Big Game Hunting: Now in Russia
Tags
| country: | Belarus Belgium Russia |
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Data Credentials - T1589.001 Domains - T1583.001 Domains - T1584.001 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Server - T1583.004 Server - T1584.004 Software - T1592.002 |
Common Information
| Type | Value |
|---|---|
| UUID | 346f35a5-4a19-4791-a82d-841721eba139 |
| Fingerprint | a46409bb8555b780 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Sept. 15, 2020, midnight |
| Added to db | Aug. 31, 2024, 12:02 a.m. |
| Last updated | Nov. 18, 2024, 6:28 a.m. |
| Headline | Big Game Hunting: Now in Russia |
| Title | Big Game Hunting: Now in Russia |
| Detected Hints/Tags/Attributes | 71/3/28 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://blog.group-ib.com/oldgremlin |
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 36 | ✔ | Blog Group-IB | https://blog.group-ib.com/rss.xml | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 318 | bit.ly |
|
| Details | Domain | 2 | rbcholding.press |
|
| Details | Domain | 2 | broken-poetry-de86.nscimupf.workers.dev |
|
| Details | Domain | 2 | calm-night-6067.bhrcaoqf.workers.dev |
|
| Details | Domain | 2 | rough-grass-45e9.poecdjusb.workers.dev |
|
| Details | Domain | 2 | ksdkpwprtyvbxdobr0.tyvbxdobr0.workers.dev |
|
| Details | Domain | 2 | ksdkpwpfrtyvbxdobr1.tiyvbxdobr1.workers.dev |
|
| Details | Domain | 2 | wispy-surf-fabd.bhrcaoqf.workers.dev |
|
| Details | Domain | 2 | noisy-cell-7d07.poecdjusb.workers.dev |
|
| Details | Domain | 2 | wispy-fire-1da3.nscimupf.workers.dev |
|
| Details | Domain | 2 | hello.tyvbxdobr0.workers.dev |
|
| Details | Domain | 2 | curly-sound-d93e.ygrhxogxiogc.workers.dev |
|
| Details | Domain | 2 | old-mud-23cb.tkbizulvc.workers.dev |
|
| Details | md5 | 1 | e47a296bac49284371ac396a053a8488 |
|
| Details | md5 | 1 | 2c6a9a38ace198ab62e50ab69920bf42 |
|
| Details | md5 | 1 | 306978669ead832f1355468574df1680 |
|
| Details | md5 | 1 | 94293275fcc53ad5aca5392f3a5ff87b |
|
| Details | md5 | 1 | 1e54c8bc19dab21e4bd9cfb01a4f5aa5 |
|
| Details | md5 | 1 | fc30e902d1098b7efd85bd2651b2293f |
|
| Details | md5 | 1 | e0fe009b0b1ae72ba7a5d2127285d086 |
|
| Details | md5 | 1 | f30e4d741018ef81da580ed971048707 |
|
| Details | md5 | 1 | ac27db95366f4e7a7cf77f2988e119c2 |
|
| Details | md5 | 1 | 30fdbf2335a9565186689c12090ea2cf |
|
| Details | md5 | 1 | e1692cc732f52450879a86cb7dcfbccd |
|
| Details | IPv4 | 1 | 136.244.67.59 |
|
| Details | IPv4 | 1 | 95.179.252.217 |
|
| Details | IPv4 | 1 | 45.61.138.170 |
|
| Details | IPv4 | 1 | 5.181.156.84 |