FirePeony: a ghost wandering around the Royal Road
Common Information
| Type | Value |
|---|---|
| UUID | bebdf7d0-7fb7-4cc7-8d1e-f8f81571a201 |
| Fingerprint | c0f4b413e59517f23bd6f5a08d88a32bdff7f439989077de900ad663b17a63f5 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Oct. 5, 2023, 10:14 p.m. |
| Added to db | April 16, 2024, 7:06 p.m. |
| Last updated | Aug. 31, 2024, 12:01 a.m. |
| Headline | FirePeony: a ghost wandering around the Royal Road |
| Title | FirePeony: a ghost wandering around the Royal Road |
| Detected Hints/Tags/Attributes | 76/3/32 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 375 | cve-2017-11882 |
|
| Details | CVE | 58 | cve-2018-0798 |
|
| Details | CVE | 117 | cve-2018-0802 |
|
| Details | Domain | 141 | research.checkpoint.com |
|
| Details | Domain | 4127 | github.com |
|
| Details | Domain | 11 | services.google.com |
|
| Details | Domain | 12 | www.mofa.go.jp |
|
| Details | Domain | 21 | nao-sec.org |
|
| Details | Domain | 370 | www.proofpoint.com |
|
| Details | Domain | 622 | en.wikipedia.org |
|
| Details | Domain | 144 | www.fortinet.com |
|
| Details | Domain | 47 | go.recordedfuture.com |
|
| Details | File | 66 | settings.xml |
|
| Details | File | 2 | google_fog_of_war_research_report.pdf |
|
| Details | File | 1 | page4_005920.html |
|
| Details | File | 1 | overhead-view-of-the-royal-road.html |
|
| Details | File | 1 | cta-2021-1208.pdf |
|
| Details | Github username | 5 | nao-sec |
|
| Details | IPv4 | 4 | 45.197.133.23 |
|
| Details | Threat Actor Identifier - APT | 143 | APT40 |
|
| Details | Threat Actor Identifier by Recorded Future | 5 | TAG-16 |
|
| Details | Url | 1 | https://research.checkpoint.com/2021/chinese-apt-group-targets-southeast- |
|
| Details | Url | 4 | https://github.com/nao-sec/rr_decoder |
|
| Details | Url | 2 | https://services.google.com/fh/files/blogs/google_fog_of_war_research_report.pdf |
|
| Details | Url | 1 | https://www.mofa.go.jp/mofaj/ecm/ec/page4_005920.html |
|
| Details | Url | 1 | https://nao-sec.org/2020/01/an- |
|
| Details | Url | 1 | https://www.proofpoint.com/us/blog/t |
|
| Details | Url | 2 | https://en.wikipedia.org/wiki/fowler%e2%80%93noll%e2%80%93vo_hash_function |
|
| Details | Url | 1 | https://research.checkpoint.com/2021/chinese-apt-group-targets-southeast-asian-government-with-previously-unknown-backdoor |
|
| Details | Url | 1 | https://www.fortinet.com/blog/threat-research/unraveling-the-evolution-of-the-soul-searcher-malware |
|
| Details | Url | 1 | https://research.checkpoint.com/2023/pandas-with-a-soul-chinese-espionage-attacks-against-southeast-asian-government-entities |
|
| Details | Url | 1 | https://go.recordedfuture.com/hubfs/reports/cta-2021-1208.pdf |