Iranian backed group steps up phishing campaigns against Israel, U.S.
Tags
Common Information
Type | Value |
---|---|
UUID | 4b181d2c-8f5e-40a3-ba64-7087be4a2a8c |
Fingerprint | b8289e8122066ec8 |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | Aug. 14, 2024, midnight |
Added to db | Aug. 31, 2024, 12:09 a.m. |
Last updated | Nov. 17, 2024, 5:50 p.m. |
Headline | Iranian backed group steps up phishing campaigns against Israel, U.S. |
Title | Iranian backed group steps up phishing campaigns against Israel, U.S. |
Detected Hints/Tags/Attributes | 72/4/30 |
Source URLs
URL Provider
RSS Feed
Details | Id | Enabled | Feed title | Url | Added to db |
---|---|---|---|---|---|
Details | 35 | ✔ | Threat Analysis Group (TAG) | https://blog.google/threat-analysis-group/rss/ | 2024-08-30 22:08 |
Details | 213 | ✔ | Cyberwar News ≈ Packet Storm | https://rss.packetstormsecurity.com/news/tags/cyberwar/ | 2024-08-30 22:08 |
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 2 | understandingthewar.org |
|
Details | Domain | 1 | brookings.email |
|
Details | Domain | 1 | accredit-navigation.online |
|
Details | Domain | 1 | n9.cl |
|
Details | Domain | 1 | panel-short-check.live |
|
Details | Domain | 1 | check-pabnel-status.live |
|
Details | Domain | 1 | meetroomonlin1925.w3spaces.com |
|
Details | Domain | 1 | smaaaal.cfd |
|
Details | Domain | 1 | click-choose-figured.cfd |
|
Details | Domain | 1 | short-ion-per.live |
|
Details | Domain | 1 | checking-paneling.live |
|
Details | Domain | 1 | sharedrive.webredirect.org |
|
Details | Domain | 1 | visioneditor.loseyourip.com |
|
Details | Domain | 1 | s3api.shop |
|
Details | Domain | 14 | firebasestorage.googleapis.com |
|
Details | Domain | 1 | share-box-5f395.appspot.com |
|
Details | File | 1 | onedrive-qrty45.html |
|
Details | sha256 | 1 | c67cd544a112cab1bb75b3c44df4caf2045ef0af51de9ece11261d6c504add32 |
|
Details | sha256 | 1 | bc2597ce09987022ff0498c6710a9b51a1a47ed8082ac044be2838b384157527 |
|
Details | sha256 | 1 | baac058ddfc96c8aea8c0057077505f0ad3ff20311d999886fed549924404849 |
|
Details | sha256 | 1 | 0180f4f29c550aa1ffaa21af51711b29de99fb1d7c932d008a0e9356ae8a7d60 |
|
Details | sha256 | 1 | f83e2b3be2e6db20806a4b9b216edc7508fa81ce60bf59436d53d3ae435b6060 |
|
Details | sha256 | 1 | 82ae2eb470a5a16ca39ec84b387294eaa3ae82e5ada4b252470c1281e1f31c0a |
|
Details | sha256 | 1 | 89c1d1b61d7f863f8a651726e29f2ae3de7958f36b49a756069021817947d06c |
|
Details | sha256 | 2 | c3486133783379e13ed37c45dc6645cbee4c1c6e62e7988722931eef99c8eaf3 |
|
Details | sha256 | 2 | 33a61ff123713da26f45b399a9828e29ad25fbda7e8994c954d714375ef92156 |
|
Details | sha256 | 2 | 4ac088bf25d153ec2b9402377695b15a28019dc8087d98bd34e10fed3424125f |
|
Details | IPv4 | 1 | 49.13.194.118 |
|
Details | IPv4 | 1 | 91.107.150.184 |
|
Details | Threat Actor Identifier - APT | 121 | APT42 |