Iranian Campaign Tailored to US Companies Uses Updated Toolset - Intezer
Tags
country: Argentina Lebanon United States Of America
maec-delivery-vectors: Watering Hole
attack-pattern: Data Domains - T1583.001 Domains - T1584.001 Dynamic Api Resolution - T1027.007 Ip Addresses - T1590.005 Malicious File - T1204.002 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Scheduled Task - T1053.005 Server - T1583.004 Server - T1584.004 Tool - T1588.002 Scheduled Task - T1053
Show in Graph
Common Information
Type Value
UUID 4b200c44-98b3-4dce-b898-4b113003e269
Fingerprint 142599b30eba0fd3
Analysis status DONE
Considered CTI value 2
Text language
Published Jan. 30, 2020, 5:43 p.m.
Added to db Sept. 26, 2022, 9:31 a.m.
Last updated Nov. 13, 2024, 7:21 p.m.
Headline New Iranian Campaign Tailored to US Companies Utilizes an Updated Toolset
Title Iranian Campaign Tailored to US Companies Uses Updated Toolset - Intezer
Detected Hints/Tags/Attributes 69/3/12
Source URLs
Redirection Url
Details Source https://intezer.com/blog-new-iranian-campaign-tailored-to-us-companies-uses-updated-toolset/
URL Provider
Details Provider Source level domain
Details intezer.com intezer.com
Attributes
Details Type #Events CTI Value
Details Domain 281 
docs.microsoft.com
Details Domain 1 
manygoodnews.com
Details File 3 
survey.xls
Details File 175 
update.exe
Details File 2 
fsociety.dat
Details sha256 1 
c10cd1c78c180ba657e3921ee9421b9abd5b965c4cdfaa94a58e383b45bb72ca
Details sha256 1 
4c323bc11982b95266732c01645c39618550e68f25c34f6d3d79288eae7d4378
Details sha256 1 
a897164e3547f0ce3aaa476b0364a200769e8c07ce825bcfdc43939dd1314bb1
Details sha256 1 
20b3d046ed617b7336156a64a0550d416afdd80a2c32ce332be6bbfd4829832c
Details sha256 1 
d61eecd7492dfa461344076a93fc2668dc28943724190faf3d9390f8403b6411
Details Threat Actor Identifier - APT 258 
APT34
Details Url 7 
https://docs.microsoft.com/en-us