ASEC Weekly Phishing Email Threat Trends (March 26th, 2023 – April 1st, 2023) - ASEC BLOG
Tags
| cmtmf-attack-pattern: | Phishing For Information |
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Data Credentials - T1589.001 Internal Spearphishing - T1534 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Phishing For Information - T1598 Server - T1583.004 Server - T1584.004 Software - T1592.002 |
Common Information
| Type | Value |
|---|---|
| UUID | 6227969d-d1fb-4351-b130-e19c360afe47 |
| Fingerprint | eede9c1a2d5c7bcd |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | April 11, 2023, 4:34 p.m. |
| Added to db | April 11, 2023, 1:07 p.m. |
| Last updated | Nov. 15, 2024, 2:53 a.m. |
| Headline | ASEC Weekly Phishing Email Threat Trends (March 26th, 2023 – April 1st, 2023) |
| Title | ASEC Weekly Phishing Email Threat Trends (March 26th, 2023 – April 1st, 2023) - ASEC BLOG |
| Detected Hints/Tags/Attributes | 78/3/178 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://asec.ahnlab.com/en/51222/ |
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 17 | ✔ | ASEC | https://asec.ahnlab.com/en/feed/ | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 42 | co.kr |
|
| Details | Domain | 2 | 03.22.2023.one |
|
| Details | Domain | 2 | gmail.one |
|
| Details | Domain | 2 | securemessage.zip |
|
| Details | Domain | 4 | prices.zip |
|
| Details | Domain | 2 | 04352562561652.zip |
|
| Details | Domain | 2 | nutribrasalimentos.zip |
|
| Details | Domain | 2 | booking.zip |
|
| Details | Domain | 2 | accessories.zip |
|
| Details | Domain | 2 | spec02781.zip |
|
| Details | Domain | 3 | swift.zip |
|
| Details | Domain | 4 | 0023.zip |
|
| Details | Domain | 2 | goods.zip |
|
| Details | Domain | 3 | 000.zip |
|
| Details | Domain | 8 | quotation.zip |
|
| Details | Domain | 4 | soa.zip |
|
| Details | Domain | 2 | naturaverdebeauty.com |
|
| Details | Domain | 59 | formspree.io |
|
| Details | Domain | 2 | neduet.hosting.acm.org |
|
| Details | Domain | 47 | submit-form.com |
|
| Details | Domain | 2 | razarmanagement.com |
|
| Details | Domain | 4 | ns2.wrsc.org |
|
| Details | Domain | 2 | tzp.com.pk |
|
| Details | Domain | 2 | archerhall.com |
|
| Details | Domain | 2 | www.calvellirappresentanze.com |
|
| Details | Domain | 4 | escolagirassol.com.br |
|
| Details | Domain | 2 | hobbyless-features.000webhostapp.com |
|
| Details | Domain | 2 | gooddreams.co.in |
|
| Details | Domain | 2 | elhdlwfa2o4.sa.com |
|
| Details | Domain | 2 | undebauched-hyphens.000webhostapp.com |
|
| Details | Domain | 4 | alemadistones.com |
|
| Details | Domain | 2 | firp.governo.ao |
|
| Details | Domain | 2 | cambiamarcia.net |
|
| Details | Domain | 6 | www.nrwolff.com.br |
|
| Details | Domain | 2 | qleapinnovations.com |
|
| Details | Domain | 2 | izmirlist.com |
|
| Details | File | 2 | parceldocumentdhl.htm |
|
| Details | File | 5 | order.htm |
|
| Details | File | 13 | 989345874598.html |
|
| Details | File | 2 | 2023-03-24.html |
|
| Details | File | 4 | gm53726192.pdf |
|
| Details | File | 2 | 2023ledprice.html |
|
| Details | File | 5 | account.html |
|
| Details | File | 16 | com.html |
|
| Details | File | 2 | message_790311_832743609.htm |
|
| Details | File | 8 | shippingdocs.htm |
|
| Details | File | 4 | inquiry.htm |
