红雨滴云沙箱视角看攻防:演习攻击样本手法总结
Tags
attack-pattern: | Python - T1059.006 |
Common Information
Type | Value |
---|---|
UUID | 0bb98c60-812f-440e-adc5-5041104319de |
Fingerprint | 9af0c17e39c2b389 |
Analysis status | DONE |
Considered CTI value | 0 |
Text language | |
Published | Aug. 17, 2023, midnight |
Added to db | Oct. 23, 2023, 1:10 a.m. |
Last updated | Dec. 21, 2024, 2:20 a.m. |
Headline | 红雨滴云沙箱视角看攻防:演习攻击样本手法总结 |
Title | 红雨滴云沙箱视角看攻防:演习攻击样本手法总结 |
Detected Hints/Tags/Attributes | 3/1/16 |
Source URLs
URL Provider
RSS Feed
Details | Id | Enabled | Feed title | Url | Added to db |
---|---|---|---|---|---|
Details | 267 | ✔ | 奇安信威胁情报中心 | https://wechat2rss.xlab.app/feed/b93962f981247c0091dad08df5b7a6864ab888e9.xml | 2024-08-30 22:08 |
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 32 | sandbox.ti.qianxin.com |
|
Details | File | 2 | 保险java资深研发工程师招聘需求.pdf |
|
Details | File | 2 | 基层干部员工2023年7月份绩效考核结果的通知.7z |
|
Details | File | 1 | 团队个人业绩提成分红核对.exe |
|
Details | File | 1 | 交易所-业务流程审批问题.exe |
|
Details | File | 1 | flashplayerpp_install_cn_web.exe |
|
Details | File | 1 | oaupdate.exe |
|
Details | File | 1 | 证券网络安全检测客户端.exe |
|
Details | File | 1 | 2023第三季度绩效自评.zip |
|
Details | File | 1 | 下面的样本通过主动创建werfault.exe |
|
Details | File | 1 | 比如借用远程桌面连接程序的名称mstsc.exe |
|
Details | File | 5 | virustotal-multisandbox-qianxin-reddrip.html |
|
Details | sha1 | 1 | 655ffabea215f33cc526565a5f9f89136ea57d33 |
|
Details | Url | 9 | https://sandbox.ti.qianxin.com |
|
Details | Url | 1 | https://ares.ti.qianxin.com/ares/tools/maildetails/655ffabea215f33cc526565a5f9f89136ea57d33?istextshow=true |
|
Details | Url | 5 | https://blog.virustotal.com/2020/02/virustotal-multisandbox-qianxin-reddrip.html |