Mustang Panda’s PlugX new variant targetting Taiwanese government and diplomats
Tags
country: China Japan Taiwan United States Of America
attack-pattern: Data Dll Side-Loading - T1574.002 Domains - T1583.001 Domains - T1584.001 Malware - T1587.001 Malware - T1588.001 Software - T1592.002 Dll Side-Loading - T1073 User Execution - T1204 User Execution
Show in Graph
Common Information
Type Value
UUID 21a72dbc-fb0a-4a3f-a192-4cbd22477796
Fingerprint a4e49fe12d7fb7a9
Analysis status DONE
Considered CTI value 2
Text language
Published Dec. 11, 2023, 1:32 p.m.
Added to db Aug. 31, 2024, 6:24 a.m.
Last updated Nov. 17, 2024, 6:30 p.m.
Headline Mustang Panda’s PlugX new variant targetting Taiwanese government and diplomats
Title Mustang Panda’s PlugX new variant targetting Taiwanese government and diplomats
Detected Hints/Tags/Attributes 44/2/15
Source URLs
Redirection Url
Details Source https://lab52.io/blog/mustang-pandas-plugx-new-variant-targetting-taiwanese-government-and-diplomats/
URL Provider
Details Provider Source level domain
Details lab52.io lab52.io
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 148 lab52 https://lab52.io/blog/feed/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 454 
www.google.com
Details Domain 2 
ivibers.com
Details Domain 1 
meetvibersapi.com
Details File 7 
onenotem.exe
Details File 40 
msi.dll
Details File 2 
notelogger.dat
Details File 25 
cryptsp.dll
Details File 1 
45dd12.msi
Details File 1 
onesnotem.exe
Details File 2 
郭台銘選擇賴佩霞為總統副手深層考量.pdf
Details sha256 1 
c7ec098093eb08d2b36d1c37b928d716d8da021f93319a093808a7ceb3b35dc1
Details sha256 1 
651c096cf7043a01d939dff9ba58e4d69f15b2244c71b43bedb4ada8c37e8859
Details sha256 1 
908ff3a80ef065ab4be1942e0d41583903f6aac02d97df6b4a92a07a633397a8
Details sha256 1 
c6ef220d0c6e9015bdfb7977ff15e7f2c4c0dbfcd3b28ffb3066fe6d21251322
Details sha256 1 
8af3fc1f8bd13519d78ee83af43daaa8c5e2c3f184c09f5c41941e0c6f68f0f7