|
| Details | File | 2 | deposit_payment_confirmation.pdf |
|
| Details | File | 2 | doc_20230327-3938.pdf |
|
| Details | File | 2 | 8347630147.html |
|
| Details | File | 6 | data-privacy-securemessageatt.html |
|
| Details | File | 2 | message_982155_128090224.htm |
|
| Details | File | 16 | copies.htm |
|
| Details | File | 8 | copy.gz |
|
| Details | File | 10 | invoice.html |
|
| Details | File | 2 | message_033902_557044732.htm |
|
| Details | File | 4 | shipping_doc.html |
|
| Details | File | 2 | securemessage.zip |
|
| Details | File | 2 | scan_10026870-1.htm |
|
| Details | File | 2 | plist_admins.htm |
|
| Details | File | 2 | settlement-payment-on-hold.pdf |
|
| Details | File | 4 | shipping_doc.htm |
|
| Details | File | 4 | scan_document.html |
|
| Details | File | 2 | instruction.pdf |
|
| Details | File | 4 | swift_confirmation_copy.pdf |
|
| Details | File | 5 | quotation.pdf |
|
| Details | File | 2 | 02112022093630.pdf |
|
| Details | File | 7 | details.html |
|
| Details | File | 2 | message_567890_498055656.htm |
|
| Details | File | 2 | pb2ed146hb2m-047.html |
|
| Details | File | 4 | kr.html |
|
| Details | File | 2 | fax_mail.zip |
|
| Details | File | 2 | pt947234.htm |
|
| Details | File | 2 | waybilldoc_8945655902.html |
|
| Details | File | 2 | 2022061602-kd-ref.pdf |
|
| Details | File | 2 | message_381082_213244471.htm |
|
| Details | File | 2 | message_924733_817031910.htm |
|
| Details | File | 2 | 91273.pdf |
|
| Details | File | 4 | prices.zip |
|
| Details | File | 4 | 7221hkt.htm |
|
| Details | File | 2 | voicemail_03232023.htm |
|
| Details | File | 4 | newinvoiceorderstatement.html |
|
| Details | File | 6 | sheet.html |
|
| Details | File | 2 | purchaseordersheet.html |
|
| Details | File | 18 | order.html |
|
| Details | File | 4 | payment.htm |
|
| Details | File | 2 | remittance.html |
|
| Details | File | 2 | securedoc_06593415.html |
|
| Details | File | 2 | securedoc_39067527.html |
|
| Details | File | 2 | securedoc_93717448.html |
|
| Details | File | 2 | securedoc_23992084.html |
|
| Details | File | 2 | securedoc_90978661.html |
|
| Details | File | 2 | securedoc_67152574.html |
|
| Details | File | 2 | myplp.exe |
|
| Details | File | 2 | superplp.gif |
|
| Details | File | 2 | private__plp.jpg |
|
| Details | File | 2 | my_plp.gif |
|
| Details | File | 2 | cool-action.gif |
|
| Details | File | 2 | 04352562561652.zip |
|
| Details | File | 2 | 00776122.docx |
|
| Details | File | 2 | march.iso |
|
| Details | File | 2 | res_agb_erofame_en_2023.zip |
|
| Details | File | 2 | nutribrasalimentos.zip |
|
| Details | File | 2 | 103_9078212345trf.gz |
|
| Details | File | 2 | needed__________________pif.arj |
|
| Details | File | 2 | booking.zip |
|
| Details | File | 2 | 10344_cnee.docx |
|
| Details | File | 2 | advice.jpg |
|
| Details | File | 2 | accessories.zip |
|
| Details | File | 2 | spec02781.zip |
|
| Details | File | 7 | 2023.gz |
|
| Details | File | 2 | scan_docs_004521.docx |
|
| Details | File | 3 | swift.zip |
|
| Details | File | 4 | 0023.zip |
|
| Details | File | 2 | 564302.docx |
|
| Details | File | 2 | lm-0107pdf.rar |
|
| Details | File | 2 | 20230331-28510837398013.rar |
|
| Details | File | 2 | goods.zip |
|
| Details | File | 4 | 102235516763.rar |
