ioc[.]one - OSINT Cyber Threat Intelligence Database

KQL KC7 — AzureCrest : Section 2 and 3

Tags

attack-pattern:

Domains - T1583.001 Domains - T1584.001 Ip Addresses - T1590.005 Ssh - T1021.004

Show in Graph

Common Information

Type	Value
UUID	8106763b-2552-4379-af7d-359ad43b8edd
Fingerprint	72831e5ba7a4cc6b
Analysis status	DONE
Considered CTI value	0
Text language
Published	Nov. 14, 2024, 10:40 a.m.
Added to db	Nov. 14, 2024, 12:01 p.m.
Last updated	Nov. 17, 2024, 6:54 p.m.
Headline	KQL KC7 — AzureCrest : Section 2 and 3
Title	KQL KC7 — AzureCrest : Section 2 and 3
Detected Hints/Tags/Attributes	25/1/16

Source URLs

	Redirection	Url
Details	Source	https://medium.com/@Abdalla116/kql-kc7-azurecrest-section-2-and-3-9b68d64a3f87?source=rss------cybersecurity-5

URL Provider

Details	Provider	Source level domain
Details	medium.com	medium.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	167	✔	Cybersecurity on Medium	https://medium.com/feed/tag/cybersecurity	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	1		takeyatimecarepartners.com
Details	Domain	1		emergencycarepartners.com
Details	Domain	2		azurecresthospital.med
Details	Domain	2		hospitalcomm.org
Details	Domain	1174		gmail.com
Details	Domain	1		heartburn.zip
Details	Email	1		jerry_jones@azurecresthospital.med
Details	Email	2		medstaffinfo@hospitalcomm.org
Details	Email	2		healthupdate@gmail.com
Details	File	2		new_healthcare_protocols.docm
Details	File	271		chrome.exe
Details	File	1		pediatric_care_update.docm
Details	File	1		heartburn.zip
Details	File	2125		cmd.exe
Details	File	55		putty.exe
Details	IPv4	1		93.142.203.80