Fake AWS Packages Ship Command and Control Malware In JPEG Files
Tags
attack-pattern: Data Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004
Show in Graph
Common Information
Type Value
UUID 55cdc0b1-e66d-4016-b5ff-61690474758c
Fingerprint 2a802a41e83c8788
Analysis status DONE
Considered CTI value 0
Text language
Published July 14, 2024, midnight
Added to db Aug. 31, 2024, 1:12 a.m.
Last updated Nov. 19, 2024, 3:03 p.m.
Headline Fake AWS Packages Ship Command and Control Malware In JPEG Files
Title Fake AWS Packages Ship Command and Control Malware In JPEG Files
Detected Hints/Tags/Attributes 26/1/12
Source URLs
Redirection Url
Details Source https://blog.phylum.io/fake-aws-packages-ship-command-and-control-malware-in-jpeg-files/
URL Provider
Details Provider Source level domain
Details phylum.io blog.phylum.io
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 46 Phylum https://blog.phylum.io/rss/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 1 
cloudconvert.com
Details Domain 1 
clientinfo.name
Details File 174 
index.js
Details File 1 
loadformat.js
Details File 369 
console.log
Details File 1 
'logo1.jpg
Details File 1 
'logo2.jpg
Details File 1 
'logo3.jpg
Details File 1 
logo1.jpg
Details File 1 
logo3.jpg
Details File 4 
logo2.jpg
Details IPv4 1 
85.208.108.29