Злоумышленник нацелился на производственную отрасль с помощью Lumma Stealer и бота Amadey - SEC-1275-1
Tags
attack-pattern: | Powershell - T1059.001 Ssh - T1021.004 Powershell - T1086 |
Common Information
Type | Value |
---|---|
UUID | 44f5ac8b-56fb-44d3-90b3-714702c7c7d1 |
Fingerprint | 5e18e3e44b195e4b |
Analysis status | DONE |
Considered CTI value | 0 |
Text language | |
Published | Dec. 6, 2024, midnight |
Added to db | Dec. 6, 2024, 6:12 a.m. |
Last updated | Dec. 23, 2024, 7:16 a.m. |
Headline | Злоумышленник нацелился на производственную отрасль с помощью Lumma Stealer и бота Amadey |
Title | Злоумышленник нацелился на производственную отрасль с помощью Lumma Stealer и бота Amadey - SEC-1275-1 |
Detected Hints/Tags/Attributes | 7/1/13 |
Source URLs
URL Provider
Details | Provider | Source level domain |
---|---|---|
Details | 1275.ru | 1275.ru |
RSS Feed
Details | Id | Enabled | Feed title | Url | Added to db |
---|---|---|---|---|---|
Details | 8 | ✔ | Архивы IOC - SEC-1275-1 | https://1275.ru/ioc/feed | 2024-08-30 22:08 |
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 4 | download-695-18112-001-webdav-logicaldoc.cdn-serveri4732-ns.shop |
|
Details | Domain | 6 | berb.fitnessclub-filmfanatics.com |
|
Details | Domain | 388 | pastebin.com |
|
Details | Domain | 14 | www.google.ca |
|
Details | Domain | 8 | goo.su |
|
Details | sha256 | 6 | 5b6dc2ecb0f7f2e1ed759199822cb56f5b7bd993f3ef3dab0744c6746c952e36 |
|
Details | sha256 | 3 | 7b8958ed2fc491b8e43ffb239cdd757ec3d0db038a6d6291c0fd6eb2d977adc4 |
|
Details | sha256 | 3 | 8ed1af83cf70b363658165a339f45ae22d92c51841b06c568049d3636a04a2a8 |
|
Details | sha256 | 3 | dc36a3d95d9a476d773b961b15b188aa3aae0e0a875bca8857fca18c691ec250 |
|
Details | Url | 3 | http://download-695-18112-001-webdav-logicaldoc.cdn-serveri4732-ns.shop/downloads/18112.2022 |
|
Details | Url | 3 | https://berb.fitnessclub-filmfanatics.com/naailq0.cpl |
|
Details | Url | 3 | https://pastebin.com/raw/0v6vhvpb |
|
Details | Url | 5 | https://www.google.ca/amp/s/goo.su/iwpqjp |