Unearthing New Infrastructure by Revisiting Past Threat Reports
Tags
maec-delivery-vectors: Watering Hole
attack-pattern: Model Ip Addresses - T1590.005 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Powershell - T1059.001 Python - T1059.006 Server - T1583.004 Server - T1584.004 Powershell - T1086 Rootkit - T1014 Rootkit
Show in Graph
Common Information
Type Value
UUID 7629c55c-a0aa-4e69-9a08-788bcf4d3e8d
Fingerprint b5588abbe93e476f
Analysis status DONE
Considered CTI value 2
Text language
Published Oct. 3, 2024, midnight
Added to db Oct. 9, 2024, 8:27 p.m.
Last updated Nov. 14, 2024, 4:12 p.m.
Headline Unearthing New Infrastructure by Revisiting Past Threat Reports
Title Unearthing New Infrastructure by Revisiting Past Threat Reports
Detected Hints/Tags/Attributes 41/2/13
Source URLs
Redirection Url
Details Source https://hunt.io/blog/unearthing-new-infrastructure-by-revisiting-past-threat-reports
URL Provider
Details Provider Source level domain
Details hunt.io hunt.io
Attributes
Details Type #Events CTI Value
Details Domain 1 
secrss.com
Details Domain 4 
google.cn
Details Domain 3 
google.com.hk
Details Domain 1 
47477.py
Details Domain 57 
hunt.io
Details File 1 
47477.py
Details File 1 
0.ps1
Details File 1 
mngboot.exe
Details sha1 1 
f20d5e4417061e5d86a11f601f2368a91cb7847c
Details sha1 1 
981e6c1a002636b24810863357d7cc34b04e79c3
Details sha1 1 
9fe8436f8e1f6198b883404f0b59256b4f08bbed
Details IPv4 1 
192.253.234.80
Details IPv4 1 
206.238.196.240