Macintosh HD:Users:Shared:dd:4work:Bitdefender-PR-Whitepaper-BitterAPT-creat4571-en_EN:Bitdefender-PR-Whitepaper-BitterAPT-creat4571-en_EN.indd
Show in Graph
Image Description
Common Information
Type Value
UUID f2f61b80-2b7b-4474-aaeb-219b45abd7b8
Fingerprint 8e1f2e10b271a0fba3a49af4b3bf3f98508f6e66477b3abe8ad1f125b6c7f533
Analysis status DONE
Considered CTI value 2
Text language
Published June 16, 2020, 9:55 p.m.
Added to db March 12, 2024, 6:24 p.m.
Last updated Aug. 31, 2024, 8:12 a.m.
Headline Macintosh HD:Users:Shared:dd:4work:Bitdefender-PR-Whitepaper-BitterAPT-creat4571-en_EN:Bitdefender-PR-Whitepaper-BitterAPT-creat4571-en_EN.indd
Title Macintosh HD:Users:Shared:dd:4work:Bitdefender-PR-Whitepaper-BitterAPT-creat4571-en_EN:Bitdefender-PR-Whitepaper-BitterAPT-creat4571-en_EN.indd
Detected Hints/Tags/Attributes 121/4/119
Source URLs
Redirection Url
Details Source https://www.bitdefender.com/files/News/CaseStudies/study/352/Bitdefender-PR-Whitepaper-BitterAPT-creat4571-en-EN-GenericUse.pdf
URL Provider
Details Provider Source level domain
Details bitdefender.com www.bitdefender.com
Attributes
Details Type #Events CTI Value
Details Domain 128 
www.bitdefender.com
Details Domain 188 
com.android
Details Domain 42 
com.google
Details Domain 7 
com.youtube
Details Domain 1 
techfront.com.cn
Details Domain 2 
gandharaart.org
Details Domain 1 
spiceworld.rf.gd
Details Domain 74 
play.google.com
Details Domain 1 
thew64binautoclean.org
Details Domain 1 
creativefox.w64binautoclean.org
Details Domain 1 
zerocros.w64binautoclean.org
Details Domain 1 
w64binautoclean.org
Details Domain 1 
blitzchatlog.ddns.net
Details Domain 1 
playupdateapp.serveblog.net
Details Domain 1 
phoneshieldnet.com
Details Domain 1 
mypicks4u.com
Details Domain 330 
facebook.com
Details Domain 1 
chaatchitt.com
Details Domain 396 
protonmail.com
Details Domain 1 
chat-9b74d.firebaseio.com
Details Domain 1 
flashnewsservice.org
Details Domain 1 
eu.blitz.conversations.phone
Details Domain 23 
www.forcepoint.com
Details Domain 20 
blogs.360.cn
Details Domain 1 
meltx0r.github.io
Details Domain 1373 
twitter.com
Details Domain 622 
en.wikipedia.org
Details Domain 675 
www.linkedin.com
Details Email 1 
support@chaatchitt.com
Details File 1 
蓝光手机防毒高级版本.apk
Details File 1 
trueislam.apk
Details File 1 
voicemail.apk
Details File 1 
privatechat.apk
Details File 1 
imageviewer360.apk
Details File 1 
imageview.apk
Details File 2 
google.settings
Details File 1 
saimaeidpics.apk
Details File 1 
whatsappactivation.apk
Details File 1 
premium.php
Details File 1 
premium.apk
Details File 1 
kashmir_news.apk
Details File 1 
bitterratkashmir_news.apk
Details File 1 
image_viewer.apk
Details File 5 
privacy.html
Details File 9 
com.pict
Details File 1 
silent.php
Details File 28 
home.php
Details File 1 
gbuilder.php
Details File 1 
health.php
Details File 1 
chitchat.php
Details File 1 
displaylink.php
Details File 1 
displaylinkfacebook.php
Details File 1 
true.php
Details File 1 
official.apk
Details File 1 
mobile-malware-and-apt-espionage-prolific-pervasive-and-cross-platform.html
Details File 3 
analysis_of_apt_c_08.html
Details File 1 
bitter-apt-not-so-sweet.html
Details File 1 
ter-apt-phishing-campaign-targeting-people-s-republic-of-china-government-agencies.html
Details md5 1 
448b8af1a6757aa5b827b382777ab3de
Details md5 1 
8aff67a6b4f3e398b912f8405beb5319
Details md5 1 
42c2d7aeb8a98df09c624a9605849927
Details md5 1 
6d3dcb9ad491628488feb9de6e092144
Details md5 1 
ea3b4cde5ef86acfe2971345a2d57cc0
Details md5 1 
