ioc[.]one - OSINT Cyber Threat Intelligence Database

Prince of Persia: The Sands of Foudre - Intezer

Tags

country:	Iran Panama
maec-delivery-vectors:	Watering Hole
attack-pattern:	Domains - T1583.001 Domains - T1584.001 Malware - T1587.001 Malware - T1588.001 Rundll32 - T1218.011 Software - T1592.002 Rundll32 - T1085

Show in Graph

Common Information

Type	Value
UUID	6bc6da9a-2b22-4d74-8b0c-0b6e3dd46c32
Fingerprint	37342b138c87e5e5
Analysis status	DONE
Considered CTI value	2
Text language
Published	Aug. 17, 2018, 12:31 p.m.
Added to db	Jan. 18, 2023, 11:24 p.m.
Last updated	Nov. 12, 2024, 3:58 a.m.
Headline	Prince of Persia: The Sands of Foudre
Title	Prince of Persia: The Sands of Foudre - Intezer
Detected Hints/Tags/Attributes	30/3/25

Source URLs

	Redirection	Url
Details	Source	https://www.intezer.com/blog/research/prince-of-persia-the-sands-of-foudre/
Details	Source	https://www.intezer.com/prince-of-persia-the-sands-of-foudre/

URL Provider

Details	Provider	Source level domain
Details	intezer.com	www.intezer.com

Attributes

Details	Type	#Events	Value
Details	Domain	14	analyze.intezer.com
Details	Domain	4	dynu.net
Details	Domain	1	ns1.cf75d89b.space
Details	Domain	1	ns2.cf75d89b.space
Details	Domain	1	fe19f97f.space
Details	Domain	1	891ec9e9.space
Details	Domain	1	177a5c4a.space
Details	Domain	1	607d6cdc.space
Details	Domain	1	f8b65751.space
Details	Domain	1	8fb167c7.space
Details	Domain	1	1f0e7a56.space
Details	Domain	1	68094ac0.space
Details	Domain	1	1d8bfc20.space
Details	File	1	i7234.dll
Details	File	127	c:\windows\system32\rundll32.exe
Details	sha256	1	c38533b85e4750e6f649cc407a50031de0984a8f3d5b90600824915433a5e218
Details	sha256	1	a02ce6768662ef250d248c158f26129dd4dfab30845d07962fbfe7aa19b16db9
Details	sha256	1	c7279a32329ebb1ab5c1cdbfbddb5a167e1505340c3ca72e837a222ff92665a6
Details	sha256	1	cef161a220e019acc9ae79924a477c64aac2d6cc04126bb3f4a9f8452515f40f
Details	sha256	1	dbed2ca2e9c53dd72c3ed3ce60e603c6c91c80152f924d97d8514781e6d9e26f
Details	sha256	1	d2645d16e869addd099727c3c58438c2f6935d92c00f9e4b237ef498de1dad87
Details	IPv4	1	185.61.154.26
Details	Url	8	https://analyze.intezer.com/#
Details	Windows Registry Key	2	HKEY_CURRENT_USER\Software\temp
Details	Windows Registry Key	582	HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run