ioc[.]one - OSINT Cyber Threat Intelligence Database

Unmasking the SYS01 Infostealer Threat: Bitdefender Labs Tracks Global Malvertising Campaign Targeting Meta Business Pages

Tags

cmtmf-attack-pattern:	Compromise Accounts
country:	Australia Germany France Italy Spain Romania
maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Direct Model Models Artificial Intelligence - T1588.007 Compromise Accounts - T1586 Credentials - T1589.001 Domains - T1583.001 Domains - T1584.001 Impersonation - T1656 Javascript - T1059.007 Malvertising - T1583.008 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Powershell - T1059.001 Social Media - T1593.001 Software - T1592.002 Tool - T1588.002 Powershell - T1086

Show in Graph

Common Information

Type	Value
UUID	1465f2ad-6762-46cb-9e9a-1a535ee93e09
Fingerprint	a0200839893dc7f9
Analysis status	DONE
Considered CTI value	0
Text language
Published	Oct. 29, 2024, midnight
Added to db	Oct. 31, 2024, 11:45 a.m.
Last updated	Nov. 17, 2024, 9:42 p.m.
Headline	Unmasking the SYS01 Infostealer Threat: Bitdefender Labs Tracks Global Malvertising Campaign Targeting Meta Business Pages
Title	Unmasking the SYS01 Infostealer Threat: Bitdefender Labs Tracks Global Malvertising Campaign Targeting Meta Business Pages
Detected Hints/Tags/Attributes	91/4/42

Source URLs

	Redirection	Url
Details	Source	https://www.bitdefender.com/en-us/blog/labs/unmasking-the-sys01-infostealer-threat-bitdefender-labs-tracks-global-malvertising-campaign-targeting-meta-business-pages/

URL Provider

Details	Provider	Source level domain
Details	bitdefender.com	www.bitdefender.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	276	✔	Bitdefender Labs	https://www.bitdefender.com/blog/api/rss/labs/	2024-08-30 22:08

Attributes

Details	Type	#Events	Value
Details	Domain	1	krouki.com
Details	Domain	1	kimiclass.com
Details	Domain	1	goodsuccessmedia.com
Details	Domain	1	wegoodmedia.com
Details	Domain	1	socialworldmedia.com
Details	Domain	1	superpackmedia.com
Details	Domain	1	eviralmedia.com
Details	Domain	1	gerymedia.com
Details	Domain	1	wakomedia.com
Details	Domain	1	musament.top
Details	Domain	1	enorgutic.top
Details	Domain	1	untratem.top
Details	Domain	1	matcrogir.top
Details	Domain	1	ubrosive.top
Details	Domain	1	wrust.top
Details	Domain	1	lucielarouche.com
Details	Domain	1	ostimatu.top
Details	File	42	7za.exe
Details	File	74	main.js
Details	File	1205	index.php
Details	File	21	include.php
Details	File	55	test.php
Details	File	1	rhc.exe
Details	File	13	php.exe
Details	sha256	3	c136b1467d669a725478a6110ebaaab3cb88a3d389dfa688e06173c066b76fcf
Details	Url	1	https://krouki.com
Details	Url	1	https://kimiclass.com
Details	Url	1	https://goodsuccessmedia.com
Details	Url	1	https://wegoodmedia.com
Details	Url	1	https://socialworldmedia.com
Details	Url	1	https://superpackmedia.com
Details	Url	1	https://eviralmedia.com
Details	Url	1	https://gerymedia.com
Details	Url	1	https://wakomedia.com
Details	Url	1	https://musament.top
Details	Url	1	https://enorgutic.top
Details	Url	1	https://untratem.top
Details	Url	1	https://matcrogir.top
Details	Url	1	https://ubrosive.top
Details	Url	1	https://wrust.top
Details	Url	1	https://lucielarouche.com
Details	Url	1	https://ostimatu.top