ioc[.]one - OSINT Cyber Threat Intelligence Database

Definitive Dossier of Devilish Debug Details – Part Deux: A Didactic Deep Dive into Data Driven Deductions | Mandiant

Tags

attack-pattern:

Data Model Models Domains - T1583.001 Domains - T1584.001 Malicious File - T1204.002 Malware - T1587.001 Malware - T1588.001 Software - T1592.002 Connection Proxy - T1090

Show in Graph

Common Information

Type	Value
UUID	04affcd9-a91e-4c5b-84ab-ebe107f87c36
Fingerprint	2f1d1a90013306cb
Analysis status	DONE
Considered CTI value	2
Text language
Published	Oct. 17, 2019, midnight
Added to db	Aug. 13, 2023, 3:49 a.m.
Last updated	Sept. 22, 2024, 4:15 a.m.
Headline	Definitive Dossier of Devilish Debug Details – Part Deux: A Didactic Deep Dive into Data Driven Deductions
Title	Definitive Dossier of Devilish Debug Details – Part Deux: A Didactic Deep Dive into Data Driven Deductions \| Mandiant
Detected Hints/Tags/Attributes	47/1/17

Source URLs

	Redirection	Url
Details	Source	https://www.mandiant.com/resources/blog/definitive-dossier-devilish-debug-details-part-deux-didactic-deep-dive-data-driven-deductions

URL Provider

Details	Provider	Source level domain
Details	mandiant.com	www.mandiant.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	330	✔	Threat Intelligence	https://www.mandiant.com/resources/blog/rss.xml	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	md5	1		a6b2aa2b489fb481c3cd9eab2f4f4f5c
Details	md5	1		92904dc99938352525492cd5133b9917
Details	md5	1		444be936b44cc6bd0cd5d0c88268fa77
Details	md5	1		4d093061c172b32bf8bef03ac44515ae
Details	md5	1		4e6c2d60873f644ef5e06a17d85ec777
Details	md5	1		52d2a08223d0b5cc300f067219021c90
Details	md5	1		a785bd1eb2a8495a93a2f348c9a8ca67
Details	md5	1		c43c79812d49ca0f3b4da5aca3745090
Details	md5	3		e540076f48d7069bacb6d607f2d389d9
Details	md5	1		5ea538dfc64e28ad8c4063573a46800c
Details	md5	1		adf27ce5e67d770321daf90be6f4d895
Details	md5	1		c6e23da146a6fa2956c3dd7a9314fc97
Details	Pdb	1		c:\users\world\desktop\duck\zbw138ht2aeja2.pdb
Details	Pdb	1		d:\vscore5\build\vscore\release\entvutil.pdb
Details	Pdb	1		c:\users\jsmith\documents\visual studio 2013\projects\mkzyu91952\mkzyu91952\obj\x86\debug\mkzyu91952.pdb
Details	Pdb	1		mkzyu91952.pdb
Details	Pdb	1		c:\leave\smell\long\rulethis.pdb