Don't get BITTER about being targeted -- fight back with the help of the community.
Tags
| country: | China Nepal Pakistan |
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Data Domains - T1583.001 Domains - T1584.001 Malvertising - T1583.008 Malware - T1587.001 Malware - T1588.001 |
Common Information
| Type | Value |
|---|---|
| UUID | 6f5a5f73-c070-4be6-b3e4-a10853b11e7d |
| Fingerprint | 375f88c6f9e70ecd |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Feb. 29, 2024, noon |
| Added to db | Aug. 31, 2024, 10:59 a.m. |
| Last updated | Nov. 12, 2024, 11:48 a.m. |
| Headline | Search |
| Title | Don't get BITTER about being targeted -- fight back with the help of the community. |
| Detected Hints/Tags/Attributes | 46/3/161 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 443 | ✔ | StrikeReady Labs on StrikeReady Blog | https://blog.strikeready.com/contributors/strikeready-labs/index.xml | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | isndatumhost.com |
|
| Details | Domain | 1 | kaatmusiclab.com |
|
| Details | Domain | 1 | commonlifesupport.com |
|
| Details | Domain | 1 | onlinehealthmatters.info |
|
| Details | Domain | 1 | bensnewfashionstyles.com |
|
| Details | Domain | 1 | wbfashionshow.com |
|
| Details | Domain | 1 | dracjohnsupport.com |
|
| Details | Domain | 1 | jlmusiklearn.com |
|
| Details | Domain | 3 | erswuniconsharing.com |
|
| Details | Domain | 3 | folkmusicstreams.com |
|
| Details | Domain | 3 | novasapothecary.com |
|
| Details | Domain | 3 | daveonenewtestpanel.com |
|
| Details | Domain | 2 | xiuxonlinehost.com |
|
| Details | Domain | 1 | mxsiclienteventlog.com |
|
| Details | Domain | 2 | farlookclinic.com |
|
| Details | Domain | 1 | mikeyourevents.com |
|
| Details | Domain | 1 | northgenstudios.com |
|
| Details | Domain | 1 | upulllogistics.com |
|
| Details | Domain | 1 | w32timeslicesvc.net |
|
| Details | Domain | 1 | jjwappconsole.com |
|
| Details | Domain | 1 | hallanskylarks.com |
|
| Details | Domain | 1 | thenewmusictunes.com |
|
| Details | Domain | 3 | farleysmxpph.com |
|
| Details | Domain | 1 | lroliviapanel.com |
|
| Details | Domain | 1 | paulalesiastyles.com |
|
| Details | Domain | 1 | newlbfashions.com |
|
| Details | Domain | 1 | myprivatehostsvc.com |
|
| Details | Domain | 2 | diyefosterfeeds.com |
|
| Details | Domain | 2 | webmailcgwip.com |
|
| Details | Domain | 1 | cogniviosphere.net |
|
| Details | Domain | 1 | novaoutletclub.com |
|
| Details | Domain | 1 | mobisharestock.com |
|
| Details | Domain | 1 | dnldsalecraze.com |
|
| Details | Domain | 1 | adamsresearchshare.com |
|
| Details | Domain | 1 | updnangelgroup.com |
|
| Details | Domain | 1 | ellearningstore.com |
|
| Details | Domain | 2 | wcnsappword.com |
|
| Details | File | 1 | cvrss.jpg |
|
| Details | File | 165 | csrss.exe |
|
| Details | File | 1 | turn.msi |
|
| Details | File | 1 | c:\users\public\music\desk.txt |
|
| Details | File | 1 | ssu.php |
|
| Details | File | 1 | application.chm |
|
| Details | File | 1 | crime_record_nov_2023.chm |
|
| Details | File | 1 | order.chm |
|
| Details | File | 1 | enquiry.docx |
|
| Details | File | 1 | rute.php |
|
| Details | File | 1 | rawaldigital_com_pk.chm |
|
| Details | File | 1 | ring.php |
|
| Details | File | 3 | fighters.chm |
|
| Details | File | 1 | rig.php |
|
| Details | File | 1 | jeff.php |
|
| Details | File | 1 | schedule.chm |
|
| Details | File | 47 | api.php |
|
