Updated XCSSET Malware Targets Telegram, Other Apps
Tags
attack-pattern: Data Applescript - T1059.002 Domains - T1583.001 Domains - T1584.001 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Tool - T1588.002 Applescript - T1155
Show in Graph
Common Information
Type Value
UUID 11a7237e-8de1-462c-ade8-6258a7dff40e
Fingerprint beac84810cf227c6
Analysis status DONE
Considered CTI value 2
Text language
Published July 22, 2021, midnight
Added to db Oct. 15, 2024, 3:15 p.m.
Last updated Oct. 16, 2024, 2:26 a.m.
Headline Updated XCSSET Malware Targets Telegram, Other Apps
Title Updated XCSSET Malware Targets Telegram, Other Apps
Detected Hints/Tags/Attributes 38/1/25
Source URLs
Redirection Url
Details Source https://www.trendmicro.com/en_ph/research/21/g/updated-xcsset-malware-targets-telegram--other-apps.html
Details Source https://www.trendmicro.com/en_fi/research/21/g/updated-xcsset-malware-targets-telegram--other-apps.html
Details Source https://www.trendmicro.com/en_id/research/21/g/updated-xcsset-malware-targets-telegram--other-apps.html
Details Source https://www.trendmicro.com/en_nl/research/21/g/updated-xcsset-malware-targets-telegram--other-apps.html
Details Source https://www.trendmicro.com/en_no/research/21/g/updated-xcsset-malware-targets-telegram--other-apps.html
Details Source https://www.trendmicro.com/en_ae/research/21/g/updated-xcsset-malware-targets-telegram--other-apps.html
Details Source https://www.trendmicro.com/en_be/research/21/g/updated-xcsset-malware-targets-telegram--other-apps.html
Details Source https://www.trendmicro.com/en_gb/research/21/g/updated-xcsset-malware-targets-telegram--other-apps.html
Details Source https://www.trendmicro.com/en_th/research/21/g/updated-xcsset-malware-targets-telegram--other-apps.html
Details Source https://www.trendmicro.com/en_ca/research/21/g/updated-xcsset-malware-targets-telegram--other-apps.html
Details Source https://www.trendmicro.com/en_se/research/21/g/updated-xcsset-malware-targets-telegram--other-apps.html
URL Provider
Details Provider Source level domain
Details trendmicro.com www.trendmicro.com
Attributes
Details Type #Events CTI Value
Details Domain 2 
6n38vws5bx.ru
Details Domain 4 
com.xxx.xxx
Details Domain 2 
atecasec.com
Details Domain 3 
linebrand.xyz
Details Domain 2 
mantrucks.xyz
Details Domain 2 
monotal.xyz
Details Domain 3 
nodeline.xyz
Details Domain 3 
sidelink.xyz
Details Domain 2 
icloudserv.com
Details Domain 2 
irc-nbg.v001.com
Details Domain 2 
atecasec.info
Details Domain 2 
datasomatic.ru
Details Domain 2 
icloudserv.ru
Details Domain 2 
lucidapps.info
Details Domain 2 
relativedata.ru
Details Domain 2 
revokecert.ru
Details Domain 2 
safariperks.ru
Details File 2 
atecasec.inf
Details File 2 
lucidapps.inf
Details sha256 2 
f453e8ae426133ace544cd4bb1ab2435620a8d4d5f70b936d8f3118e22f254e8
Details sha256 2 
7a51fd3080ee5f65c9127603683718a3fd4f3e0b13de6141824908a6d3d4b558
Details sha256 2 
bbcc8a101ae0e7fc546dab235387b0bf7461e097578fedcb25c4195bc973f895
Details sha256 2 
d8f14247ef18edaaae2c20dee975cd98a914b47548105cfbd30febefe2fa2a6b
Details IPv4 3 
94.130.27.189
Details IPv4 2 
194.87.186.66