ioc[.]one - OSINT Cyber Threat Intelligence Database

PowerPoint Presentation

Show in Graph

Common Information

Type	Value
UUID	cc3d0714-f958-4450-b17e-5d4ebf1bc4a9
Fingerprint	93b190608c9ed69c0c1a5146378b6576c217a001a367b3fe5fcbc546617400ac
Analysis status	DONE
Considered CTI value	2
Text language
Published	Jan. 25, 2024, 6:43 a.m.
Added to db	March 12, 2024, 8:15 p.m.
Last updated	Aug. 31, 2024, 5:37 a.m.
Headline	PowerPoint Presentation
Title	PowerPoint Presentation
Detected Hints/Tags/Attributes	53/2/52

Source URLs

	Redirection	Url
Details	Source	https://jsac.jpcert.or.jp/archive/2024/pdf/JSAC2024_2_8_Breitenbacher_en.pdf

URL Provider

Details	Provider	Source level domain
Details	jpcert.or.jp	jsac.jpcert.or.jp

Attributes

Details	Type	#Events	Value
Details	Domain	114	eset.com
Details	Domain	1	tw8sl.com
Details	Domain	23	hopto.org
Details	Domain	1	vtfraznzdcns.myvnc.com
Details	Domain	1	okzhfafcyumv.foeake.org
Details	Domain	1	gjeyxinbutely.torefrog.com
Details	Domain	1	hopekxpjyqloj.torefrog.com
Details	Domain	1	kcxtdemxszlb.torefrog.com
Details	Domain	1	lrsjvqxvzqua.torefrog.com
Details	Domain	1	ogxzarazhzgu.torefrog.com
Details	Domain	1	orufdqjuirceapb.torefrog.com
Details	Domain	1	smfyuxgkeqiwgqw.torefrog.com
Details	Email	1	dominik.breitenbacher@eset.com
Details	File	1	diskmgmt.config
Details	File	1	browsersettingsync.xml
Details	File	1	bluetoothdesktophandlers.xml
Details	File	1	launchwinapp.dat
Details	File	1	custom.dat
Details	File	18	perfmon.exe
Details	File	51	wermgr.exe
Details	File	9	powercfg.exe
Details	File	1	c:\windows\system32\diskmgmt.config
Details	File	1	c:\windows\system32\musnotification.xml
Details	File	1	c:\windows\system32\netmgmtif.xml
Details	File	1	c:\windows\system32\browsersettingsync.xml
Details	File	1	c:\windows\system32\bluetoothdesktophandlers.xml
Details	File	1	c:\windows\system32\ksetup.dat
Details	File	1	c:\windows\system32\launchwinapp.dat
Details	md5	1	CCA8EB22C9E23C5D0577FC1F03060A5E
Details	md5	1	3D75B9B060499764C13527149E89D8DC
Details	md5	1	CF05E89B7EAF28FE0DBF3B771B6C07B7
Details	md5	1	9BB2D76EDA1355D875D1D53DEEAA85B9
Details	md5	1	AC636E53FA3EC973F0E9535C8358C3E9
Details	md5	1	AC2BC61134888753316C1AC63DE465FE
Details	md5	1	50515EF4F20DAA90B575DFFEAB4A97C0
Details	md5	1	B5F39B21F0CC65CB1E3C75C6BFB7AB25
Details	md5	1	1AA52A58C2C7B8E0079FF255D7294E70
Details	md5	1	3B27D4EEFBC6137C23BD612DC7C4A817
Details	md5	1	9AA5BB92E9D1CD212EFB0A5E9149B7E5
Details	md5	1	3C7660B04EE979FDC29CD7BBFDD05F23
Details	md5	1	12E2FC6C22B38788D8C1CC2768BD2C76
Details	md5	1	2D3D5C19A771A3606019C8ED1CD47FB5
Details	sha1	1	41aca6fcf8df6599764da638b2bafdfd5e3ead8b
Details	sha1	1	512f3c8953ac079b57d1e13f3b8e97f99a054ce9
Details	sha1	1	85e831eac0ad5a308394beb1cb7ce702c754fdb6
Details	sha1	1	d96b05e516e9bb3e0ad8702d162440139e33d972
Details	IPv4	1	5.180.44.139
Details	IPv4	1	202.182.118.157
Details	IPv4	2	207.148.97.235
Details	Threat Actor Identifier - APT	278	APT10
Details	Windows Registry Key	1	HKLM\Software\Microsoft\SQMClient\MachineId
Details	Windows Registry Key	3	HKLM\Software\License