PowerPoint Presentation
Common Information
| Type | Value |
|---|---|
| UUID | c121f035-876d-4d18-831b-7b7ce044f23f |
| Fingerprint | ca25d0cba6a18b947ddf6b6910203713e5bdeacccc060b5990a572d75e3ce345 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | May 9, 2023, 8:18 a.m. |
| Added to db | Feb. 7, 2024, 7:16 p.m. |
| Last updated | Aug. 31, 2024, 2:19 a.m. |
| Headline | PowerPoint Presentation |
| Title | PowerPoint Presentation |
| Detected Hints/Tags/Attributes | 65/4/33 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | nsjdhmdjs.com |
|
| Details | Domain | 1 | 123.nsjdhmdjs.com |
|
| Details | Domain | 1 | ac2.nsjdhmdjs.com |
|
| Details | Domain | 2 | pic447.com |
|
| Details | Domain | 1 | l2.pic447.com |
|
| Details | Domain | 1 | v2.pic447.com |
|
| Details | Domain | 2 | pic6005588.com |
|
| Details | Domain | 1 | potatouu.com |
|
| Details | Domain | 71 | news.sophos.com |
|
| Details | Domain | 4127 | github.com |
|
| Details | Domain | 435 | www.hivepro.com |
|
| Details | File | 1 | double-dragon-breath-iocs.csv |
|
| Details | Github username | 2 | sophoslabs |
|
| Details | IPv4 | 1 | 23.225.147.227 |
|
| Details | IPv4 | 1 | 206.233.128.103 |
|
| Details | MITRE ATT&CK Techniques | 188 | T1120 |
|
| Details | MITRE ATT&CK Techniques | 55 | T1091 |
|
| Details | MITRE ATT&CK Techniques | 695 | T1059 |
|
| Details | MITRE ATT&CK Techniques | 164 | T1574 |
|
| Details | MITRE ATT&CK Techniques | 227 | T1574.002 |
|
| Details | MITRE ATT&CK Techniques | 440 | T1055 |
|
| Details | MITRE ATT&CK Techniques | 627 | T1027 |
|
| Details | MITRE ATT&CK Techniques | 160 | T1027.002 |
|
| Details | MITRE ATT&CK Techniques | 348 | T1036 |
|
| Details | MITRE ATT&CK Techniques | 247 | T1070 |
|
| Details | MITRE ATT&CK Techniques | 297 | T1070.004 |
|
| Details | MITRE ATT&CK Techniques | 93 | T1070.006 |
|
| Details | MITRE ATT&CK Techniques | 433 | T1057 |
|
| Details | MITRE ATT&CK Techniques | 1006 | T1082 |
|
| Details | MITRE ATT&CK Techniques | 585 | T1083 |
|
| Details | Threat Actor Identifier - APT-Q | 20 | APT-Q-27 |
|
| Details | Url | 3 | https://news.sophos.com/en-us/2023/05/03/doubled-dll-sideloading-dragon-breath |
|
| Details | Url | 1 | https://github.com/sophoslabs/iocs/blob/master/double-dragon-breath-iocs.csv |