Вредоносное ПО на языке Lua нацелено на образовательный сектор и игровые движки для студентов - SEC-1275-1
Tags
| attack-pattern: | Domains - T1583.001 Domains - T1584.001 Powershell - T1059.001 Powershell - T1086 |
Common Information
| Type | Value |
|---|---|
| UUID | 31613f24-bf10-4752-a799-bfe07cce3a47 |
| Fingerprint | 7d9723b1163e297f |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Oct. 11, 2024, midnight |
| Added to db | Oct. 11, 2024, 9:22 a.m. |
| Last updated | Nov. 17, 2024, 11:40 p.m. |
| Headline | Вредоносное ПО на языке Lua нацелено на образовательный сектор и игровые движки для студентов |
| Title | Вредоносное ПО на языке Lua нацелено на образовательный сектор и игровые движки для студентов - SEC-1275-1 |
| Detected Hints/Tags/Attributes | 6/1/25 |
Source URLs
URL Provider
| Details | Provider | Source level domain |
|---|---|---|
| Details | 1275.ru | 1275.ru |
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 8 | ✔ | Архивы IOC - SEC-1275-1 | https://1275.ru/ioc/feed | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 3 | electronexec.com |
|
| Details | Domain | 3 | solaraexec.cc |
|
| Details | Domain | 4128 | github.com |
|
| Details | Domain | 2 | electron.zip |
|
| Details | Domain | 2 | solarav3.zip |
|
| Details | File | 2 | getter.json |
|
| Details | File | 2 | electron.zip |
|
| Details | File | 2 | socket.json |
|
| Details | File | 2 | solarav3.zip |
|
| Details | Github username | 2 | user-attachments |
|
| Details | sha256 | 3 | 308721f4dc7818aed5f0282a3efa5944c1d16e97b0cb3bb5786009a186ea9791 |
|
| Details | sha256 | 3 | 3b515469aba46a0a08d8fcbd8feb98ce9bcebfa1a48d56be586dc9aa4584c0c2 |
|
| Details | sha256 | 3 | 8e59a9de633fc1e0a9da10268c606b898e7d5a6645ee21851465e027aefbaec9 |
|
| Details | sha256 | 3 | 98418f7079cc11970899a18098425d22414663301dbbad1c892a8c702b90223f |
|
| Details | sha256 | 3 | 9aacf8f59b8daff24161549378c95174dac40b2fb01d7b8a78b513d3d35f6411 |
|
| Details | sha256 | 3 | aecdaa94885c3fcd856c3516311bf366ac5ee13b43c28560eadc1f637efcf432 |
|
| Details | sha256 | 3 | afd731bb658525845c8ee4216b05ce0c9c8b2e8b745884fbefeb01ef331163a1 |
|
| Details | sha256 | 3 | b3ecbe4132598ef746e2111ba29f46af06886677d18595b6845849577121707a |
|
| Details | sha256 | 3 | e09370c9adc09c15eb8d05301bd3c74ef76e98b8a2fa2089df9c4ec5d7b4e047 |
|
| Details | IPv4 | 3 | 146.19.128.146 |
|
| Details | IPv4 | 3 | 185.208.158.36 |
|
| Details | IPv4 | 3 | 185.221.198.82 |
|
| Details | IPv4 | 3 | 185.236.228.12 |
|
| Details | IPv4 | 3 | 212.193.4.66 |
|
| Details | IPv4 | 3 | 77.73.129.64 |