ioc[.]one - OSINT Cyber Threat Intelligence Database

The Naikon APT

Tags

country:	Malaysia Cambodia China Nepal Germany Hong Kong Indonesia Thailand Laos Myanmar Philippines Singapore Russia Vietnam Taiwan
maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Direct Credentials - T1589.001 Email Addresses - T1589.002 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Tool - T1588.002 Connection Proxy - T1090

Show in Graph

Common Information

Type	Value
UUID	8c2aa617-f4cb-4106-9225-f1a15463382e
Fingerprint	f5370eda0883eec8
Analysis status	DONE
Considered CTI value	2
Text language
Published	May 14, 2015, 3 a.m.
Added to db	Sept. 26, 2022, 9:32 a.m.
Last updated	Nov. 17, 2024, 12:53 p.m.
Headline	The Naikon APT
Title	The Naikon APT
Detected Hints/Tags/Attributes	85/3/48

Source URLs

	Redirection	Url
Details	Source	https://securelist.com/analysis/publications/69953/the-naikon-apt/
Details	Source	https://securelist.com/the-naikon-apt/69953/

URL Provider

Details	Provider	Source level domain
Details	securelist.com	securelist.com

Attributes

Details	Type	#Events	Value
Details	CVE	176	cve-2012-0158
Details	Domain	1	linda.googlenow.in
Details	Domain	1	admin0805.gnway.net
Details	Domain	1	free.googlenow.in
Details	Domain	2	frankhere.oicp.net
Details	Domain	1	telcom.dhtu.info
Details	Domain	1	laotel08.vicp.net
Details	Domain	1	greensky27.vicp.net
Details	Domain	2	googlemm.vicp.net
Details	Domain	1	peacesyou.imwork.net
Details	Domain	1	sayakyaw.xicp.net
Details	Domain	2	ubaoyouxiang.gicp.net
Details	Domain	1	htkg009.gicp.net
Details	Domain	1	kyawthumyin.xicp.net
Details	Domain	2	myanmartech.vicp.net
Details	Domain	1	test-user123.vicp.cc
Details	Domain	2	us.googlereader.pw
Details	Domain	1	net.googlereader.pw
Details	Domain	1	lovethai.vicp.net
Details	Domain	1	yahoo.goodns.in
Details	Domain	2	xl.findmy.pw
Details	Domain	1	xl.kevins.pw
Details	Domain	1	oraydns.googlesec.pw
Details	Domain	1	gov.yahoomail.pw
Details	Domain	1	pp.googledata.pw
Details	Domain	1	mlfjcjssl.gicp.net
Details	Domain	1	wm.ggpw.pw
Details	Domain	1	oooppp.findmy.pw
Details	Domain	1	cipta.kevins.pw
Details	Domain	1	phi.yahoomail.pw
Details	Domain	1	dd.googleoffice.in
Details	Domain	1	moziliafirefox.wicp.net
Details	Domain	2	bkav.imshop.in
Details	Domain	1	baomoi.coyo.eu
Details	Domain	1	macstore.vicp.cc
Details	Domain	1	downloadwindows.imwork.net
Details	Domain	1	vietkey.xicp.net
Details	Domain	1	baomoi.vicp.cc
Details	Domain	1	downloadwindow.imwork.net
Details	Domain	1	www.ttxvn.net
Details	Domain	1	vietlex.gnway.net
Details	File	1	dhtu.inf
Details	md5	1	d085ba82824c1e61e93e113a705b8e9a
Details	md5	1	b4a8dc9eb26e727eafb6c8477963829c
Details	md5	1	172fd9cce78de38d8cbcad605e3d6675
Details	md5	1	d74a7e7a4de0da503472f1f051b68745
Details	md5	1	93e84075bef7a11832d9c5aa70135dc6
Details	Threat Actor Identifier - APT	31	APT30