cbb32c303d06aa4d2dba713936e70f5c
Details md5 1 
ee85b2657ca5a1798b645d61e8f5080c
Details md5 1 
692ff450aec14aca235cd92e6c52a960
Details md5 1 
de931e107d293303dd1ee7e4776d4ec7
Details md5 1 
d7c21a239999e055ef9a08a0e6207552
Details md5 1 
9edf73b04609e7c3dada1f1807c11a33
Details md5 1 
1d2e23effc225880cadb7ee56dff25cf
Details md5 1 
3f1e5cb139b50e6cfe2efa583ded83ed
Details md5 1 
39ff842a2c758bf336af852186c1404a
Details md5 1 
0e1db2219402ec254b150a4f6d8b0b02
Details md5 1 
95c1925c7db67f2686fbbdd333844217
Details md5 1 
68f0fb35fa7ad061b621a6b4c48155b2
Details md5 1 
f92ed513fb83e7418654c4ee2a89bed5
Details md5 1 
4987f36c8c90ef2075e41f8a2964754f
Details md5 1 
b0d55ccc06573230f2f74b9e85b5a6c9
Details md5 1 
d20c6731e278a1d3202b4caa0902afa8
Details md5 1 
b1c2124f785d75220be3382aeb091835
Details md5 1 
f40b2c3faa6a25a3a34e1d187a8d9de5
Details md5 1 
8003dca1ece8b82419f916e81b1ed368
Details md5 1 
c789eb63e852eed12758a3d53b5f51c7
Details md5 1 
7ac0421755ed01fb2203dc85fc19374a
Details md5 1 
ff281c84cf10cc8fb40dab1f261523df
Details sha1 1 
c484368c8900627dcc549f5e494a9bf9ec0b35e0
Details sha1 1 
0f1ea13d9a1c1cf6c35a610bb83c92a81f818a8b
Details sha1 1 
04bd724eddb08c5cd3a37151899bbd1f78f44582
Details sha1 1 
0d1c4b9f0bc704169ea5de6c946deb79bd66529d
Details sha1 1 
af094b0538baafcc7e8c1027853931d57e26c8c7
Details IPv4 1 
185.27.134.139
Details IPv4 1 
23.83.133.67
Details Threat Actor Identifier - APT-C 22 
APT-C-08
Details Url 1 
http://techfront.com.cn/js/gbuilder.
Details Url 1 
http://spiceworld.rf.gd/premium.php
Details Url 1 
https://play.google.com/store/apps/details?id=com.clocknews.update
Details Url 1 
https://creativefox.w64binautoclean.org
Details Url 1 
http://zerocros.w64binautoclean.org/privacy.html
Details Url 1 
https://w64binautoclean.org/calculatorslide/calculatorsilent
Details Url 1 
https://w64binautoclean.org/alarmclock/privacy.html
Details Url 1 
https://w64binautoclean.org/creativefox/homophonic/privacy.html
Details Url 1 
http://blitzchatlog.ddns.net/hide/silent.php
Details Url 1 
http://playupdateapp.serveblog.net/youtube/home.php
Details Url 1 
http://techfront.com.cn/js/gbuilder.php
Details Url 1 
https://phoneshieldnet.com/phoneshieldapp/health.php
Details Url 1 
https://mypicks4u.com/chitchatbox/chitchat.php
Details Url 1 
https://flashnewsservice.org/cloudvault
Details Url 1 
https://threatvector.cylance.com/en_us/home/mobile-malware-and-apt-espionage-prolific-pervasive-and-cross-platform.html
Details Url 1 
https://gulfnews.com/business/etisalat-blackberry-services-no-longer-available-from-march-10-in-uae-1.1582117767276
Details Url 2 
https://www.anomali.com/blog/suspected-bitter-apt-continues-targeting-government-of-china-and-chinese-organizations
Details Url 1 
https://www.forcepoint.com/blog/x-labs/bitter-targeted-attack-against-pakistan
Details Url 1 
https://blogs.360.cn/post/analysis_of_apt_c_08.html
Details Url 1 
https://meltx0r.github.io/tech/2019/09/06/bitter-apt-not-so-sweet.html
Details Url 1 
https://twitter.com/h4ckak/status/1224265173764100098
Details Url 1 
https://en.wikipedia.org/wiki/elections_in_jammu_and_kashmir
Details Url 1 
https://www.linkedin.com/company/%e5%8c%97%e4%ba%ac%e5%8c%97%e5%a4%a7%e5%8d%83%e6%96%b9%e7%a7%91%
Details Url 3 
https://unit42.paloaltonetworks.com/multiple-artradownloader-variants-used-by-bitter-to-target-pakistan
Details Url 1 
https://en.wikipedia.org/wiki/salah_times
Details Url 1 
https://www.globenewswire.com/news-release/2019/08/08/1899716/0/en/anomali-threat-research-team-discovers-bit-