ioc[.]one - OSINT Cyber Threat Intelligence Database

BH_ASIA_2022

Show in Graph

Image Description

Common Information

Type	Value
UUID	f32a5119-62e6-4935-ad99-66a51ebf67ff
Fingerprint	5707629e716fc7a2b3334ccb7035018b6cdbc46e60b474ca9e5fcbd5f2c50a18
Analysis status	DONE
Considered CTI value	1
Text language
Published	April 22, 2022, 9:57 a.m.
Added to db	March 11, 2024, 7:12 p.m.
Last updated	Aug. 31, 2024, 5:46 a.m.
Headline	BH_ASIA_2022
Title	BH_ASIA_2022
Detected Hints/Tags/Attributes	59/3/18

Source URLs

	Redirection	Url
Details	Source	https://i.blackhat.com/Asia-22/Thursday-Materials/AS-22-Shabab-SideWinderUncoilsToStrike.pdf

URL Provider

Details	Provider	Source level domain
Details	blackhat.com	i.blackhat.com

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	2		fbr.pak-web.com
Details	Domain	2		paknavy.edu-cx.org
Details	Domain	3		www.d01fa.net
Details	Domain	2		www-geneva-pk.gov-mil.cn
Details	Domain	1		mofa.gov.pk
Details	Domain	1		edu.net
Details	File	13		rekeywiz.exe
Details	File	33		duser.dll
Details	File	1		%random%.tmp
Details	File	17		file.rtf
Details	Threat Actor Identifier by Tencent	27		T-APT-04
Details	Url	1		https://fbr.pak-web.com/14548/1/16870/2/0/0/1815655910/vuttl
Details	Url	1		https://fbr.pak-web.com/14548/1/16870/3/3/1/1815661340/vuttl
Details	Url	1		https://paknavy.edu-cx.org/2862/1/35022/3/1/1/1819783166/k9a
Details	Url	1		https://fbr.pak-web.com/14548/1/16870/3/3/0/1815661123/vuttl
Details	Url	2		http://www.d01fa.net/images/d817583e/16364/11542/f2976745/966029e
Details	Url	1		http://www-geneva-pk.gov-mil.cn/images/0ffebb6d/21684/1842/ac5ba158/rosto
Details	Url	1		http://mofa.gov.pk.cdn