Rewterz Threat Alert – APT SideWinder Group – Active IOCs - Rewterz
Tags
country: | Afghanistan China Nepal Pakistan |
maec-delivery-vectors: | Watering Hole |
attack-pattern: | Malicious File - T1204.002 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Powershell - T1059.001 Vulnerabilities - T1588.006 Powershell - T1086 |
Common Information
Type | Value |
---|---|
UUID | 1cacd63b-a4df-4118-bfa4-a2c79ace46e2 |
Fingerprint | e2a92555cf97c70c |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | March 16, 2022, 12:57 p.m. |
Added to db | Dec. 19, 2024, 9:53 p.m. |
Last updated | Dec. 20, 2024, 1:03 a.m. |
Headline | Rewterz Threat Alert – APT SideWinder Group – Active IOCs |
Title | Rewterz Threat Alert – APT SideWinder Group – Active IOCs - Rewterz |
Detected Hints/Tags/Attributes | 35/3/13 |
Source URLs
URL Provider
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | CVE | 4 | cve-2022-0742 |
|
Details | Domain | 2 | mail.hitt.pkgov.org |
|
Details | Domain | 2 | pmo.nationalhelpdesk.pk |
|
Details | Domain | 6 | sngpl.org.pk |
|
Details | IPv4 | 2 | 3.37.215.204 |
|
Details | IPv4 | 2 | 18.229.249.186 |
|
Details | IPv4 | 2 | 52.79.102.70 |
|
Details | IPv4 | 4 | 16.162.223.161 |
|
Details | IPv4 | 2 | 95.179.160.235 |
|
Details | IPv4 | 2 | 45.76.84.233 |
|
Details | Threat Actor Identifier - APT-C | 37 | APT-C-17 |
|
Details | Threat Actor Identifier by Tencent | 48 | T-APT-04 |
|
Details | Url | 2 | https://mail.hitt.pkgov.org |