Hamas Application Infrastructure Reveals Possible Overlap With TAG-63 and Iranian Threat Activity
Common Information
| Type | Value |
|---|---|
| UUID | f83329b1-3f26-4c8e-bd18-1843790ef05e |
| Fingerprint | 40af081f82187c5ac7ef2cec48ad0d053226aa89cba4266154510e93b9e97e04 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Oct. 23, 2023, 3:47 p.m. |
| Added to db | March 10, 2024, 1:18 a.m. |
| Last updated | Aug. 31, 2024, 3:24 a.m. |
| Headline | Hamas Application Infrastructure Reveals Possible Overlap With TAG-63 and Iranian Threat Activity |
| Title | Hamas Application Infrastructure Reveals Possible Overlap With TAG-63 and Iranian Threat Activity |
| Detected Hints/Tags/Attributes | 67/2/42 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://go.recordedfuture.com/hubfs/reports/cta-2023-1019.pdf |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Autonomous System Number | 1 | AS12722 |
|
| Details | Autonomous System Number | 6 | AS48282 |
|
| Details | Autonomous System Number | 1 | AS56902 |
|
| Details | Autonomous System Number | 1 | AS199239 |
|
| Details | Autonomous System Number | 2 | AS56485 |
|
| Details | Autonomous System Number | 5 | AS22612 |
|
| Details | Autonomous System Number | 15 | AS24940 |
|
| Details | Domain | 5 | alqassam.ps |
|
| Details | Domain | 546 | www.recordedfuture.com |
|
| Details | Domain | 1174 | gmail.com |
|
| Details | Domain | 1 | sn.com |
|
| Details | Domain | 2 | beatricewarner.com |
|
| Details | Domain | 4 | criston-cole.com |
|
| Details | Domain | 1 | isabeljwade.icu |
|
| Details | Domain | 1 | francescatmorrison.icu |
|
| Details | Domain | 1 | jayyburrows.icu |
|
| Details | Domain | 1 | jessicakphillips.icu |
|
| Details | Domain | 1 | nikanps.top |
|
| Details | Domain | 1 | nikanpsx.hopto.org |
|
| Details | Domain | 1 | iran.nikanps.top |
|
| Details | Domain | 1 | hamrah.nikanps.top |
|
| Details | Domain | 1 | modir.nikanps.top |
|
| Details | Domain | 1 | user.nikanps.top |
|
| Details | Domain | 1 | admin.nikanps.top |
|
| Details | Domain | 1 | hz.nikanpsx.top |
|
| Details | Domain | 1 | nikanpsx.top |
|
| Details | Domain | 265 | recordedfuture.com |
|
| Details | 1 | m@gmail.com |
||
| Details | File | 1 | alqassam_app.apk |
|
| Details | File | 1 | kasman_1001.apk |
|
| Details | sha256 | 1 | 04880196c8927d7fcaf32d6cc55f5b7a33858f65de70a968efc0ea8d9f7221c2 |
|
| Details | IPv4 | 1 | 5.45.81.22 |
|
| Details | IPv4 | 1 | 176.114.6.214 |
|
| Details | IPv4 | 1 | 185.209.31.193 |
|
| Details | IPv4 | 1 | 45.142.137.107 |
|
| Details | IPv4 | 1 | 85.202.95.107 |
|
| Details | IPv4 | 6 | 198.54.117.210 |
|
| Details | IPv4 | 1 | 91.107.188.236 |
|
| Details | IPv4 | 1 | 91.107.129.43 |
|
| Details | Threat Actor Identifier - APT-C | 79 | APT-C-23 |
|
| Details | Threat Actor Identifier by Recorded Future | 10 | TAG-63 |
|
| Details | Url | 1 | https://t.me/qassambrigades/28465 |