New sLoad malware downloader being leveraged by APT group TA554 to spread Ramnit | Cyware Hacker News
Tags
cmtmf-attack-pattern: Geofencing
country: Canada Italy
maec-delivery-vectors: Watering Hole
attack-pattern: Data Dns - T1071.004 Dns - T1590.002 Geofencing - T1627.001 Geofencing - T1581 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Powershell - T1059.001 Server - T1583.004 Server - T1584.004 Powershell - T1086
Show in Graph
Common Information
Type Value
UUID 0d80b8e7-8fbc-408c-9ec7-ea188f1bc20a
Fingerprint 916809cf0f77a681
Analysis status DONE
Considered CTI value 0
Text language
Published Jan. 1, 2021, midnight
Added to db Sept. 26, 2022, 9:30 a.m.
Last updated Sept. 4, 2024, 7:50 a.m.
Headline New sLoad malware downloader being leveraged by APT group TA554 to spread Ramnit
Title New sLoad malware downloader being leveraged by APT group TA554 to spread Ramnit | Cyware Hacker News
Detected Hints/Tags/Attributes 42/4/1
Source URLs
Redirection Url
Details Source https://cyware.com/news/new-sload-malware-downloader-being-leveraged-by-apt-group-ta554-to-spread-ramnit-7d03f2d9
URL Provider
Details Provider Source level domain
Details cyware.com cyware.com
Attributes
Details Type #Events CTI Value
Details File 6 
captcha.php