Qakbot-affiliated actors distribute Ransom Night malware despite infrastructure takedown
Tags
country: Italy
maec-delivery-vectors: Watering Hole
attack-pattern: Data Add-Ins - T1137.006 Botnet - T1583.005 Botnet - T1584.005 Domains - T1583.001 Domains - T1584.001 Ingress Tool Transfer - T1544 Malware - T1587.001 Malware - T1588.001 Multi-Factor Authentication - T1556.006 Phishing - T1660 Phishing - T1566 Powershell - T1059.001 Remote File Copy - T1105 Powershell - T1086
Show in Graph
Common Information
Type Value
UUID 94633c49-f2ab-42e9-8e15-9bfc0a5569a9
Fingerprint 8d280d9d23b58f49
Analysis status DONE
Considered CTI value 0
Text language
Published Oct. 5, 2023, 7:10 a.m.
Added to db Oct. 5, 2023, 1:26 p.m.
Last updated Nov. 17, 2024, 6:54 p.m.
Headline Cisco Talos Intelligence Blog
Title Qakbot-affiliated actors distribute Ransom Night malware despite infrastructure takedown
Detected Hints/Tags/Attributes 53/3/14
Source URLs
Redirection Url
Details Source https://blog.talosintelligence.com/qakbot-affiliated-actors-distribute-ransom/
Details Source https://blog.talosintelligence.com/qakbot-affiliated-actors-distribute-ransom/?&web_view=true
URL Provider
Details Provider Source level domain
Details talosintelligence.com blog.talosintelligence.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 68 Cisco Talos Blog https://blog.talosintelligence.com/rss/ 2024-08-30 22:08
Details 99 Cyware News - Latest Cyber News https://cyware.com/allnews/feed 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details File 1208 
powershell.exe
Details File 25 
information.exe
Details File 1260 
explorer.exe
Details File 1 
attention-invoice-29-august.docx
Details File 4 
info.pdf
Details File 9 
2023.docx
Details File 29 
report.pdf
Details File 2 
bank.pdf
Details File 1 
mandatory-invoice-28-august.docx
Details File 2 
not-paid-invoice-26-august.pdf
Details File 1 
pay-invoices-29-august.pdf
Details File 1 
urgent-invoice-27-august.docx
Details IPv4 4 
89.23.96.203
Details MITRE ATT&CK Techniques 492 
T1105