ioc[.]one - OSINT Cyber Threat Intelligence Database

targeting Pakistan

Show in Graph

Image Description

Common Information

Type	Value
UUID	ca30bb48-a6e2-4b55-9d44-337022ead2dc
Fingerprint	ebc1b5e55b9b8d6fc5071a5609752b375390b05b4fccff1fb80ee5917e2707d5
Analysis status	DONE
Considered CTI value	1
Text language
Published	Oct. 10, 2023, 10:33 a.m.
Added to db	April 14, 2024, 3:37 a.m.
Last updated	Aug. 31, 2024, 6:31 a.m.
Headline	targeting Pakistan
Title	targeting Pakistan
Detected Hints/Tags/Attributes	56/3/15

Source URLs

	Redirection	Url
Details	Source	https://www.virusbulletin.com/uploads/pdf/conference/vb2023/slides/Slides-Possible-supply-chain-attack-targeting-South-Asian-government-delivers-Shadowpad.pdf

URL Provider

Details	Provider	Source level domain
Details	virusbulletin.com	www.virusbulletin.com

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	4		telerik.windows.data
Details	Domain	7		live.musicweb.xyz
Details	Domain	7		obo.videocenter.org
Details	File	68		mscoree.dll
Details	File	15		windows.dat
Details	File	3		validation.dll
Details	File	48		applaunch.exe
Details	File	96		rar.exe
Details	File	2		c:\windows\help\1019.rar
Details	File	25		log.dll
Details	File	7		iviewers.dll
Details	IPv4	3		10.2.101.110
Details	Threat Actor Identifier - APT	522		APT41
Details	Url	1		https://10.2.101.110:50000/vi/application/checkfor
Details	Url	2		https://10.2.101.110:50000/5be96b824c4ad5a