Attributing I-SOON: Private Contractor Linked to Multiple Chinese State-sponsored Groups
Tags
| country: | China |
| attack-pattern: | Data Domains - T1583.001 Domains - T1584.001 Email Addresses - T1589.002 Ip Addresses - T1590.005 |
Common Information
| Type | Value |
|---|---|
| UUID | 5cdecd0d-14d3-4c5c-9d6d-738d4004561d |
| Fingerprint | 71dd86a7cf121f8c |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | March 20, 2024, midnight |
| Added to db | Aug. 31, 2024, 9:56 a.m. |
| Last updated | Nov. 17, 2024, 5:56 p.m. |
| Headline | Attributing I-SOON: Private Contractor Linked to Multiple Chinese State-sponsored Groups |
| Title | Attributing I-SOON: Private Contractor Linked to Multiple Chinese State-sponsored Groups |
| Detected Hints/Tags/Attributes | 27/2/47 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 359 | ✔ | Recorded Future | https://www.recordedfuture.com/feed | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 2 | 1ds.me |
|
| Details | Domain | 2 | antspam-mail.services |
|
| Details | Domain | 2 | bayantele.xyz |
|
| Details | Domain | 4 | dnslookup.services |
|
| Details | Domain | 2 | docx.1ds.me |
|
| Details | Domain | 2 | gmail.isooncloud.com |
|
| Details | Domain | 3 | gmailapp.me |
|
| Details | Domain | 2 | i-soon.net |
|
| Details | Domain | 2 | ip.1ds.me |
|
| Details | Domain | 2 | lengmo.myds.me |
|
| Details | Domain | 2 | lengmo.net |
|
| Details | Domain | 2 | linercn.org |
|
| Details | Domain | 6 | livehost.live |
|
| Details | Domain | 5 | mailnotes.online |
|
| Details | Domain | 2 | mailteso.online |
|
| Details | Domain | 2 | mpt.buzz |
|
| Details | Domain | 2 | mptcdn.com |
|
| Details | Domain | 2 | mydigi.site |
|
| Details | Domain | 2 | news.1ds.me |
|
| Details | Domain | 2 | wcuhk.livehost.live |
|
| Details | Domain | 2 | web.goog1eweb.com |
|
| Details | Domain | 2 | whkedu.dnslookup.services |
|
| Details | Domain | 2 | www.gmailapp.me |
|
| Details | Domain | 2 | www.sw-hk.services |
|
| Details | Domain | 1174 | gmail.com |
|
| Details | Domain | 6 | 139.com |
|
| Details | Domain | 99 | qq.com |
|
| Details | Domain | 272 | outlook.com |
|
| Details | Domain | 179 | hotmail.com |
|
| Details | Domain | 85 | 163.com |
|
| Details | 2 | l3n6m0@gmail.com |
||
| Details | 2 | yetiddbb@qq.com |
||
| Details | 2 | girvtr@gmail.com |
||
| Details | 2 | liang007@outlook.com |
||
| Details | 2 | gird4r@gmail.com |
||
| Details | 3 | girder1992@hotmail.com |
||
| Details | 4 | 6060841@qq.com |
||
| Details | 2 | leungguodong@outlook.com |
||
| Details | 2 | l3nor@hotmail.com |
||
| Details | IPv4 | 3 | 1.192.194.162 |
|
| Details | IPv4 | 3 | 66.98.127.105 |
|
| Details | IPv4 | 3 | 101.219.17.111 |
|
| Details | IPv4 | 4 | 118.31.3.116 |
|
| Details | IPv4 | 3 | 171.88.142.148 |
|
| Details | IPv4 | 3 | 171.88.143.37 |
|
| Details | IPv4 | 3 | 171.88.143.72 |
|
| Details | IPv4 | 3 | 221.13.74.218 |