全球高级持续性威胁(APT) 2019 年中报告
Common Information
| Type | Value |
|---|---|
| UUID | 810fdf05-3fdf-4fea-8e0e-b4d3986b8476 |
| Fingerprint | 7267762f7012e4646cabecae1e1db5dc68a84c30707e8180576cd77d1233db83 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | None |
| Added to db | April 5, 2024, 3:48 p.m. |
| Last updated | Aug. 31, 2024, 6:22 a.m. |
| Headline | 全球高级持续性威胁(APT) 2019 年中报告 |
| Title | 全球高级持续性威胁(APT) 2019 年中报告 |
| Detected Hints/Tags/Attributes | 103/3/101 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 224 | unit42.paloaltonetworks.com |
|
| Details | Domain | 3 | hack2interesting.com |
|
| Details | Domain | 177 | www.wired.com |
|
| Details | Domain | 216 | www.symantec.com |
|
| Details | Domain | 45 | www.eff.org |
|
| Details | Domain | 59 | www.cybereason.com |
|
| Details | File | 1 | 924e26fc2318fb.pdf |
|
| Details | File | 1 | 8f511e24d9b84a.pdf |
|
| Details | File | 5 | galaxy.html |
|
| Details | File | 2 | 711.html |
|
| Details | File | 3 | 120002.html |
|
| Details | File | 1 | an_cyber_espionnage_groups-to-publish.pdf |
|
| Details | File | 3 | penquins_moonlit_maze_pdf_eng.pdf |
|
| Details | File | 1 | greyenergy.pdf |
|
| Details | File | 2 | elections.html |
|
| Details | File | 1 | e.html |
|
| Details | File | 1 | d-wave-of-cyberattacks-against-iran.html |
|
| Details | File | 1 | strategy_summary_final.pdf |
|
| Details | File | 1 | rid.html |
|
| Details | File | 1 | king-campaign-dns-record-manipulation-at-scale.html |
|
| Details | File | 1 | s-middle-east.html |
|
| Details | File | 1 | in-middle-east-by-apt34.html |
|
| Details | File | 1 | off.html |
|
| Details | File | 1 | methods_for_nsa_integrated_cyber_operations_0.pdf |
|
| Details | MITRE ATT&CK Techniques | 52 | T1195 |
|
| Details | Threat Actor Identifier - APT-C | 44 | APT-C-00 |
|
| Details | Threat Actor Identifier - APT | 277 | APT37 |
|
| Details | Threat Actor Identifier - APT | 132 | APT32 |
|
| Details | Threat Actor Identifier - APT | 783 | APT28 |
|
| Details | Threat Actor Identifier - APT | 665 | APT29 |
|
| Details | Threat Actor Identifier - APT | 258 | APT34 |
|
| Details | Threat Actor Identifier - APT | 181 | APT33 |
|
| Details | Url | 24 | https://ti.qianxin.com |
|
| Details | Url | 3 | https://ti.qianxin.com/blog |
|
| Details | Url | 1 | https://ti.qianxin.com/uploads/2018/08/01/c437f2e1f3eba14802 |
|
| Details | Url | 1 | https://ti.qianxin.com/uploads/2019/01/02/56e5630023fe905b2a |
|
| Details | Url | 57 | https://attack.mitre.org |
|
| Details | Url | 3 | https://www.misp-project.org/galaxy.html |
|
| Details | Url | 2 | https://docs.google.com/spreadsheets/u/0/d/1h9_xaxqhpwaa4 |
|
| Details | Url | 6 | https://www.justice.gov/opa/press-release/file/1092091/download |
|
| Details | Url | 1 | https://www.cyberscoop.com/apt32-ocean-lotus-vietnam-car-companie |
|
| Details | Url | 2 | https://blog.alyac.co.kr |
|
| Details | Url | 1 | https://securelist.com/scarcruft-continues-to-evolve-introduces-bluetoo |
|
| Details | Url | 2 | https://s.tencent.com/research/report/711.html |
|
| Details | Url | 3 | https://www.freebuf.com/articles/paper/120002.html |
|
| Details | Url | 1 | https://www.first.org/resources/papers/tallinn2019/linking_south_asi |
|
| Details | Url | 1 | https://labs.bitdefender.com/2017/09/ehdevel-the-story-of-a-continuou |
|
| Details | Url | 1 | https://www.arbornetworks.com/blog/asert/donot-team-leverages-new- |
|
| Details | Url | 1 | https://media.kasperskycontenthub.com/wp-content/uploads/sites/43/2 |
|
| Details | Url | 1 | https://www.welivesecurity.com/wp-content/uploads/2018/10/eset_ |
