UNKNOWN
Common Information
| Type | Value |
|---|---|
| UUID | f394ff3b-a9e0-49b4-9945-174820f3da39 |
| Fingerprint | db8df5a62677d44e0d2c6f5555c4beb5b10a850141f13687bc7359cb70b1674e |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Jan. 20, 2020, 8:45 p.m. |
| Added to db | April 5, 2024, 3:49 p.m. |
| Last updated | Aug. 31, 2024, 6:24 a.m. |
| Headline | UNKNOWN |
| Title | UNKNOWN |
| Detected Hints/Tags/Attributes | 113/3/131 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 375 | cve-2017-11882 |
|
| Details | CVE | 34 | cve-2019-1458 |
|
| Details | CVE | 22 | cve-2016-7255 |
|
| Details | CVE | 16 | cve-2019-0797 |
|
| Details | CVE | 12 | cve-2019-5786 |
|
| Details | Domain | 4127 | github.com |
|
| Details | Domain | 58 | ti.qianxin.com |
|
| Details | Domain | 360 | attack.mitre.org |
|
| Details | Domain | 25 | www.nsa.gov |
|
| Details | Domain | 15 | www.misp-project.org |
|
| Details | Domain | 112 | docs.google.com |
|
| Details | Domain | 18 | www.ft.com |
|
| Details | Domain | 8 | www.kryptoslogic.com |
|
| Details | Domain | 251 | www.bleepingcomputer.com |
|
| Details | Domain | 403 | securelist.com |
|
| Details | Domain | 1373 | twitter.com |
|
| Details | Domain | 262 | www.welivesecurity.com |
|
| Details | Domain | 103 | www.mcafee.com |
|
| Details | Domain | 141 | research.checkpoint.com |
|
| Details | Domain | 36 | googleprojectzero.blogspot.com |
|
| Details | Domain | 3 | www.manrs.org |
|
| Details | Domain | 175 | www.zdnet.com |
|
| Details | Domain | 20 | blogs.360.cn |
|
| Details | Domain | 43 | www.cyberscoop.com |
|
| Details | Domain | 45 | www.bankinfosecurity.com |
|
| Details | Domain | 261 | blog.talosintelligence.com |
|
| Details | Domain | 184 | www.fireeye.com |
|
| Details | Domain | 172 | www.crowdstrike.com |
|
| Details | Domain | 78 | securityaffairs.co |
|
| Details | Domain | 177 | blog.trendmicro.com |
|
| Details | Domain | 13 | www.contextis.com |
|
| Details | Domain | 216 | www.symantec.com |
|
| Details | Domain | 10 | www.riskiq.com |
|
| Details | Domain | 3 | securitywithoutborders.org |
|
| Details | Domain | 67 | citizenlab.ca |
|
| Details | Domain | 123 | www.reuters.com |
|
| Details | Domain | 208 | mp.weixin.qq.com |
|
| Details | Domain | 124 | www.nytimes.com |
|
| Details | Domain | 37 | blog.alyac.co.kr |
|
| Details | Domain | 546 | www.recordedfuture.com |
|
| Details | Domain | 98 | www.ncsc.gov.uk |
|
| Details | Domain | 89 | arstechnica.com |
|
| Details | Domain | 434 | medium.com |
|
| Details | Domain | 8 | baesystemsai.blogspot.com |
|
| Details | Domain | 114 | dragos.com |
|
| Details | Domain | 98 | www.secureworks.com |
|
| Details | File | 1 | technical-cyber-threat-framework.pdf |
|
| Details | File | 5 | galaxy.html |
|
| Details | File | 1 | deep-dive-into-ios-exploit.html |
|
| Details | File | 2 | apt-c-34_golden_falcon.html |
|
| Details | File | 1 | stalker.html |
|
| Details | File | 1 | record-manipulation-at-scale.html |
|
| Details | File | 1 | campaign-targets-middle-east.html |
|
| Details | File | 5 | seaturtle.html |
|
| Details | File | 1 | hijacking-ncsc-report.html |
|
| Details | File | 1 | cyber-attack.html |
|
| Details | File | 1 | foiled-2-attack.html |
|
| Details | File | 2 | 951m.html |
|
| Details | File | 1 | dutch-mole-stuxnet-attack.html |
|
| Details | Github username | 5 | reddrip7 |
|
| Details | Threat Actor Identifier - APT | 665 | APT29 |
|
| Details | Threat Actor Identifier - APT | 783 | APT28 |
|
| Details | Threat Actor Identifier - APT | 181 | APT33 |
|
| Details | Threat Actor Identifier - APT | 258 | APT34 |
|
| Details | Threat Actor Identifier - FIN | 377 | FIN7 |
|
| Details | Url | 1 | https://github.com/reddrip7/apt_digital_weapon |
|
| Details | Url | 24 | https://ti.qianxin.com |
|
| Details | Url | 3 | https://ti.qianxin.com/blog |
|
| Details | Url | 57 | https://attack.mitre.org |
|
| Details | Url | 2 | https://www.nsa.gov/portals/70/documents/what-we- |
|
| Details | Url | 3 | https://www.misp-project.org/galaxy.html |
|
| Details | Url | 2 | https://docs.google.com/spreadsheets/u/0/d/1h9_xaxqhpwaa4 |
|
| Details | Url | 13 | https://attack.mitre.org/groups |
|
| Details | Url | 1 | https://www.ft.com/content/4da1117e-756c-11e9-be7d- |
|
