More credential harvesting. Emotet returns. Black Basta and Fin7. RomCom hits Ukrainian targets.
Tags
country: Chile China North Korea Germany France Jordan India Iran Italy Laos Singapore Russia Ukraine United Kingdom United States Of America
maec-delivery-vectors: Watering Hole
attack-pattern: Data Artificial Intelligence - T1588.007 Botnet - T1583.005 Botnet - T1584.005 Code Repositories - T1213.003 Code Repositories - T1593.003 Javascript - T1059.007 Malvertising - T1583.008 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Python - T1059.006 Server - T1583.004 Server - T1584.004 Social Media - T1593.001 Software - T1592.002 Vulnerabilities - T1588.006
Show in Graph
Common Information
Type Value
UUID 41bfbb5d-fe28-48af-ab3f-944de2c1bf78
Fingerprint a30089951594a78f
Analysis status DONE
Considered CTI value 1
Text language
Published Nov. 3, 2022, 5:08 p.m.
Added to db Nov. 3, 2022, 8:37 p.m.
Last updated Nov. 18, 2024, 4:22 p.m.
Headline "Static expressway" credential harvesting. Emotet returns. Black Basta and Fin7. RomCom hits Ukrainian targets.
Title More credential harvesting. Emotet returns. Black Basta and Fin7. RomCom hits Ukrainian targets.
Detected Hints/Tags/Attributes 178/3/3
Source URLs
Redirection Url
Details Source https://thecyberwire.com/newsletters/daily-briefing/11/212
URL Provider
Details Provider Source level domain
Details thecyberwire.com thecyberwire.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 163 https://media.cert.europa.eu/rss?type=category&id=Malware&language=en&duplicates=false 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 2 
cve-2022-43945
Details Domain 4 
clean.io
Details Threat Actor Identifier - FIN 378 
FIN7