[CyberDefenders Write-up] MrGamer
Tags
| attack-pattern: | Exploits - T1587.004 Exploits - T1588.005 Powershell - T1059.001 Serverless - T1583.007 Serverless - T1584.007 Command-Line Interface - T1059 Powershell - T1086 |
Common Information
| Type | Value |
|---|---|
| UUID | 4ab3a563-d07a-48da-815c-79eb645d06bf |
| Fingerprint | 31853e57e9a507e0 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Sept. 8, 2024, 1:44 p.m. |
| Added to db | Sept. 8, 2024, 4:36 p.m. |
| Last updated | Nov. 17, 2024, 6:45 p.m. |
| Headline | [CyberDefenders Write-up] MrGamer |
| Title | [CyberDefenders Write-up] MrGamer |
| Detected Hints/Tags/Attributes | 45/1/15 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 167 | ✔ | Cybersecurity on Medium | https://medium.com/feed/tag/cybersecurity | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 4 | imap.gmail.com |
|
| Details | Domain | 1 | log4jrce.java |
|
| Details | File | 25 | places.sql |
|
| Details | File | 2 | usercache.json |
|
| Details | File | 5 | history.log |
|
| Details | File | 3 | module.log |
|
| Details | File | 1 | installed.json |
|
| Details | File | 2 | version_manifest_v2.json |
|
| Details | File | 1 | log4jrce.java |
|
| Details | File | 13 | login.key |
|
| Details | File | 5 | user.key |
|
| Details | md5 | 2 | 2f76c8b04c004ddd888a05a6cad6be52 |
|
| Details | sha1 | 2 | 3c6e119c0ff307accf31b596f9cd47ffa2ec6305 |
|
| Details | IPv4 | 2 | 192.168.191.253 |
|
| Details | MITRE ATT&CK Techniques | 695 | T1059 |