ioc[.]one - OSINT Cyber Threat Intelligence Database

Gafgyt Malware Targeting Docker Remote API Servers

Tags

cmtmf-attack-pattern:

Application Layer Protocol Command And Scripting Interpreter Network Denial Of Service

attack-pattern:

Data Application Layer Protocol - T1437 Botnet - T1583.005 Botnet - T1584.005 Command And Scripting Interpreter - T1623 Deploy Container - T1610 Dns Server - T1583.002 Dns Server - T1584.002 Escape To Host - T1611 Exploits - T1587.004 Exploits - T1588.005 Ingress Tool Transfer - T1544 Network Denial Of Service - T1464 System Network Configuration Discovery - T1422 Malware - T1587.001 Malware - T1588.001 Network Denial Of Service - T1498 Server - T1583.004 Server - T1584.004 Software - T1592.002 Unix Shell - T1059.004 Vulnerabilities - T1588.006 Unix Shell - T1623.001 Standard Application Layer Protocol - T1071 Command-Line Interface - T1059 External Remote Services - T1133 Remote File Copy - T1105 System Network Configuration Discovery - T1016 Denial Of Service External Remote Services

Show in Graph

Common Information

Type	Value
UUID	71eea305-c916-42e8-9979-ecd4e696dbe7
Fingerprint	bda634ddac772f87
Analysis status	DONE
Considered CTI value	2
Text language
Published	Dec. 3, 2024, midnight
Added to db	Dec. 3, 2024, 11:27 a.m.
Last updated	Dec. 23, 2024, 3:13 p.m.
Headline	Gafgyt Malware Targeting Docker Remote API Servers
Title	Gafgyt Malware Targeting Docker Remote API Servers
Detected Hints/Tags/Attributes	73/2/10

Source URLs

	Redirection	Url
Details	Source	https://www.trendmicro.com/en_us/research/24/l/gafgyt-malware-targeting-docker-remote-api-servers.html

URL Provider

Details	Provider	Source level domain
Details	trendmicro.com	www.trendmicro.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	119	✔	Trend Micro Research, News and Perspectives	https://feeds.feedburner.com/TrendMicroSimplySecurity	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	3		cve.sh
Details	IPv4	319		8.8.8.8
Details	IPv4	6		178.215.238.31
Details	MITRE ATT&CK Techniques	17		T1610
Details	MITRE ATT&CK Techniques	743		T1059
Details	MITRE ATT&CK Techniques	13		T1611
Details	MITRE ATT&CK Techniques	480		T1071
Details	MITRE ATT&CK Techniques	524		T1105
Details	MITRE ATT&CK Techniques	259		T1016
Details	MITRE ATT&CK Techniques	62		T1498