Iranian Cyber Group OilRig Targets Iraqi Government in Sophisticated Malware Attack - RedPacket Security
Tags
cmtmf-attack-pattern: Masquerading
country: Iran
attack-pattern: Data Dns - T1071.004 Dns - T1590.002 Email Accounts - T1585.002 Email Accounts - T1586.002 Malware - T1587.001 Malware - T1588.001 Masquerading - T1655 Powershell - T1059.001 Ssh - T1021.004 Masquerading - T1036 Powershell - T1086 Masquerading
Show in Graph
Common Information
Type Value
UUID 91e085f8-42d2-4826-b764-e9a60230b3e3
Fingerprint 85879d978f398591
Analysis status DONE
Considered CTI value 1
Text language
Published Sept. 12, 2024, 12:02 p.m.
Added to db Sept. 12, 2024, 1:05 p.m.
Last updated Nov. 13, 2024, 7:21 p.m.
Headline Iranian Cyber Group OilRig Targets Iraqi Government in Sophisticated Malware Attack
Title Iranian Cyber Group OilRig Targets Iraqi Government in Sophisticated Malware Attack - RedPacket Security
Detected Hints/Tags/Attributes 54/3/5
Source URLs
Redirection Url
Details Source https://www.redpacketsecurity.com/iranian-cyber-group-oilrig-targets-iraqi-government-in-sophisticated-malware-attack/
URL Provider
Details Provider Source level domain
Details redpacketsecurity.com www.redpacketsecurity.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 361 RedPacket Security https://www.redpacketsecurity.com/feed/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 4 
gov-iq.net
Details File 7 
avamer.pdf
Details File 5 
iraqidoc.docx
Details File 9 
cachehttp.dll
Details Threat Actor Identifier - APT 258 
APT34