Malware statistics to ELK - Threat hunting with hints of incident response
Tags
attack-pattern: Data Malicious File - T1204.002 Malware - T1587.001 Malware - T1588.001 Python - T1059.006 Server - T1583.004 Server - T1584.004
Show in Graph
Common Information
Type Value
UUID 923451f0-d40a-4291-a797-06a4042509dd
Fingerprint aaac00160fbeafda
Analysis status DONE
Considered CTI value 0
Text language
Published Feb. 16, 2023, 9:14 p.m.
Added to db Aug. 13, 2023, 2:50 a.m.
Last updated Nov. 17, 2024, 10:43 p.m.
Headline Malware statistics to ELK
Title Malware statistics to ELK - Threat hunting with hints of incident response
Detected Hints/Tags/Attributes 22/1/13
Source URLs
Redirection Url
Details Source https://threathunt.blog/malware-statistics-to-elk/?utm_source=rss&utm_medium=rss&utm_campaign=malware-statistics-to-elk
URL Provider
Details Provider Source level domain
Details threathunt.blog threathunt.blog
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 252 | Threat hunting with hints of incident response https://threathunt.blog/feed/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 75 
tria.ge
Details Domain 97 
abuse.ch
Details Domain 3 
mb-api.abuse.ch
Details Domain 8 
response.read
Details Domain 46 
datetime.now
Details Domain 19 
www.hybrid-analysis.com
Details Domain 2 
resp.read
Details File 5 
parse.url
Details File 42 
request.url
Details Url 3 
https://mb-api.abuse.ch/api/v1
Details Url 1 
https://www.hybrid-analysis.com/api/v2/feed/latest
Details Url 1 
https://tria.ge/api/v0/search?query=from:{fromdate}
Details Url 1 
https://tria.ge/api/v0/samples