ioc[.]one - OSINT Cyber Threat Intelligence Database

Inside a Cybercriminal’s Server: DDoS Tools, Spyware APKs, and Phishing Templates | Hunt.io

Tags

country:	Argentina Israel
maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Direct Credentials - T1589.001 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Python - T1059.006 Server - T1583.004 Server - T1584.004 Software - T1592.002 Tool - T1588.002 Connection Proxy - T1090 Sudo - T1169

Show in Graph

Common Information

Type	Value
UUID	995c1315-f312-488c-88ae-91cabce72b46
Fingerprint	8611b959997a208b
Analysis status	DONE
Considered CTI value	2
Text language
Published	Oct. 3, 2024, midnight
Added to db	Oct. 9, 2024, 8:21 p.m.
Last updated	Nov. 19, 2024, 3:12 a.m.
Headline	Inside a Cybercriminal’s Server: DDoS Tools, Spyware APKs, and Phishing Pages
Title	Inside a Cybercriminal’s Server: DDoS Tools, Spyware APKs, and Phishing Templates \| Hunt.io
Detected Hints/Tags/Attributes	72/3/35

Source URLs

	Redirection	Url
Details	Source	https://hunt.io/blog/inside-a-cybercriminal-s-server-ddos-tools-spyware-apks-and-phishing-pages

URL Provider

Details	Provider	Source level domain
Details	hunt.io	hunt.io

Attributes

Details	Type	#Events	Value
Details	Domain	57	hunt.io
Details	Domain	2	ddos.py
Details	Domain	1	aisrael.org
Details	Domain	3	deb.nodesource.com
Details	Domain	4135	github.com
Details	Domain	15	dl.google.com
Details	Domain	2	c2.py
Details	Domain	1	www.jcie.org.uk
Details	File	2	ddos.py
Details	File	1	ddos.txt
Details	File	144	requirements.txt
Details	File	2	c2.py
Details	File	2	content.aspx
Details	File	677	node.js
Details	File	8	chrome.apk
Details	File	1	rn.apk
Details	File	2	crypto.html
Details	File	5	ransomware.html
Details	Github username	1	hoaan1995
Details	sha256	2	7154e3d34508eb20ac372a65aca79b716398ff8be08cd53619c90f1d71e7e43c
Details	sha256	2	979047adffa36a68f41d95e5ed28b2bf77592419636c16f3fb888f8c57555bb2
Details	sha256	2	98d8e7539a94c278b1ba4a537953e74d03483f88ecb06f5c78038933d8e4b1d3
Details	sha256	2	ef5ee8cefc7f68680824fff6f8435bd857a0befca8b8dd534a23116bc5c340ed
Details	sha256	2	e509059e222b1c30c00854d44aaf8c7450cb5a2b7c39750ff2519e759952ba2a
Details	sha256	2	6613f6fcc52a2027e822f32f73d94a32b098eaf686dc059ed79fbe35f1afd35f
Details	sha256	2	d2047e97aa22d77f9946b60f846c8728c4fbd6a6b87013d47458f289db6a4e1f
Details	sha256	2	ee4db5932813e8ea41779f00398bad0e98cc4536c5b88eaa3a902aac27340a18
Details	IPv4	1	212.219.15.12
Details	IPv4	2	142.93.113.245
Details	IPv4	2	137.184.53.152
Details	Url	1	https://aisrael.org
Details	Url	1	https://deb.nodesource.com/setup_16.x
Details	Url	1	https://github.com/hoaan1995/zxcddos
Details	Url	3	https://dl.google.com/linux/direct/google-chrome-stable_current_amd64.deb
Details	Url	1	https://www.jcie.org.uk/content/content.aspx?id=26