Threat Source newsletter for April 16, 2020
Tags
cmtmf-attack-pattern: Location Tracking
country: Japan Portugal
maec-delivery-vectors: Watering Hole
attack-pattern: Data Email Addresses - T1589.002 Location Tracking - T1430 Malvertising - T1583.008 Malware - T1587.001 Malware - T1588.001 Sharepoint - T1213.002 Software - T1592.002 Vulnerabilities - T1588.006
Show in Graph
Common Information
Type Value
UUID 3953c9c2-6a2e-4421-9bd8-b55f9c451025
Fingerprint 3526098890b7d2fc
Analysis status DONE
Considered CTI value 2
Text language
Published April 16, 2020, midnight
Added to db Oct. 9, 2022, 4:11 p.m.
Last updated Nov. 14, 2024, 2:03 p.m.
Headline Vulnerability Information
Title Threat Source newsletter for April 16, 2020
Detected Hints/Tags/Attributes 56/4/20
Source URLs
Redirection Url
Details Source https://blog.talosintelligence.com/2020/04/threat-source-newsletter-for-april-16.html
URL Provider
Details Provider Source level domain
Details talosintelligence.com blog.talosintelligence.com
Attributes
Details Type #Events CTI Value
Details Domain 127 
pua.win
Details Domain 35 
w32.auto
Details Domain 21 
w32.85b936960f.5a5226262.auto
Details Domain 41 
95.sbx.tg
Details File 29 
flashhelperservices.exe
Details File 7 
wupxarch.exe
Details File 108 
0.exe
Details File 2 
updateprofile.exe
Details File 5 
segurazoic.exe
Details md5 6 
5d34464531ddbdc7b0a4dba5b4c1cfea
Details md5 1 
bf1d79fad6471fcf50e38a9ea1f646a5
Details md5 58 
8c80dd97c37525927c1e549cb59bcbf3
Details md5 1 
9b47b9f19455bf56138ddb81c93b6c0c
Details md5 5 
c2406fc0fce67ae79e625013325e2a68
Details sha256 6 
a545df34334b39522b9cc8cc0c11a1591e016539b209ca1d4ab8626d70a54776
Details sha256 1 
589d9977a5b0420d29acc0c1968a2ff48102ac3ddc0a1f3188be79d0a4949c82
Details sha256 31 
85b936960fbe5100c170b777e1647ce9f0f01e3ab9742dfc23f37cb0825b30b5
Details sha256 1 
518a8844dae953d7f2510d38ba916f1c4ccc01cfba58f69290938b6ddde8b472
Details sha256 5 
1c3ed460a7f78a43bab0ae575056d00c629f35cf7e72443b4e874ede0f305871
Details IPv6 40 
::95