ioc[.]one - OSINT Cyber Threat Intelligence Database

红蓝对抗中的溯源反制实战

Tags

attack-pattern:

Show in Graph

Common Information

Type	Value
UUID	16f147e6-a088-4903-a9b9-fb6844549d6b
Fingerprint	b70309ff25cacd9e
Analysis status	DONE
Considered CTI value	0
Text language
Published	Dec. 4, 2020, midnight
Added to db	Dec. 20, 2024, 12:46 a.m.
Last updated	Dec. 23, 2024, 7:10 p.m.
Headline	红蓝对抗中的溯源反制实战
Title	红蓝对抗中的溯源反制实战
Detected Hints/Tags/Attributes	10/1/35

Source URLs

	Redirection	Url
Details	Source	https://www.secrss.com/articles/27611

URL Provider

Details	Provider	Source level domain
Details	secrss.com	www.secrss.com

Attributes

Details	Type	#Events	Value
Details	Domain	1	58.82.cc
Details	Domain	1	45.192.ee
Details	Domain	1	ref.attacker.com
Details	Domain	8	threatbook.cn
Details	Domain	1	119.xxx.xxx.xxx
Details	Domain	1	aaf.attacker.com
Details	Domain	1	bref.attacker.com
Details	Domain	1	bodyres.attacker.net
Details	Domain	1	qq1779xxxx.f3322.org
Details	Domain	1	victim2.cn
Details	Domain	9	xxx.xxx.xxx
Details	Domain	1	victim.cn
Details	Domain	1	bbb.cn
Details	Domain	128	qq.com
Details	Domain	4703	github.com
Details	Domain	66	stackoverflow.com
Details	Domain	94	xz.aliyun.com
Details	Domain	6752	163.com
Details	Email	1	aaa@bbb.cn
Details	Email	1	dddd@qq.com
Details	File	36	start.bat
Details	File	1	检测.bat
Details	File	1	gd123.txt
Details	File	1	allhost.txt
Details	File	1	sql.bat
Details	File	1	tok2.exe
Details	File	1	sv8.exe
Details	File	1	syst.jsp
Details	File	1	monitor.jsp
Details	File	1	probe.js
Details	Github username	1	evilcos
Details	Url	1	https://x.threatbook.cn
Details	Url	1	https://github.com/evilcos/xssprobe/blob/master/probe.js
Details	Url	1	https://stackoverflow.com/questions/15464896/get-cpu-gpu-memory-information
Details	Url	2	https://xz.aliyun.com/t/4509