ioc[.]one - OSINT Cyber Threat Intelligence Database

Small Sieve

Show in Graph

Common Information

Type	Value
UUID	f06a5e7d-f3b9-49df-b37d-22b95017b1d6
Fingerprint	90dd6bdea84b7fbafd88f58d0ee21b0ce9e521affffc9f352dc1377424641a91
Analysis status	DONE
Considered CTI value	2
Text language
Published	Feb. 9, 2023, 3:50 p.m.
Added to db	Nov. 6, 2024, 11:05 a.m.
Last updated	Nov. 6, 2024, 11:06 a.m.
Headline	Small Sieve
Title	Small Sieve
Detected Hints/Tags/Attributes	57/2/26

Source URLs

	Redirection	Url
Details	Source	https://www.ncsc.gov.uk/static-assets/documents/malware-analysis-reports/small-sieve/NCSC-MAR-Small-Sieve.pdf

URL Provider

Details	Provider	Source level domain
Details	ncsc.gov.uk	www.ncsc.gov.uk

Attributes

Details	Type	#Events	Value
Details	Domain	145	api.telegram.org
Details	Domain	53	ncsc.gov.uk
Details	Email	22	ncscinfoleg@ncsc.gov.uk
Details	File	4	gram_app.exe
Details	File	6	index.exe
Details	File	3	%localappdata%\microsoftwindowsoutlookdataplus.txt
Details	File	3	microsoftwindowsoutlookdataplus.txt
Details	File	2126	cmd.exe
Details	File	3	%appdata%\outlookmicrosift\index.exe
Details	File	8	index.py
Details	md5	5	15fa3b32539d7453a9a85958b77d4c95
Details	md5	5	5763530f25ed0ec08fb26a30c04009f1
Details	sha1	4	11d594f3b3cf8525682f6214acb7b7782056d282
Details	sha1	4	2a6ddf89a8366a262b56a251b00aafaed5321992
Details	sha256	4	b75208393fa17c0bcbc1a07857686b8c0d7e0471d00a167a07fd0d52e1fc9054
Details	sha256	4	bf090cf7078414c9e157da7002ca727f06053b39fa4e377f9a0050f2af37d3a2
Details	IPv4	3	10.17.32.18
Details	MITRE ATT&CK Techniques	59	T1059.006
Details	MITRE ATT&CK Techniques	380	T1547.001
Details	MITRE ATT&CK Techniques	627	T1027
Details	MITRE ATT&CK Techniques	183	T1036.005
Details	MITRE ATT&CK Techniques	442	T1071.001
Details	MITRE ATT&CK Techniques	40	T1132.002
Details	MITRE ATT&CK Techniques	48	T1480
Details	Url	3	https://api.telegram.org/bot2003026094
Details	Windows Registry Key	3	HKCU\Software\Microsoft\Windows\CurrentVersion\Run\OutlookMicrosift