Threat Advisory
Common Information
| Type | Value |
|---|---|
| UUID | d9ab2463-c04a-4b31-8f70-1cb28b515f95 |
| Fingerprint | 5110fd95912e5307694be6e52108e4d29a369d981ca5258414616db5be13279b |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Aug. 18, 2023, 6:30 p.m. |
| Added to db | Feb. 7, 2024, 7:22 p.m. |
| Last updated | Aug. 31, 2024, 2:03 a.m. |
| Headline | Threat Advisory |
| Title | Threat Advisory |
| Detected Hints/Tags/Attributes | 75/2/92 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 2 | bapp.digitalpulsedata.com |
|
| Details | Domain | 2 | skilledobject.com |
|
| Details | Domain | 2 | browseractivity.com |
|
| Details | Domain | 2 | enchantedreign.com |
|
| Details | Domain | 2 | activitycache.com |
|
| Details | Domain | 2 | activityinput.com |
|
| Details | Domain | 2 | opticalupdater.com |
|
| Details | Domain | 2 | connectioncache.com |
|
| Details | Domain | 2 | analyzerstate.com |
|
| Details | Domain | 2 | essencecuration.com |
|
| Details | Domain | 2 | microrotator.com |
|
| Details | Domain | 2 | articlesagile.com |
|
| Details | Domain | 2 | progresshandler.com |
|
| Details | Domain | 2 | originalrotator.com |
|
| Details | Domain | 2 | productiveunit.com |
|
| Details | Domain | 2 | api.toolenviroment.com |
|
| Details | Domain | 2 | api.inetfield.com |
|
| Details | Domain | 2 | api.operativeeng.com |
|
| Details | Domain | 2 | api.launchertasks.com |
|
| Details | Domain | 2 | api.launchelemnt.com |
|
| Details | Domain | 2 | api.validexplorer.com |
|
| Details | Domain | 2 | api.majorsprint.com |
|
| Details | Domain | 2 | api.essentialenumerator.com |
|
| Details | Domain | 2 | api.transactioneng.com |
|
| Details | Domain | 2 | api.macreationsapp.com |
|
| Details | Domain | 4 | api.commondevice.com |
|
| Details | Domain | 2 | api.compellingagent.com |
|
| Details | Domain | 3 | api.lookupindex.com |
|
| Details | Domain | 2 | api.practicalsync.com |
|
| Details | Domain | 2 | api.accessiblelist.com |
|
| Details | Domain | 2 | api.functionconfig.com |
|
| Details | Domain | 2 | vpnservices.live |
|
| Details | Domain | 2 | upgrader.live |
|
| Details | Domain | 2 | bapp.pictureworld.co |
|
| Details | Domain | 19 | cybersecurity.att.com |
|
| Details | Domain | 435 | www.hivepro.com |
|
| Details | File | 2 | m.opt |
|
| Details | File | 2 | bapp.pict |
|
| Details | MITRE ATT&CK Techniques | 183 | T1189 |
|
| Details | MITRE ATT&CK Techniques | 122 | T1543 |
|
| Details | MITRE ATT&CK Techniques | 10 | T1543.001 |
|
| Details | MITRE ATT&CK Techniques | 504 | T1140 |
|
| Details | MITRE ATT&CK Techniques | 238 | T1497 |
|
| Details | MITRE ATT&CK Techniques | 97 | T1497.001 |
|
| Details | MITRE ATT&CK Techniques | 265 | T1222 |
|
| Details | MITRE ATT&CK Techniques | 35 | T1222.002 |
|
| Details | MITRE ATT&CK Techniques | 56 | T1553 |
|
| Details | MITRE ATT&CK Techniques | 10 | T1553.001 |
|
| Details | MITRE ATT&CK Techniques | 235 | T1562 |
|
| Details | MITRE ATT&CK Techniques | 298 | T1562.001 |
|
| Details | MITRE ATT&CK Techniques | 1006 | T1082 |
|
| Details | MITRE ATT&CK Techniques | 152 | T1090 |
|
| Details | MITRE ATT&CK Techniques | 115 | T1571 |
|
| Details | MITRE ATT&CK Techniques | 107 | T1496 |
|
| Details | MITRE ATT&CK Techniques | 207 | T1547 |
|
| Details | MITRE ATT&CK Techniques | 380 | T1547.001 |
|
| Details | MITRE ATT&CK Techniques | 480 | T1053 |
|
| Details | MITRE ATT&CK Techniques | 275 | T1053.005 |
|
| Details | Url | 2 | http://m.skilledobject.com/a/rep |
|
| Details | Url | 2 | http://m.browseractivity.com/a/rep |
|
| Details | Url | 2 | http://m.enchantedreign.com/a/rep |
|
| Details | Url | 2 | http://m.activitycache.com/a/rep |
|
| Details | Url | 2 | http://m.activityinput.com/a/rep |
|
| Details | Url | 2 | http://m.opticalupdater.com/a/rep |
|
| Details | Url | 2 | http://m.connectioncache.com/a/rep |
|
| Details | Url | 2 | http://m.analyzerstate.com/a/rep |
|
| Details | Url | 2 | http://m.essencecuration.com/a/rep |
|
| Details | Url | 2 | http://m.microrotator.com/a/rep |
|
| Details | Url | 2 | http://m.articlesagile.com/a/rep |
|
| Details | Url | 2 | http://m.progresshandler.com/a/rep |
|
| Details | Url | 2 | http://m.originalrotator.com/a/rep |
|
| Details | Url | 2 | http://m.productiveunit.com/a/rep |
|
| Details | Url | 2 | http://api.toolenviroment.com/l |
|
| Details | Url | 2 | http://api.inetfield.com/l |
|
| Details | Url | 2 | http://api.operativeeng.com/l |
|
| Details | Url | 2 | http://api.launchertasks.com/l |
|
| Details | Url | 2 | http://api.launchelemnt.com/l |
|
| Details | Url | 2 | http://api.validexplorer.com/l |
|
| Details | Url | 2 | http://api.majorsprint.com/l |
|
| Details | Url | 2 | http://api.essentialenumerator.com/l |
|
| Details | Url | 2 | http://api.transactioneng.com/l |
|
| Details | Url | 2 | http://api.macreationsapp.com/l |
|
| Details | Url | 2 | http://api.commondevice.com/l |
|
| Details | Url | 2 | http://api.compellingagent.com/l |
|
| Details | Url | 2 | http://api.lookupindex.com/l |
|
| Details | Url | 2 | http://api.practicalsync.com/l |
|
| Details | Url | 2 | http://api.accessiblelist.com/l |
|
| Details | Url | 2 | http://api.functionconfig.com/l |
|
| Details | Url | 2 | https://vpnservices.live |
|
| Details | Url | 2 | http://bapp.pictureworld.co |
|
| Details | Url | 1 | https://cybersecurity.att.com/blogs/labs-research/mac-systems-turned-into- |
|
| Details | Url | 1 | https://cybersecurity.att.com/blogs/labs-research/proxynation-the-dark-nexus- |