Threat Source newsletter for Sept. 24, 2020
Tags
| country: | Germany Iran Poland |
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Botnet - T1583.005 Botnet - T1584.005 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Python - T1059.006 Vulnerabilities - T1588.006 |
Common Information
| Type | Value |
|---|---|
| UUID | 8ddc0cea-2dba-4859-a4b6-37b67718c344 |
| Fingerprint | b530098881f7aeb9 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Sept. 24, 2020, 2 p.m. |
| Added to db | Oct. 9, 2022, 4:08 p.m. |
| Last updated | Nov. 17, 2024, 6:55 p.m. |
| Headline | Vulnerability Information |
| Title | Threat Source newsletter for Sept. 24, 2020 |
| Detected Hints/Tags/Attributes | 67/3/15 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 41 | 95.sbx.tg |
|
| Details | Domain | 31 | 5a5226262.auto |
|
| Details | File | 7 | wupxarch.exe |
|
| Details | File | 10 | eter.exe |
|
| Details | File | 41 | santivirusservice.exe |
|
| Details | File | 18 | tempmf582901854.exe |
|
| Details | File | 1122 | svchost.exe |
|
| Details | File | 7 | dropper.py |
|
| Details | md5 | 1 | bd4b03e6127a34ecab890f6eb1546634 |
|
| Details | md5 | 58 | 8c80dd97c37525927c1e549cb59bcbf3 |
|
| Details | md5 | 4 | 73d1de319c7d61e0333471c82f2fc104 |
|
| Details | md5 | 43 | e2ea315d9a83e7577053f52c974f6a5a |
|
| Details | md5 | 1 | bc26fd7a0b7fe005e116f5ff2227ea4d |
|
| Details | IPv6 | 40 | ::95 |
|
| Details | IPv6 | 63 | ::1201 |