ioc[.]one - OSINT Cyber Threat Intelligence Database

Threat Source Newsletter (Jan. 27, 2022)

Tags

cmtmf-attack-pattern:	Masquerading
country:	Canada North Korea Russia Ukraine
maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Malicious File - T1204.002 Malware - T1587.001 Malware - T1588.001 Masquerading - T1655 Server - T1583.004 Server - T1584.004 Software - T1592.002 Vulnerabilities - T1588.006 Masquerading - T1036 Masquerading

Show in Graph

Common Information

Type	Value
UUID	74733411-3760-4a61-9cba-5a9e4ef37361
Fingerprint	b5b23901cc77f6ad
Analysis status	DONE
Considered CTI value	0
Text language
Published	Jan. 27, 2022, 2 p.m.
Added to db	Oct. 9, 2022, 4:17 p.m.
Last updated	Oct. 31, 2024, 11:39 a.m.
Headline	Vulnerability Information
Title	Threat Source Newsletter (Jan. 27, 2022)
Detected Hints/Tags/Attributes	59/4/20

Source URLs

	Redirection	Url
Details	Source	https://blog.talosintelligence.com/2022/01/threat-source-newsletter-jan-27-2022.html

URL Provider

Details	Provider	Source level domain
Details	talosintelligence.com	blog.talosintelligence.com

Attributes

Details	Type	#Events	Value
Details	Domain	127	pua.win
Details	Domain	41	95.sbx.tg
Details	Domain	8	w32.8639fd3ef8-95.sbx.tg
Details	File	6	swupdater.exe
Details	File	6	1b259d8ca9.wav
Details	File	41	santivirusservice.exe
Details	File	30	saservice.exe
Details	File	1	vsb2nasl7.dll
Details	File	1	a4de11b029.wav
Details	File	6	runner.exe
Details	md5	6	a5e345518e6817f72c9b409915741689
Details	md5	37	34560233e751b7e95f155b6f61e7419a
Details	md5	29	8193b63313019b614d5be721c538486b
Details	md5	1	eb2f5e1b8f818cf6a7dafe78aea62c93
Details	md5	9	fe3659119e683e1aa07b2346c1f215af
Details	sha256	20	a196c6b8ffcb97ffb276d04f354696e2391311db3841ae16c8c9f56f36a38e92
Details	sha256	21	dcbbae5a1c61dbbbb7dcd6dc5dd1eb1169f5329958d38b58c3fd9384081c9b78
Details	sha256	12	923eb77b3c9e11d6c56052318c119c1a22d11ab71675e6b95d05eeb73d1accd6
Details	sha256	12	9ef7dbd3da51332a78eff19146d21c82957821e464e8133e9594a07d716d892d
Details	IPv6	40	::95