Analyzing Manjusaka Infrastructure
Tags
| attack-pattern: | Ip Addresses - T1590.005 Powershell - T1059.001 Python - T1059.006 Server - T1583.004 Server - T1584.004 Tool - T1588.002 Powershell - T1086 |
Common Information
| Type | Value |
|---|---|
| UUID | 1855fc3e-a6bb-45c7-8537-6adbbdc68689 |
| Fingerprint | bc1bb5061028b1f |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Aug. 21, 2022, 11:42 a.m. |
| Added to db | Jan. 16, 2023, 3:56 p.m. |
| Last updated | Nov. 17, 2024, 5:57 p.m. |
| Headline | Cyber&Ramen |
| Title | Analyzing Manjusaka Infrastructure |
| Detected Hints/Tags/Attributes | 31/1/7 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://cyberandramen.net/2022/08/21/analyzing-manjusaka-infrastructure/ |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 261 | blog.talosintelligence.com |
|
| Details | Domain | 2 | fingerprints.bablosoft.com |
|
| Details | File | 2 | manjusaka-offensive-framework.html |
|
| Details | File | 3 | payload.ps1 |
|
| Details | IPv4 | 2 | 119.28.101.125 |
|
| Details | IPv4 | 1 | 121.5.236.127 |
|
| Details | Url | 2 | https://blog.talosintelligence.com/2022/08/manjusaka-offensive-framework.html |