| Details | Url | 1 | https://www.kryptoslogic.com/blog/2019/11/bluekeep-cve- |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/firefox-0- |
|
| Details | Url | 1 | https://securelist.com/chrome-0-day-exploit-cve-2019- |
|
| Details | Url | 1 | https://securelist.com/windows-0-day-exploit-cve-2019- |
|
| Details | Url | 1 | https://twitter.com/craiu/status/1176525773869649921 |
|
| Details | Url | 1 | https://www.welivesecurity.com/2019/07/11/buhtrap-zero- |
|
| Details | Url | 1 | https://securelist.com/cve-2019-0797-zero-day- |
|
| Details | Url | 1 | https://www.mcafee.com/blogs/other-blogs/mcafee- |
|
| Details | Url | 1 | https://securelist.com/new-win32k-zero-day-cve-2019- |
|
| Details | Url | 1 | https://research.checkpoint.com/2019/extracting-code- |
|
| Details | Url | 1 | https://googleprojectzero.blogspot.com/2019/08/a-very- |
|
| Details | Url | 1 | https://www.manrs.org/2019/05/public-dns-in-taiwan-the- |
|
| Details | Url | 1 | https://www.zdnet.com/article/mysterious-hacker-has-been- |
|
| Details | Url | 1 | http://blogs.360.cn/post/apt-c-34_golden_falcon.html#toc |
|
| Details | Url | 1 | https://www.cyberscoop.com/uzbekistan-sandcat-kaspersky |
|
| Details | Url | 1 | https://www.bankinfosecurity.com/cryptocurrency-heist- |
|
| Details | Url | 1 | https://www.bankinfosecurity.com/who-hijacked-googles- |
|
| Details | Url | 1 | https://blog.talosintelligence.com/2018/11/persian- |
|
| Details | Url | 1 | https://www.welivesecurity.com/2018/01/09/turlas- |
|
| Details | Url | 1 | https://www.zdnet.com/article/google-finds-android-zero- |
|
| Details | Url | 20 | https://www.fireeye.com/blog/threat- |
|
| Details | Url | 1 | https://www.crowdstrike.com/blog/widespread-dns- |
|
| Details | Url | 1 | https://blog.talosintelligence.com/2018/11/dnspionage- |
|
| Details | Url | 4 | https://blog.talosintelligence.com/2019/04/seaturtle.html |
|
| Details | Url | 1 | https://securityaffairs.co/wordpress/88366/hacking/dns- |
|
| Details | Url | 19 | https://blog.trendmicro.com/trendlabs-security- |
|
| Details | Url | 1 | https://www.welivesecurity.com/2019/03/11/gaming- |
|
| Details | Url | 6 | https://securelist.com/operation-shadowhammer/89992 |
|
| Details | Url | 2 | https://www.contextis.com/en/blog/avivore |
|
| Details | Url | 2 | https://www.symantec.com/blogs/threat- |
|
| Details | Url | 1 | https://www.welivesecurity.com/2019/05/14/plead-malware- |
|
| Details | Url | 1 | https://www.riskiq.com/blog/labs/cloudcms-picreel- |
|
| Details | Url | 1 | https://securelist.com/new-finspy-ios-and-android- |
|
| Details | Url | 1 | https://securitywithoutborders.org/blog/2019/03/29/exodus |
|
| Details | Url | 1 | https://citizenlab.ca/2019/09/poison-carp-tibetan-groups- |
|
| Details | Url | 1 | https://www.reuters.com/investigates/special-report/usa- |
|
| Details | Url | 1 | https://mp.weixin.qq.com/s/qfciedr_j1ntmmpdywe8ka |
|
| Details | Url | 1 | https://mp.weixin.qq.com/s/tzxcynzr4zzk7djpidy6-a |
|
| Details | Url | 1 | https://www.nytimes.com/2019/08/28/us/politics/us-iran- |
|
| Details | Url | 1 | https://securityaffairs.co/wordpress/95169/apt/iran- |
|
| Details | Url | 1 | https://mp.weixin.qq.com/s/qoj4yhczdz1vwu7s9bngow |
|
| Details | Url | 1 | https://mp.weixin.qq.com/s/k5bkhwxbakbidd78h8tqcg |
|
| Details | Url | 1 | https://www.reuters.com/article/us-usa-cyber-yandex- |
|
| Details | Url | 1 | https://blog.alyac.co.kr/2453 |
|
| Details | Url | 1 | https://www.recordedfuture.com/bluealpha-iranian-apts |
|
| Details | Url | 1 | https://www.ncsc.gov.uk/news/turla-group-exploits-iran- |
|
| Details | Url | 1 | https://www.welivesecurity.com/2019/09/24/no-summer- |
|
| Details | Url | 1 | https://www.welivesecurity.com/2019/10/17/operation- |
|
| Details | Url | 2 | https://securelist.com/compfun-successor-reductor/93633 |
|
| Details | Url | 5 | https://arstechnica.com/information- |
|
| Details | Url | 1 | https://www.welivesecurity.com/2019/11/21/deprimon- |
|
| Details | Url | 252 | https://medium.com |
|
| Details | Url | 1 | https://baesystemsai.blogspot.com/2016/04/two-bytes-to- |
|
| Details | Url | 1 | https://securelist.com/fin7-5-the-infamous-cybercrime- |
|
| Details | Url | 1 | https://securityaffairs.co/wordpress/90698/cyber-warfare- |
|
| Details | Url | 4 | https://dragos.com/resource/hexane |
|
| Details | Url | 1 | https://www.secureworks.com/blog/lyceum-takes-center- |