| Details | File | 1 | 382c64eae475fbd849914e37624f58892f72fd97517de88d368535213816961d.chm |
|
| Details | File | 1 | ccs20230522.chm |
|
| Details | File | 2 | mac.php |
|
| Details | File | 1 | projects.chm |
|
| Details | File | 49 | info.php |
|
| Details | File | 1 | countries.chm |
|
| Details | File | 2 | cone.php |
|
| Details | File | 1 | gls.php |
|
| Details | File | 1 | маягт.chm |
|
| Details | File | 1 | gret.php |
|
| Details | File | 1 | schedulejan24.chm |
|
| Details | File | 2 | hfo.php |
|
| Details | File | 2 | tre.php |
|
| Details | File | 1 | 20240123cn-eng.chm |
|
| Details | File | 1 | vbn.php |
|
| Details | File | 1 | ret.php |
|
| Details | File | 1 | 日程安排.chm |
|
| Details | File | 1 | jsp.php |
|
| Details | File | 1 | 6c77f1.msi |
|
| Details | File | 1 | wmncvis.exe |
|
| Details | File | 1 | ujpe.jpg |
|
| Details | File | 1 | hytrs.exe |
|
| Details | File | 1 | cn20230920.rar |
|
| Details | File | 1 | qbv.php |
|
| Details | File | 1 | cn20230920.chm |
|
| Details | File | 1 | slides.ppt |
|
| Details | File | 1 | far.php |
|
| Details | File | 1 | rag.php |
|
| Details | File | 1 | frst.php |
|
| Details | File | 1 | duh.php |
|
| Details | File | 1 | kna.php |
|
| Details | File | 1 | training.chm |
|
| Details | File | 9 | js.php |
|
| Details | File | 1 | 军贸采购合同.docx |
|
| Details | File | 1 | 附件-会议.chm |
|
| Details | File | 1 | 邀請函.chm |
|
| Details | File | 1 | pcs.chm |
|
| Details | File | 6 | css.php |
|
| Details | File | 1 | attachment.chm |
|
| Details | File | 3 | validate.php |
|
| Details | File | 1 | letter.chm |
|
| Details | File | 2 | wave.php |
|
| Details | File | 2 | 2022.chm |
|
| Details | File | 1 | fall.php |
|
| Details | File | 1 | project.chm |
|
| Details | File | 1 | shopper.php |
|
| Details | File | 2 | notice.rar |
|
| Details | File | 1 | mack.php |
|
| Details | File | 2 | notice.pdf |
|
| Details | File | 1 | cmd1.php |
|
| Details | File | 1 | abroad_training_nominations_jan_2024.rar |
|
| Details | File | 1 | abroad_training_nominations_jan_2024.pdf |
|
| Details | File | 1 | winegt.vbs |
|
| Details | File | 2 | meeting.chm |
|
| Details | File | 1 | visors.php |
|
| Details | File | 3 | scene.chm |
|
| Details | File | 1 | china.docx |
|
| Details | sha256 | 1 | 20aa80472d58350f1f7d61026b0ee97932ef6f6a607706034863c6a878d83d2a |
|
| Details | sha256 | 1 | f2f783a72e955ecbcddc448764921a753bd1ac4dd14128200bb4866021287ae7 |
|
| Details | sha256 | 1 | 5a12c312fa06cce9aa92496fb69cfec6f814d0d3622e1ad17c2fafd79d64a087 |
|
| Details | sha256 | 1 | 22dd82c94cadf5cf31b3e9519e8149d4a68fe13bac13eaef91bf283a4beb8101 |
|
| Details | sha256 | 1 | 62e42d3e778fd79b7989966b057c24c141531f871a7c73703b35858ab3d13f47 |
|
| Details | sha256 | 1 | 83ca53918af3ea659d767e489a1e42ea97879e3e534f68c4edc7d0eb77f44204 |
|
| Details | sha256 | 1 | 2fe49d93b5dcf19a2b60e91756246b051adc89303151c9e0b875c3f21c698be9 |
|
| Details | sha256 | 1 | 95990cac90d19e6fe48bff85a72148c35facbb2e61b1f326d85e82603240a741 |
|
| Details | sha256 | 1 | 561ace43f77de135d5b3286bd2ef270b185d0abdba15d442551211068f8bbf11 |
|
| Details | sha256 | 1 | f598f3bd60a39ad5861f145e82b33acde146b6ed5c2ffd9c6862ca1ea635afbf |
|
| Details | sha256 | 1 | 636c2a16f94b5e30e725527a1bd2215399f98f17cc08580bc7358751b9eb2944 |
|
| Details | sha256 | 2 | 382c64eae475fbd849914e37624f58892f72fd97517de88d368535213816961d |
|
| Details | sha256 | 1 | 4f94e7bd1515e0025293fb5a041bc41c20a7dd15a6dd0bc7076145a69d5238c0 |
