SOC141 — Phishing URL Detected
Common Information
Type Value
UUID 3744cc05-654c-417b-8678-869c4b221b27
Fingerprint 2c110999bb3c5f81
Analysis status DONE
Considered CTI value 2
Text language
Published Dec. 15, 2024, 9:41 p.m.
Added to db Dec. 15, 2024, 11:20 p.m.
Last updated Dec. 24, 2024, 10:54 a.m.
Headline SOC141 — Phishing URL Detected
Title SOC141 — Phishing URL Detected
Detected Hints/Tags/Attributes 51/3/20
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 167 Cybersecurity on Medium https://medium.com/feed/tag/cybersecurity 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 3
ru-uid-507352920.pp.ru
Details Domain 4
mogagrocol.ru
Details Domain 57
letsdefend.io
Details Domain 1
wcarp.hosting.nic.ru
Details Email 4
mogagrocol.ru/wp-content/plugins/akismet/fv/index.php?email=ellie@letsdefend.io
Details File 18
notes.txt
Details File 1102
rundll32.exe
Details File 5
kbdyak.exe
Details File 1313
index.php
Details File 273
iexplore.exe
Details md5 1
c36bb659f08f046b139c8d1b980bf1ac
Details sha256 1
405f03534be8b45185695f68deb47d4daf04dcd6df9d351ca6831d3721b1efc4
Details IPv4 5
172.16.17.49
Details IPv4 5
91.189.114.8
Details IPv4 1
5.45.205.241
Details MITRE ATT&CK Techniques 131
T1129
Details MITRE ATT&CK Techniques 520
T1012
Details Url 1
http://ru-uid-507352920.pp.ru
Details Url 4
http://mogagrocol.ru/wp-content/plugins/akismet/fv/index.php?email=ellie@letsdefend.io
Details Url 2
http://mogagrocol.ru/wp-content/plugins/akismet/fv/index.php