Threat Advisory
Common Information
| Type | Value |
|---|---|
| UUID | ec794ad4-1650-49a7-8a8d-f7fe5563686e |
| Fingerprint | 0ca3d5b27528e0726329dbc1f5150622387d039d0c2cadad3935464ac88475cd |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Jan. 11, 2024, 8:02 p.m. |
| Added to db | Feb. 7, 2024, 7:40 p.m. |
| Last updated | Aug. 31, 2024, 2:28 a.m. |
| Headline | Threat Advisory |
| Title | Threat Advisory |
| Detected Hints/Tags/Attributes | 96/3/152 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | sindicaturadetecate.gob.mx |
|
| Details | Domain | 1 | lsn.edu.dz |
|
| Details | Domain | 1 | brouweres.com |
|
| Details | Domain | 1 | anadesky.ovmv.net |
|
| Details | Domain | 1 | cxtensones.top |
|
| Details | Domain | 6 | startupbusiness24.net |
|
| Details | Domain | 3 | seohomee.com |
|
| Details | Domain | 3 | softradar.net |
|
| Details | Domain | 1 | investsystemus.net |
|
| Details | Domain | 1 | blocknowtech.net |
|
| Details | Domain | 3 | mytrailinvest.net |
|
| Details | Domain | 1 | realeinvestment.net |
|
| Details | Domain | 1 | cloudwebstart.net |
|
| Details | Domain | 3 | monitor-websystem.net |
|
| Details | Domain | 3 | karmafisker.com |
|
| Details | Domain | 3 | airbusco.net |
|
| Details | Domain | 3 | trailgroupl.net |
|
| Details | Domain | 3 | monitorsystem.net |
|
| Details | Domain | 3 | cloudworldst.net |
|
| Details | Domain | 1 | neobeelab.net |
|
| Details | Domain | 3 | stockinvestlab.net |
|
| Details | Domain | 3 | prettyanimals.net |
|
| Details | Domain | 1 | gift4animals.com |
|
| Details | Domain | 3 | ionoslaba.com |
|
| Details | Domain | 1 | buyadvisershop.net |
|
| Details | Domain | 1 | blockcentersys.net |
|
| Details | Domain | 3 | startuptechnologyw.net |
|
| Details | Domain | 3 | investmentrealtyhp.net |
|
| Details | Domain | 1 | mynewbee.net |
|
| Details | Domain | 1 | buzzybeet.net |
|
| Details | Domain | 3 | wellsystemte.net |
|
| Details | Domain | 3 | investmendvisor.net |
|
| Details | Domain | 3 | reelsysmoona.net |
|
| Details | Domain | 3 | startupbizaud.net |
|
| Details | Domain | 1 | building4business.net |
|
| Details | Domain | 3 | steamteamdev.net |
|
| Details | Domain | 3 | audsystemecll.net |
|
| Details | Domain | 3 | welausystem.net |
|
| Details | Domain | 3 | treeauwin.net |
|
| Details | Domain | 3 | clearsystemwo.net |
|
| Details | Domain | 1 | lindacolor.com |
|
| Details | Domain | 3 | withclier.com |
|
| Details | Domain | 3 | unougn.com |
|
| Details | Domain | 3 | bluenetworking.net |
|
| Details | Domain | 3 | getfnewsolutions.com |
|
| Details | Domain | 1 | conitreid.com |
|
| Details | Domain | 3 | allcompanycenter.com |
|
| Details | Domain | 1 | sandelias.com |
|
| Details | Domain | 3 | getfnewssolutions.com |
|
| Details | Domain | 3 | erihudeg.com |
|
| Details | Domain | 1 | reganter.com |
|
| Details | Domain | 1 | masterunis.net |
|
| Details | Domain | 3 | taskthebox.net |
|
| Details | Domain | 1 | settingfir.com |
|
| Details | Domain | 1 | magementfair.com |
|
| Details | Domain | 3 | businesforhome.com |
|
| Details | Domain | 1 | ruggioil.com |
|
| Details | Domain | 1 | gertefin.com |
|
| Details | Domain | 3 | gartenlofti.com |
|
| Details | Domain | 3 | garbagemoval.com |
|
| Details | Domain | 3 | constrtionfirst.com |
|
| Details | Domain | 3 | animalsfast.net |
|
| Details | Domain | 1 | schumacherbar.com |
|
| Details | Domain | 3 | maluisepaul.com |
|
| Details | Domain | 3 | masterunix.net |
|
| Details | Domain | 3 | wardeli.com |
|
| Details | Domain | 1 | nutiensel.com |
|
| Details | Domain | 3 | jessvisser.com |
|
| Details | Domain | 3 | caspercan.com |
|
| Details | Domain | 3 | kolinileas.com |
|
| Details | Domain | 3 | unitedfrom.com |
|
| Details | Domain | 3 | brendonline.com |
|
| Details | Domain | 3 | septcntr.com |
|
| Details | Domain | 3 | auuditoe.com |
|
| Details | Domain | 1 | conectmeto.net |
|
| Details | Domain | 66 | www.malwarebytes.com |
|
| Details | Domain | 435 | www.hivepro.com |
