ioc[.]one - OSINT Cyber Threat Intelligence Database

8220 Gang APT IOCs - V - SEC-1275-1

Tags

attack-pattern:

Dns - T1071.004 Dns - T1590.002 Domains - T1583.001 Domains - T1584.001 Malware - T1587.001 Malware - T1588.001 Powershell - T1059.001 Python - T1059.006 Server - T1583.004 Server - T1584.004 Powershell - T1086

Show in Graph

Common Information

Type	Value
UUID	09b751db-dd4b-496d-96ee-0958c5395293
Fingerprint	f09aeeb19be6f969
Analysis status	DONE
Considered CTI value	0
Text language
Published	Oct. 2, 2024, midnight
Added to db	Oct. 2, 2024, 8:01 a.m.
Last updated	Oct. 23, 2024, 9:32 a.m.
Headline	8220 Gang APT IOCs - V
Title	8220 Gang APT IOCs - V - SEC-1275-1
Detected Hints/Tags/Attributes	15/1/37

Source URLs

	Redirection	Url
Details	Source	https://1275.ru/ioc/4040/8220-gang-apt-iocs-v/?mtm_campaign=rss

URL Provider

Details	Provider	Source level domain
Details	1275.ru	1275.ru

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	8	✔	Архивы IOC - SEC-1275-1	https://1275.ru/ioc/feed	2024-08-30 22:08

Attributes

Details	Type	#Events	Value
Details	CVE	81	cve-2017-10271
Details	CVE	27	cve-2020-14883
Details	Domain	5	c4k-ircd.pwndns.pw
Details	Domain	3	play.sck-dns.cc
Details	Domain	8	pwn.oracleservice.top
Details	Domain	5	run.on-demand.pw
Details	Domain	4	sck-dns.cc
Details	File	7	bin.ps1
Details	File	3	m.xml
Details	File	3	m1.xml
Details	File	5	plugin3.dll
Details	File	3	ueordwfkay.pdf
Details	sha256	2	10c2913361debb5f1db95c170ce2d6892d598d97b9f1f7f76a8bc7b5053e801a
Details	sha256	2	11be73a9516ace88b1a0af52e4454f4bc1db514cc2511b3e02318bd8be2bcf09
Details	sha256	2	1fcc2061f767574044ca1e97f92ca1d44ee0b35e0a796e3bd6a949ad4b1175e5
Details	sha256	2	5100dbaf942556184928fc0387fb5aab69dc2ef7e77b29db75905329697f2350
Details	sha256	2	7b229b173b32cde47963de2a6e4bfcf243a8646fbf100fb2e379526b42ee4515
Details	sha256	2	9a5d68ca481091fbfde4d63087a836412bc8805b9a7cae000bd53899b0399e87
Details	sha256	2	c964791501a48e919446892fe14ed101c27da375668ac7a24de891dc68356f9b
Details	sha256	2	e68263fcc9b1f8729bba00f63fb5482f069218333a65cf1b0caa0fe6d7ce1ff3
Details	sha256	2	f6069886728686c5c6566c0332ba37c16805fb623b6fcbbd1dd2e09ee5cc75b1
Details	IPv4	3	157.230.29.135
Details	IPv4	3	198.199.85.230
Details	IPv4	3	51.222.111.116
Details	IPv4	8	51.255.171.23
Details	IPv4	3	64.227.170.227
Details	IPv4	3	77.221.149.212
Details	IPv4	6	154.213.192.44
Details	Url	2	http://154.213.192.44/bin.ps1
Details	Url	2	http://154.213.192.44/c
Details	Url	2	http://154.213.192.44/goku
Details	Url	2	http://154.213.192.44/m.xml
Details	Url	2	http://154.213.192.44/m1.xml
Details	Url	3	http://154.213.192.44/plugin3.dll
Details	Url	3	http://154.213.192.44/ueordwfkay.pdf
Details	Url	2	http://154.213.192.44/y
Details	Url	3	http://sck-dns.cc/c