Winos4.0 Framework IOCs - SEC-1275-1
Tags
| attack-pattern: | Domains - T1583.001 Domains - T1584.001 |
Common Information
| Type | Value |
|---|---|
| UUID | 889c2e06-e259-40af-ab09-76af56f2a83a |
| Fingerprint | ba10eeb31d0e356d |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Nov. 7, 2024, midnight |
| Added to db | Nov. 7, 2024, 7:57 a.m. |
| Last updated | Nov. 8, 2024, 9:22 p.m. |
| Headline | Winos4.0 Framework IOCs |
| Title | Winos4.0 Framework IOCs - SEC-1275-1 |
| Detected Hints/Tags/Attributes | 7/1/35 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://1275.ru/ioc/7880/winos4-0-framework-iocs/?mtm_campaign=rss |
URL Provider
| Details | Provider | Source level domain |
|---|---|---|
| Details | 1275.ru | 1275.ru |
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 8 | ✔ | Архивы IOC - SEC-1275-1 | https://1275.ru/ioc/feed | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 8 | ad59t82g.com |
|
| Details | File | 6 | you.dll |
|
| Details | File | 40 | libcef.dll |
|
| Details | File | 2 | d.bmp |
|
| Details | File | 1 | h.bmp |
|
| Details | File | 1 | lon2.bmp |
|
| Details | File | 2 | t2.bmp |
|
| Details | File | 2 | text.bmp |
|
| Details | sha256 | 2 | 033965f3063bc2a45e5bd3a57ffce098b9308668d70b9b3063f066df5f3e55dd |
|
| Details | sha256 | 2 | 04edb6585118d09205ee693a54249ed68ebbf68b3fc3d711d2aa0c815b7b3a23 |
|
| Details | sha256 | 2 | 1354796b44239eef177431584848029161c232401a9580481dbfb5196465250e |
|
| Details | sha256 | 2 | 1a48347f5fc7c63cc03f30810f961133bd3912caf16ac403e11bc3491117181d |
|
| Details | sha256 | 2 | 284cf31ebb4e7dc827374934ad0726f72e7aaef49cadc6aa59d2a2ff672d3fe8 |
|
| Details | sha256 | 2 | 37104f3b3646f5ffc8c78778ec5fdc924ebb5e5756cb162c0e409d24bedf406d |
|
| Details | sha256 | 2 | 3fae0495fd0acc7722c2482c0ef3c6ab9ee41acbcaac46a8933c7b36b8896378 |
|
| Details | sha256 | 2 | 51c7f320b95a64bcff050da86c7884bb4f89a5d00073d747f0da7345c8a4501f |
|
| Details | sha256 | 2 | 80b1d6411e29e51e54f20f46856d31b28e087e9244693e65d022b680c4ba00ce |
|
| Details | sha256 | 2 | 8748bb7512f16f8122779171686abe0fa0060f1126298290e240457dc90d0aa7 |
|
| Details | sha256 | 2 | 8f0079a41a262536f502b4b57473effd6ab7955bc2d6e99e0910df18e990a9f6 |
|
| Details | sha256 | 2 | 922512203c7b9fa67e8db2f588ff4945f63e20c4bc0aafccdba749a442808ace |
|
| Details | sha256 | 2 | a27dc6e5aea0c3168117cfde2adb01f73f20881fc6485b768915216c46115064 |
|
| Details | sha256 | 2 | a30b68ed39c1517d10b747c2fcd7a72cb12dc8f434203243e7c50df0e56d17d0 |
|
| Details | sha256 | 2 | b2a3aaf4eb4deb85462e1ee39c84caf2830091c1bff8014ad13147897b25e24c |
|
| Details | sha256 | 2 | b763d77b7aaa83d6c4a9e749cd3c7638127e755d3dc843b15b6c4afce1f468b5 |
|
| Details | sha256 | 2 | bef32532923903b12f04b54dd06ec81661f706c3b1397bc77c45492db3919248 |
|
| Details | sha256 | 2 | c9817d415d34ea3ae07094dae818ffe8e3fb1d5bcb13eb0e65fd361b7859eda7 |
|
| Details | sha256 | 2 | dcdbc3b246233befa25b67909a01b835f1875f4047875ef13f1b801cd2da6fcd |
|
| Details | sha256 | 2 | f41236ab5ceffc5379fcf444de358cbc6f67beb31d0e0fd3f7ed0f501eb740ff |
|
| Details | sha256 | 2 | ff0c28c81cd0afd78f78c79863c9f4c8afd9d3877a213dfc2dbb55360b7d93ab |
|
| Details | IPv4 | 5 | 202.79.173.4 |
|
| Details | Url | 2 | http://ad59t82g.com/1/d.bmp |
|
| Details | Url | 2 | http://ad59t82g.com/1/h.bmp |
|
| Details | Url | 2 | http://ad59t82g.com/1/lon2.bmp |
|
| Details | Url | 2 | http://ad59t82g.com/1/t2.bmp |
|
| Details | Url | 2 | http://ad59t82g.com/1/text.bmp |