HYPERSCRAPE Detection: Iranian Cyberespionage Group APT35 Uses a Custom Tool to Steal User Data - SOC Prime
Tags
country: Iran
attack-pattern: Data Credentials - T1589.001 Email Accounts - T1585.002 Email Accounts - T1586.002 Inter-Process Communication - T1559 Malware - T1587.001 Malware - T1588.001 Tool - T1588.002 Vulnerabilities - T1588.006
Show in Graph
Common Information
Type Value
UUID 555cc770-91ef-4f85-a858-fc218937a3a6
Fingerprint 849f0fcbaa5fa747
Analysis status DONE
Considered CTI value 2
Text language
Published Aug. 30, 2022, 1:49 p.m.
Added to db Sept. 11, 2022, 12:30 p.m.
Last updated Nov. 17, 2024, 5:55 p.m.
Headline HYPERSCRAPE Detection: Iranian Cyberespionage Group APT35 Uses a Custom Tool to Steal User Data
Title HYPERSCRAPE Detection: Iranian Cyberespionage Group APT35 Uses a Custom Tool to Steal User Data - SOC Prime
Detected Hints/Tags/Attributes 40/2/3
Source URLs
Redirection Url
Details Source https://socprime.com/blog/hyperscrape-detection-iranian-cyberespionage-group-apt35-uses-a-custom-tool-to-steal-user-data/
URL Provider
Details Provider Source level domain
Details socprime.com socprime.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 237 SOC Prime https://socprime.com/feed/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details MITRE ATT&CK Techniques 25 
T1559
Details Threat Actor Identifier - APT 194 
APT35
Details Threat Actor Identifier - APT 258 
APT34