|
| Details | File | 2 | pi-1820q.xls |
|
| Details | File | 3 | 000.zip |
|
| Details | File | 2 | 4970528.xls |
|
| Details | File | 2 | receipt_1022355161763.rar |
|
| Details | File | 4 | feb.docx |
|
| Details | File | 2 | order-chwu2si22-233534.xls |
|
| Details | File | 2 | greatpctrs.exe |
|
| Details | File | 2 | updated_list.7z |
|
| Details | File | 2 | retiro-pdf.gz |
|
| Details | File | 2 | great-photos.gif |
|
| Details | File | 2 | wild__action.jpg |
|
| Details | File | 2 | wild-plp.jpg |
|
| Details | File | 2 | priv__scene.jpg |
|
| Details | File | 4 | fuck__images.gif |
|
| Details | File | 2 | great__img.jpg |
|
| Details | File | 2 | prv_action.exe |
|
| Details | File | 2 | priv__act.exe |
|
| Details | File | 2 | fuck__pctrs.jpg |
|
| Details | File | 2 | notice_pdf.rar |
|
| Details | File | 8 | quotation.zip |
|
| Details | File | 6 | po.xls |
|
| Details | File | 8 | rfq.exe |
|
| Details | File | 2 | 45-pdf.gz |
|
| Details | File | 4 | soa.zip |
|
| Details | File | 2 | lists2.pdf |
|
| Details | File | 4 | myscene.jpg |
|
| Details | File | 2 | enquiry_2703_023.rar |
|
| Details | File | 16 | next.php |
|
| Details | IPv4 | 2 | 192.185.224.69 |
|
| Details | MITRE ATT&CK Techniques | 100 | T1598 |
|
| Details | MITRE ATT&CK Techniques | 83 | T1534 |
|
| Details | Url | 2 | https://naturaverdebeauty.com/justld/next.php |
|
| Details | Url | 20 | https://formspree.io/f/myyazkbv |
|
| Details | Url | 2 | https://neduet.hosting.acm.org/pdf.php |
|
| Details | Url | 2 | https://submit-form.com/rs8vx7dd |
|
| Details | Url | 2 | https://razarmanagement.com/192.185.224.69/,/ue/postdhll.php |
|
| Details | Url | 4 | http://ns2.wrsc.org/sites/all/libraries/elfinder/files/index/kugo/fedexpress.php |
|
| Details | Url | 4 | https://formspree.io/f/xgebzovk |
|
| Details | Url | 2 | http://tzp.com.pk/wp-admin/fte.php |
|
| Details | Url | 2 | https://archerhall.com/wp-admin/exc/excell.php |
|
| Details | Url | 2 | https://www.calvellirappresentanze.com/wp-content/plugins/topxoh/index/index/1/add.php |
|
| Details | Url | 4 | https://escolagirassol.com.br/dd/ddhl.php |
|
| Details | Url | 2 | https://formspree.io/f/mdovedpp |
|
| Details | Url | 2 | https://formspree.io/f/moqzlyod |
|
| Details | Url | 2 | https://hobbyless-features.000webhostapp.com/pdf.php |
|
| Details | Url | 2 | https://gooddreams.co.in:/smhh/webapp.php |
|
| Details | Url | 2 | https://elhdlwfa2o4.sa.com/horn/log1234567.php |
|
| Details | Url | 2 | https://undebauched-hyphens.000webhostapp.com/dhlc.php |
|
| Details | Url | 2 | https://formspree.io/f/moqzllag |
|
| Details | Url | 4 | https://alemadistones.com/secure/citizen/exo/css/fx/cloudlog.php |
|
| Details | Url | 2 | https://submit-form.com/nheac2e9 |
|
| Details | Url | 2 | https://firp.governo.ao/plauge/vmxll.php |
|
| Details | Url | 2 | https://formspree.io/f/mdovdokw |
|
| Details | Url | 2 | https://cambiamarcia.net/wp-includes/pdf.php |
|
| Details | Url | 2 | https://formspree.io/f/xnqyzrzj |
|
| Details | Url | 2 | https://www.nrwolff.com.br/wp-admin/maint/bv/mxl.php |
|
| Details | Url | 2 | https://qleapinnovations.com/peeking/peeking.php |
|
| Details | Url | 2 | https://archerhall.com/wp-admin/php/pdf.php |
|
| Details | Url | 2 | https://izmirlist.com//2ae/jotform.php |