|
| Details | sha256 | 2 | 490eccbb2712e7752a0ba193f783de9d333f67ba1fde5bb130280c5abf77555a |
|
| Details | sha256 | 2 | a2e3f464e1c39909f47f0b837b04e1256061f4a9698678e097b4dd09aa4de9c1 |
|
| Details | sha256 | 1 | 9ad342489796e18fb385d5874d9a9867418a3b01d6f65307e9c183ec04494a70 |
|
| Details | sha256 | 1 | 7f8dec191ee184b7b776dc24841a24291020a0338ede80bebb34c2bc4e6bc47c |
|
| Details | sha256 | 2 | 445c801e857329e1740745b4949349a02971530c4f5d28a8e9e5489c3516933a |
|
| Details | sha256 | 1 | c77ae7c9533eddbb5f2b80889590436aac7df6166abefc51d5a65f775e6258dc |
|
| Details | sha256 | 1 | 876122fcc9e0d5ebd42df9e93d37ad23d9f521e6077e9cb8b05862ae157757e3 |
|
| Details | sha256 | 1 | e96a5ab01c95bd9e5b266379e7365bb1c07549b56ae7992d32e09728c4221db4 |
|
| Details | sha256 | 1 | 3f7747266721c8494f8722a8fa9c20368c714002db3b3741fd807e665c8c2ba7 |
|
| Details | sha256 | 1 | c0d926b33ae2351a9a528ba4d7ca13be7d55ba3455d52c5a69c8b381ade28ed0 |
|
| Details | sha256 | 1 | 825abcdd216c1f717951b02cf8d91ab6b3bdf915fb5532ebb400e15e6625e0af |
|
| Details | sha256 | 1 | 66a73b1b3b51a1c6a56db2d20cff9af3d1362b989989b5d9543d2e9b92ac9a3d |
|
| Details | sha256 | 1 | c24efc7c4dafd4f0b39e7ae7e84627fbd0fb766019b820cb11edbb8dda54de66 |
|
| Details | sha256 | 1 | c492bdf749b0a229cb256e1ee04e1c48b7472a351f04605415c11d40063cd14a |
|
| Details | sha256 | 1 | f8749de274e9f7656ca51edb78aaaea56913aa35557866e5a6e1cb0773082c99 |
|
| Details | sha256 | 1 | 094305681d64999d29d95e7839ad801b3a8c479fb08d2493f00bf4687c646012 |
|
| Details | sha256 | 1 | e1b1b65b06b015f18b572e6b509f75d6b7c17b1c60a41d1adeb61e05f41bb3e1 |
|
| Details | sha256 | 2 | 1ea9e9ecd0e5b0ac4aedc1b5515484a372dd8aefb1dbeb00f243a0a3ce40fab9 |
|
| Details | sha256 | 1 | e8b7fffa0a2d8a2051c3272bfaefffe7174707756cb8469c0f985bfa03fce476 |
|
| Details | sha256 | 1 | eaa013b863bda3bd76c6f6073cc304002d1a9f317c8fba9c362534aff7dd1b0b |
|
| Details | sha256 | 1 | 48c715cb2a2dd70ece6c4dea58522e9f8c2b9265394f5f06d8d3ccb497071939 |
|
| Details | sha256 | 1 | 986ff32b5fb4409495cc82aae223712a185d0f36cdcc6c7b81213c12704d3b28 |
|
| Details | sha256 | 1 | b4ab34aa754c979e6173d8b73f1d56611fd4e82801dd4a11cc7ce7a37f3db6c1 |
|
| Details | sha256 | 1 | fec00455734451b722f3037e0a668c280c5ddbec1d905c647bf1a7f153856860 |
|
| Details | sha256 | 1 | b514635f569791316e1c55057f63f596847e23c0fa1ca0f751c5a2135f72b8ff |
|
| Details | sha256 | 1 | b0f8c8e48d4a1e78550bda551745219613cc3dca7068da86688b95051d7c249e |
|
| Details | sha256 | 1 | 510b3de50c8dfc20a3085166f373a5f12475c7915984de0afa3cc0bff0c2580d |
|
| Details | sha256 | 1 | 35a7feb273ad532b79a5b9e0536642c23c888ec9338369b2159d6f42e2b626e7 |
|
| Details | sha256 | 1 | 408292710999abc4d37f23a6672ef407d70ffb4dc2e3e030a5ec705735c1f8bd |
|
| Details | sha256 | 1 | 6d33065e91a1159142ba61e4982190bfe02235b60808a33275ff9ccc688b7f23 |
|
| Details | sha256 | 1 | 92307952ceb92be981ba8c1c83febf11e6379e1ee492436ee7caff08bb290fbb |
|
| Details | sha256 | 1 | 15161231be575991c70252cc33cdd2c41b5c3b255d6510790bef32be9b6ff5a2 |
|
| Details | sha256 | 1 | f5eec8ae7f8646328b9de05931fadc3f693c0a3f0f7d1aa0a90071445072dd3f |
|
| Details | sha256 | 1 | 8cfc803459682619e97f172e9cca33458fdf38b0b9ca09f8ccbc7df16f09240f |
|
| Details | sha256 | 1 | 06dd9a7aebe0995b23526f04eabc85db3d2d98def9be58c1012a1280f5aa63f1 |
|
| Details | sha256 | 2 | 5b90d4c397e575965ed49082981fd34272b5e1da010057f6ebcdd4f53a409ad0 |
|
| Details | Threat Actor Identifier - APT-C | 22 | APT-C-08 |