ioc[.]one - OSINT Cyber Threat Intelligence Database

Microcin is here

Tags

country:	Russia
maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Dll Search Order Hijacking - T1574.001 Domains - T1583.001 Domains - T1584.001 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Steganography - T1001.002 Steganography - T1406.001 Steganography - T1027.003 Dll Search Order Hijacking - T1038

Show in Graph

Common Information

Type	Value
UUID	4f130142-38e8-469f-be24-e31509a453e6
Fingerprint	fe343a79eced21d9
Analysis status	DONE
Considered CTI value	2
Text language
Published	June 19, 2020, 10 a.m.
Added to db	Sept. 11, 2022, 12:36 p.m.
Last updated	Nov. 19, 2024, 3:12 a.m.
Headline	Microcin is here
Title	Microcin is here
Detected Hints/Tags/Attributes	52/3/27

Source URLs

	Redirection	Url
Details	Source	https://securelist.com/microcin-is-here/97353
Details	Source	https://securelist.com/microcin-is-here/97353/

URL Provider

Details	Provider	Source level domain
Details	securelist.com	securelist.com

Attributes

Details	Type	#Events	Value
Details	Domain	1	cloudinary.com
Details	Domain	7	res.cloudinary.com
Details	Domain	4135	github.com
Details	Domain	1	apps.uzdarakchi.com
Details	Domain	1	forum.mediaok.info
Details	Domain	1	forum.uzdarakchi.com
Details	Domain	1	owa.obokay.com
Details	File	89	version.dll
Details	File	131	spoolsv.exe
Details	File	1	spoolsv.dll
Details	File	11	module.dll
Details	File	35	googlecrashhandler.exe
Details	Github username	1	dlegezo
Details	md5	1	c9b7acb2f7caf88d14c9a670ebb18c62
Details	md5	1	c7e11bec874a088a088b677aaa1175a1
Details	md5	1	ef9c82c481203ada31867c43825baff4
Details	md5	1	1169abdf350b138f8243498db8d3451e
Details	md5	1	445b78b750279c8059b5e966b628950e
Details	md5	1	06fd6b47b1413e37b0c0baf55f885525
Details	md5	1	f464b275ba90b3ba9d0a20b8e27879f5
Details	md5	1	9320180ef6ee8fa718e1ede01f348689
Details	md5	1	625a052ddc80efaab99efef70ba8c84f
Details	IPv4	1	95.179.136.10
Details	IPv4	1	172.107.95.246
Details	IPv4	1	23.152.0.225
Details	Url	1	http://res.cloudinary.com/ded1p1ozv/image/upload/v1579489581/<random_name>.bmp
Details	Url	1	https://github.com/dlegezo/common.