0628-2020APT上半年报告-画册
Common Information
| Type | Value |
|---|---|
| UUID | c99a09fa-5f4b-4e74-a180-7a3dbcf5a600 |
| Fingerprint | 6732b4c8d8baab9268a199789761d0c2bde4704846bcd8d7261eb8e8ebf8544f |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | June 28, 2020, 7:16 p.m. |
| Added to db | Sept. 22, 2024, 3:33 p.m. |
| Last updated | Sept. 22, 2024, 3:34 p.m. |
| Headline | 0628-2020APT上半年报告-画册 |
| Title | 0628-2020APT上半年报告-画册 |
| Detected Hints/Tags/Attributes | 64/2/46 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 14 | cve-2019-17026 |
|
| Details | CVE | 43 | cve-2020-0674 |
|
| Details | CVE | 71 | cve-2020-0688 |
|
| Details | CVE | 7 | cve-2020-6819 |
|
| Details | CVE | 8 | cve-2020-6820 |
|
| Details | CVE | 11 | cve-2020-6418 |
|
| Details | CVE | 8 | cve-2020-8467 |
|
| Details | CVE | 10 | cve-2020-8468 |
|
| Details | CVE | 27 | cve-2019-1367 |
|
| Details | CVE | 28 | cve-2019-2215 |
|
| Details | CVE | 128 | cve-2019-11510 |
|
| Details | CVE | 150 | cve-2018-13379 |
|
| Details | CVE | 6 | cve-2018-1579 |
|
| Details | Domain | 4 | promon.co |
|
| Details | Domain | 5 | email.gov.in.maildrive.email |
|
| Details | Domain | 1 | du.km01s.net |
|
| Details | Domain | 58 | ti.qianxin.com |
|
| Details | Domain | 403 | securelist.com |
|
| Details | Domain | 57 | www.clearskysec.com |
|
| Details | Domain | 3 | www.epicturla.com |
|
| Details | Domain | 145 | www.us-cert.gov |
|
| Details | File | 1 | 旅行信息收集申请表.xlsm |
|
| Details | File | 1 | 生部指令.docx |
|
| Details | File | 2 | classes.pdf |
|
| Details | File | 1 | stlnstall.dll |
|
| Details | File | 4 | systemapp.dll |
|
| Details | File | 1 | 随机名.tmp |
|
| Details | File | 13 | rekeywiz.exe |
|
| Details | File | 3 | linkzip.dll |
|
| Details | File | 33 | duser.dll |
|
| Details | File | 20 | www.ep |
|
| Details | Threat Actor Identifier - APT-C | 44 | APT-C-00 |
|
| Details | Threat Actor Identifier - APT | 783 | APT28 |
|
| Details | Threat Actor Identifier - APT | 181 | APT33 |
|
| Details | Threat Actor Identifier - APT | 258 | APT34 |
|
| Details | Threat Actor Identifier - APT | 132 | APT32 |
|
| Details | Url | 1 | https://promon.co/strandhogg-2-0 |
|
| Details | Url | 1 | http://email.gov.in.maildrive.email |
|
| Details | Url | 1 | http://www.aue |
|
| Details | Url | 24 | https://ti.qianxin.com |
|
| Details | Url | 2 | https://securelist.com/wildpressure-targets-industrial-in-the-middle-east/96360 |
|
| Details | Url | 1 | https://ti.qianxin.com/blog/articles/who-is-the-next-silent-lamb-nuo-chong-lions-apt- |
|
| Details | Url | 3 | https://www.clearskysec.com/fox-kitten |
|
| Details | Url | 3 | https://www.epicturla.com/blog/the-lost-nazar |
|
| Details | Url | 3 | https://www.us-cert.gov/northkorea |
|
| Details | Url | 1 | https://ti.qianxin.com/blog/articles/coronavirus-analysis-of-global-outbreak-related- |