80.227.111.126
Details	IPv4	1	193.188.66.185
Details	IPv4	1	37.218.224.54
Details	IPv4	1	87.201.129.84
Details	IPv4	1	162.13.207.114
Details	IPv4	1	192.3.137.194
Details	IPv4	1	193.188.115.251
Details	IPv4	1	45.60.112.182
Details	IPv4	1	185.54.19.170
Details	IPv4	1	40.113.150.45
Details	IPv4	1	185.66.17.154
Details	IPv4	1	82.178.124.58
Details	Threat Actor Identifier - APT	194	APT35
Details	Threat Actor Identifier - APT	181	APT33
Details	Threat Actor Identifier - APT	258	APT34
Details	Threat Actor Identifier - APT	53	APT39
Details	Url	1	https://www.tabnak.ir/fa/news/816849
Details	Url	1	https://www.mojahedin.org/news/22762
Details	Url	1	http://farsi.khamenei.ir/newspart-index?tid=2748
Details	Url	1	https://www.farsnews.com/news/13910604001358
Details	Url	1	https://www.tasnimnews.com/fa/news/1395/05/21/1155366
Details	Url	1	http://basij18karajamozesh.blogfa.com/post/420
Details	Url	1	https://www.farsnews.com/news/13951106000986
Details	Url	1	https://parstoday.com/fa/iran-i81358
Details	Autonomous System Number	1	AS42337
Details	Autonomous System Number	2	AS58224
Details	Autonomous System Number	1	AS6736
Details	Autonomous System Number	2	AS56765
Details	Autonomous System Number	1	AS29068
Details	Autonomous System Number	1	AS59794
Details	Autonomous System Number	1	AS57745
Details	Autonomous System Number	1	AS12660
Details	CVE	150	cve-2018-13379
Details	CVE	19	cve-2019-1579
Details	CVE	128	cve-2019-11510
Details	CVE	31	cve-2018-20250
Details	Domain	546	www.recordedfuture.com
Details	Domain	1	www.tabnak.ir
Details	Domain	1	www.mojahedin.org
Details	Domain	3	farsi.khamenei.ir
Details	Domain	1	www.farsnews.com
Details	Domain	5	www.tasnimnews.com
Details	Domain	1	basij18karajamozesh.blogfa.com
Details	Domain	2	ihu.ac.ir
Details	Domain	1	motahari.ac.ir
Details	Domain	1	com.jo