|
| Details | Url | 1 | https://blog.yoroi.company/research/apt28-and-upcoming-elections-po |
|
| Details | Url | 1 | https://securityaffairs.co/wordpress/82772/apt/russian-apt-groups-may- |
|
| Details | Url | 1 | https://securityaffairs.co/wordpress/81445/apt/apt28-institutions-europ |
|
| Details | Url | 3 | https://securelist.com/zebrocys-multilanguage-malware-salad/90680 |
|
| Details | Url | 1 | https://www.nytimes.com/2012/06/01/world/middleeast/obama-ordere |
|
| Details | Url | 1 | https://securelist.com/equation-the-death-star-of-malware-galaxy/6875 |
|
| Details | Url | 1 | https://media.defense.gov/2018/sep/18/2002041658/-1/-1/1/cyber_ |
|
| Details | Url | 1 | https://www.nytimes.com/2019/06/15/us/politics/trump-cyber-russia-g |
|
| Details | Url | 1 | https://www.fireeye.com/blog/threat-research/2019/01/global-dns-hijac |
|
| Details | Url | 1 | https://www.crowdstrike.com/blog/widespread-dns-hijacking-activity-t |
|
| Details | Url | 1 | https://blog.talosintelligence.com/2018/11/dnspionage-campaign-target |
|
| Details | Url | 1 | https://www.fireeye.com/blog/threat-research/2017/12/targeted-attack- |
|
| Details | Url | 3 | https://unit42.paloaltonetworks.com/behind-the-scenes-with-oilrig |
|
| Details | Url | 1 | https://blog.talosintelligence.com/2019/04/dnspionage-brings-out-kark |
|
| Details | Url | 1 | https://unit42.paloaltonetworks.com/unit42-muddying-the-water-target |
|
| Details | Url | 1 | https://ti.qianxin.com/blog/articles/apt-organization-muddywater-new- |
|
| Details | Url | 2 | https://hack2interesting.com/iranian-cyber-espionage-apt33 |
|
| Details | Url | 1 | https://www.welivesecurity.com/2019/03/11/gaming-industry-scope-at |
|
| Details | Url | 6 | https://securelist.com/operation-shadowhammer/89992 |
|
| Details | Url | 1 | https://www.welivesecurity.com/2019/05/14/plead-malware-mitm-asus |
|
| Details | Url | 2 | https://www.wired.com/story/triton-hackers-scan-us-power-grid |
|
| Details | Url | 1 | https://www.nytimes.com/2019/06/22/us/politics/us-iran-cyber-attacks. |
|
| Details | Url | 1 | https://www.symantec.com/blogs/threat-intelligence/waterbug-espiona |
|
| Details | Url | 1 | https://www.eff.org/files/2015/01/27/20150117-spiegel-overview_of_ |
|
| Details | Url | 1 | https://www.cybereason.com/blog/operation-soft-cell-a-worldwide-ca |
|
| Details | CVE | 16 | cve-2019-0797 |
|
| Details | CVE | 49 | cve-2018-8453 |
|
| Details | CVE | 16 | cve-2018-8611 |
|
| Details | CVE | 16 | cve-2018-8589 |
|
| Details | Domain | 58 | ti.qianxin.com |
|
| Details | Domain | 360 | attack.mitre.org |
|
| Details | Domain | 15 | www.misp-project.org |
|
| Details | Domain | 112 | docs.google.com |
|
| Details | Domain | 111 | www.justice.gov |
|
| Details | Domain | 43 | www.cyberscoop.com |
|
| Details | Domain | 37 | blog.alyac.co.kr |
|
| Details | Domain | 403 | securelist.com |
|
| Details | Domain | 42 | tencent.com |
|
| Details | Domain | 41 | www.freebuf.com |
|
| Details | Domain | 169 | www.first.org |
|
| Details | Domain | 18 | labs.bitdefender.com |
|
| Details | Domain | 23 | www.arbornetworks.com |
|
| Details | Domain | 15 | media.kasperskycontenthub.com |
|
| Details | Domain | 262 | www.welivesecurity.com |
|
| Details | Domain | 6 | blog.yoroi.company |
|
| Details | Domain | 78 | securityaffairs.co |
|
| Details | Domain | 124 | www.nytimes.com |
|
| Details | Domain | 36 | media.defense.gov |
|
| Details | Domain | 184 | www.fireeye.com |
|
| Details | Domain | 172 | www.crowdstrike.com |
|
| Details | Domain | 261 | blog.talosintelligence.com |