|
| Details | Domain | 604 | www.trendmicro.com |
|
| Details | File | 23 | searchprotocolhost.exe |
|
| Details | File | 1 | 6515179055030298.dat |
|
| Details | File | 1 | 8450027286577588.dat |
|
| Details | File | 1 | 15313287608559223.dat |
|
| Details | File | 1 | 9900618798908114.dat |
|
| Details | File | 5 | campaign.html |
|
| Details | md5 | 1 | 4deb812eeae3c499530e1bd4f0e108ba |
|
| Details | md5 | 1 | 5be9d3aa133d23c439e5181da7450323 |
|
| Details | md5 | 1 | de2cab21e6342cf20535b0734d5ca3c0 |
|
| Details | md5 | 1 | 222b1793938f507877ee194ba0acd86b |
|
| Details | md5 | 1 | 7d6a6233a8792ea216a529836c13e923 |
|
| Details | md5 | 1 | 22be88cf8f57d9412eaa40c541f08eb2 |
|
| Details | md5 | 1 | c28f33fee92fd7396fdb5792dea90365 |
|
| Details | md5 | 1 | 2430e3a9d5c97d0184f8af59abda4abb |
|
| Details | IPv4 | 1 | 188.34.192.184 |
|
| Details | IPv4 | 1 | 172.232.186.251 |
|
| Details | IPv4 | 1 | 57.128.83.129 |
|
| Details | IPv4 | 1 | 57.128.164.11 |
|
| Details | IPv4 | 1 | 57.128.108.132 |
|
| Details | IPv4 | 1 | 139.99.222.29 |
|
| Details | IPv4 | 1 | 172.232.164.77 |
|
| Details | IPv4 | 1 | 54.37.79.82 |
|
| Details | IPv4 | 1 | 172.232.162.198 |
|
| Details | IPv4 | 1 | 57.128.109.221 |
|
| Details | IPv4 | 2 | 15.235.202.109 |
|
| Details | IPv4 | 1 | 15.235.44.231 |
|
| Details | IPv4 | 1 | 15.235.45.155 |
|
| Details | IPv4 | 2 | 15.235.47.206 |
|
| Details | IPv4 | 2 | 15.235.47.80 |
|
| Details | IPv4 | 4 | 154.221.30.136 |
|
| Details | IPv4 | 4 | 154.61.75.156 |
|
| Details | IPv4 | 4 | 154.92.19.139 |
|
| Details | IPv4 | 1 | 188.26.127.4 |
|
| Details | IPv4 | 2 | 210.243.8.247 |
|
| Details | IPv4 | 3 | 51.195.232.97 |
|
| Details | IPv4 | 1 | 51.68.147.114 |
|
| Details | IPv4 | 1 | 51.79.143.215 |
|
| Details | IPv4 | 1 | 64.176.5.228 |
|
| Details | IPv4 | 3 | 137.220.55.190 |
|
| Details | IPv4 | 1 | 65.20.78.68 |
|
| Details | IPv4 | 3 | 139.180.216.25 |
|
| Details | IPv4 | 3 | 70.34.209.101 |
|
| Details | IPv4 | 3 | 172.233.156.100 |
|
| Details | IPv4 | 1 | 64.176.67.194 |
|
| Details | IPv4 | 3 | 158.247.253.155 |
|
| Details | MITRE ATT&CK Techniques | 1006 | T1082 |
|
| Details | MITRE ATT&CK Techniques | 433 | T1057 |
|
| Details | MITRE ATT&CK Techniques | 141 | T1219 |
|
| Details | MITRE ATT&CK Techniques | 66 | T1583 |
|
| Details | MITRE ATT&CK Techniques | 22 | T1583.008 |
|
| Details | MITRE ATT&CK Techniques | 409 | T1566 |
|
| Details | MITRE ATT&CK Techniques | 183 | T1566.002 |
|
| Details | MITRE ATT&CK Techniques | 365 | T1204.002 |
|
| Details | MITRE ATT&CK Techniques | 420 | T1204 |
|
| Details | MITRE ATT&CK Techniques | 348 | T1036 |
|
| Details | MITRE ATT&CK Techniques | 93 | T1059.007 |
|
| Details | MITRE ATT&CK Techniques | 695 | T1059 |
|
| Details | MITRE ATT&CK Techniques | 119 | T1218.011 |
|
| Details | MITRE ATT&CK Techniques | 121 | T1218 |
|
| Details | MITRE ATT&CK Techniques | 39 | T1218.007 |
|
| Details | MITRE ATT&CK Techniques | 422 | T1041 |
|
| Details | MITRE ATT&CK Techniques | 504 | T1140 |
|
| Details | MITRE ATT&CK Techniques | 157 | T1560 |
|
| Details | MITRE ATT&CK Techniques | 149 | T1102 |
|
| Details | MITRE ATT&CK Techniques | 164 | T1574 |
|
| Details | Url | 1 | https://sindicaturadetecate.gob.mx/pe/?idbhjcmofpeizdqjrcwncdq |
|
| Details | Url | 1 | https://lsn.edu.dz/pqis/?awdzzbatbsyv |
|
| Details | Url | 1 | https://brouweres.com:443/vvs49/0.6515179055030298.dat |
|
| Details | Url | 1 | https://brouweres.com:443/vvs49/0.8450027286577588.dat |
|
| Details | Url | 1 | https://brouweres.com:443/vvs49/0.15313287608559223.dat |
|
| Details | Url | 1 | https://brouweres.com:443/vvs49/0.9900618798908114.dat |
|
| Details | Url | 1 | https://www.malwarebytes.com/blog/threat-intelligence/2023/12/pikabot-distributed-via- |
|
| Details | Url | 1 | https://www.hivepro.com/threat-advisory/pikabot-a-stealthy-backdoor-with-ingenious-evasion- |
|
| Details | Url | 1 | https://www.trendmicro.com/en_us/research/24/a/a-look-into-pikabot-spam-wave- |