Abusing Legitimate Cloud Monitoring Tools for Cyber Attacks - Intezer
Tags
attack-pattern: | Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Ssh - T1021.004 Web Services - T1583.006 Web Services - T1584.006 Tool - T1588.002 |
Common Information
Type | Value |
---|---|
UUID | 2b1102bc-8aa2-4fd5-b1a7-22587a25489b |
Fingerprint | 5d8f59c99dac2f0d |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | Sept. 8, 2020, 1:37 p.m. |
Added to db | Sept. 11, 2022, 12:31 p.m. |
Last updated | Dec. 20, 2024, 7:07 p.m. |
Headline | Attackers Abusing Legitimate Cloud Monitoring Tools to Conduct Cyber Attacks |
Title | Abusing Legitimate Cloud Monitoring Tools for Cyber Attacks - Intezer |
Detected Hints/Tags/Attributes | 38/1/7 |
Source URLs
URL Provider
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 52 | iplogger.org |
|
Details | md5 | 1 | 24d7d21c3675d66826da0372369ec3e8 |
|
Details | md5 | 1 | 8c6681daba966addd295ad89bf5146af |
|
Details | md5 | 1 | 656eca480e2161e8645f9b29af7e4762 |
|
Details | md5 | 3 | 8ffdba0c9708f153237aabb7d386d083 |
|
Details | IPv4 | 9 | 85.214.149.236 |
|
Details | Url | 3 | https://iplogger.org/2xvkv5 |