ioc[.]one - OSINT Cyber Threat Intelligence Database

LUCKY ELEPHANT Campaign Masquerading | NETSCOUT

Tags

cmtmf-attack-pattern:	Masquerading
country:	Bangladesh China Sri Lanka Nepal India Pakistan Maldives Myanmar
maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Credentials - T1589.001 Domains - T1583.001 Domains - T1584.001 Ip Addresses - T1590.005 Malware - T1587.001 Malware - T1588.001 Masquerading - T1655 Multi-Factor Authentication - T1556.006 Phishing - T1660 Phishing - T1566 Sharepoint - T1213.002 Tool - T1588.002 Whois - T1596.002 Masquerading - T1036 Masquerading

Show in Graph

Common Information

Type	Value
UUID	2c5f9284-04a4-47f1-93b7-0e3af74b7fa4
Fingerprint	b9418d579673c828
Analysis status	DONE
Considered CTI value	1
Text language
Published	March 22, 2019, midnight
Added to db	Jan. 16, 2023, 5:01 p.m.
Last updated	Nov. 15, 2024, 11:42 a.m.
Headline	LUCKY ELEPHANT Campaign Masquerading
Title	LUCKY ELEPHANT Campaign Masquerading \| NETSCOUT
Detected Hints/Tags/Attributes	60/4/73

Source URLs

	Redirection	Url
Details	Source	https://www.netscout.com/blog/asert/lucky-elephant-campaign-masquerading

URL Provider

Details	Provider	Source level domain
Details	netscout.com	www.netscout.com

Attributes

Details	Type	#Events	Value
Details	Domain	1	yahoomail.cf
Details	Domain	1	security.yahoomail.cf
Details	Domain	1	cc.yahoomail.cf
Details	Domain	1	mail-nepalarmymil-np.gq
Details	Domain	1	paec-gov-pk.ga
Details	Domain	1	mail-ntc-net-pk.tk
Details	Domain	1	paec-gov-pk-taskmail.tk
Details	Domain	1	mail-outlook-support-team.tk
Details	Domain	1	paecweb-gov.gq
Details	Domain	1	mail-paf-gov.cf
Details	Domain	1	paecwebmail.gq
Details	Domain	1	account-sign-in-security.ga
Details	Domain	1	mail-sign-alert-notification.cf
Details	Domain	1	paf-gov-pk.cf
Details	Domain	1	account-update-com.tk
Details	Domain	1	mail-updates-systems.ga
Details	Domain	1	paf-gov-pk.ga
Details	Domain	1	account-updates-team.ga
Details	Domain	1	mail-update-task.ga
Details	Domain	1	paf-gov-pk.tk
Details	Domain	1	afd-gov-bd.gq
Details	Domain	1	mail-update-team.ga
Details	Domain	1	paknavy-pk.gq
Details	Domain	1	baf-mil-bd.tk
Details	Domain	1	mail-yahoo-com.tk
Details	Domain	1	pmo-gov-pk.tk
Details	Domain	1	checkbox.gq
Details	Domain	1	mail-yahoo-task.tk
Details	Domain	1	pnra-org.gq
Details	Domain	1	cyber-net-pk.cf
Details	Domain	1	micorsoft-outlook-update.ml
Details	Domain	1	pof-gov-pk.tk
Details	Domain	1	fwo-com.tk
Details	Domain	1	mofa-gov-mm.ml
Details	Domain	1	rab-gov-bd.gq
Details	Domain	1	g00gle-com.cf
Details	Domain	1	mofagov-np.cf
Details	Domain	1	sco-gov-pk.tk
Details	Domain	1	googlemail-com.gq
Details	Domain	1	mofa-gov-np.cf
Details	Domain	1	sharepoint-google.ml
Details	Domain	1	live-com.gq
Details	Domain	1	mofa-gov-pk.tk
Details	Domain	1	slaf-gov-lk.ml
Details	Domain	1	live-com.ml
Details	Domain	1	molaw-gov-pk.cf
Details	Domain	1	super-net-pk.cf
Details	Domain	1	live-service.cf
Details	Domain	1	outlook-com.cf
Details	Domain	1	super-net-pk.tk
Details	Domain	1	login-live-com.cf
Details	Domain	1	outlook-livecom.cf
Details	Domain	1	test-updates.ga
Details	Domain	1	login-yah00-com.tk
Details	Domain	1	outlook-live-com.cf
Details	Domain	1	userscontent.com
Details	Domain	1	login-yahoo-com.ga
Details	Domain	1	outlook-live-com.ga
Details	Domain	1	yahoo-com.ga
Details	Domain	1	outlooklive-com.ml
Details	Domain	1	mail-account-security-com.cf
Details	Domain	1	outlook-live-com.tk
Details	Domain	1	yahoomail-com.cf
Details	Domain	1	mail-accounts-verify-com.cf
Details	Domain	1	outlookmail-com.tk
Details	Domain	1	yahoo-mail-com.ml
Details	Domain	1	mail-intl-ja-mail-about.gq
Details	Domain	1	paecgov-pk.cf
Details	IPv4	1	128.127.105.13
Details	IPv4	1	179.43.169.20
Details	IPv4	1	103.243.173.253
Details	IPv4	1	77.244.211.55
Details	Threat Actor Identifier - APT-C	102	APT-C-35