ioc[.]one - OSINT Cyber Threat Intelligence Database

CyberDefenders — Redline Writeup

Tags

cmtmf-attack-pattern:	Code Injection
maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Code Injection - T1540 Exploits - T1587.004 Exploits - T1588.005 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Rundll32 - T1218.011 Connection Proxy - T1090 Rundll32 - T1085 Sudo - T1169

Show in Graph

Common Information

Type	Value
UUID	6ac080fc-0eeb-4e07-82f9-3060bc14f7be
Fingerprint	3e2cdd8138a40691
Analysis status	DONE
Considered CTI value	-2
Text language
Published	July 25, 2023, 6:11 p.m.
Added to db	July 25, 2023, 8:29 p.m.
Last updated	Nov. 17, 2024, 10:40 p.m.
Headline	CyberDefenders — Redline Writeup
Title	CyberDefenders — Redline Writeup
Detected Hints/Tags/Attributes	40/3/10

Source URLs

	Redirection	Url
Details	Source	https://medium.com/@definesgraphics/cyberdefenders-redline-writeup-b65705b0c0ec?source=rss------cybersecurity-5

URL Provider

Details	Provider	Source level domain
Details	medium.com	medium.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	167	✔	Cybersecurity on Medium	https://medium.com/feed/tag/cybersecurity	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	45		cyberdefenders.org
Details	Domain	3		criminalip.io
Details	File	5		oneetx.exe
Details	File	18		windows.pst
Details	File	1018		rundll32.exe
Details	File	2		outline.exe
Details	File	49		process.exe
Details	File	1		c:\users\tammam\appdata\local\temp\c3912af058\oneetx.exe
Details	File	25		windows.ps
Details	IPv4	8		77.91.124.20