Permiso | Blog | Gather Round the Watering Hole, We have a story to tell
Tags
| country: | Portugal |
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Direct Credentials - T1589.001 Impersonation - T1656 Phishing - T1660 Phishing - T1566 Server - T1583.004 Server - T1584.004 Ssh - T1021.004 |
Common Information
| Type | Value |
|---|---|
| UUID | a4408900-b6e1-407d-b5dc-14d83c9c5940 |
| Fingerprint | 141534000e039706 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Jan. 31, 2023, midnight |
| Added to db | June 5, 2023, 11:30 a.m. |
| Last updated | Nov. 18, 2024, 11:24 a.m. |
| Headline | Summary |
| Title | Permiso | Blog | Gather Round the Watering Hole, We have a story to tell |
| Detected Hints/Tags/Attributes | 29/3/26 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 193 | ✔ | Cloud Chronicles | https://permiso.io/blog/rss.xml | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 2 | aws1-us-west.info |
|
| Details | Domain | 1 | pontos-itau.cloud |
|
| Details | File | 1 | aws1-us-west.inf |
|
| Details | File | 1 | erro.php |
|
| Details | File | 1 | idconta.html |
|
| Details | File | 1207 | index.php |
|
| Details | File | 207 | login.php |
|
| Details | File | 1 | loginjsf.php |
|
| Details | File | 1 | rondomico.php |
|
| Details | File | 1 | randomico.php |
|
| Details | md5 | 1 | 3b716d9f3e2e772907aae066d4d0f1a8 |
|
| Details | md5 | 1 | 338b3177e56cabdf43a6019dd04d2725 |
|
| Details | md5 | 1 | 30da6c683deabf32eb9d4877bdad2f06 |
|
| Details | md5 | 1 | 8e8b10174ce4515892b05ac61709bff4 |
|
| Details | md5 | 1 | 09afb958e39ffc05b5abd42b335a00db |
|
| Details | md5 | 1 | 27ce3722396a2516008c927f01973e82 |
|
| Details | sha1 | 1 | 3bb3675499ba5c65f4315ddc382352c1366e87b6 |
|
| Details | sha1 | 1 | e128fc62ec9ac913606ae25b749f7f4dc5f327d0 |
|
| Details | sha1 | 1 | 2bd744241613ffade44614e43b68f75e18894c0a |
|
| Details | sha1 | 1 | d2d249cfe7727dd05a3a1e5e93bcec98967cff25 |
|
| Details | sha1 | 1 | 734852654d89a9012d8b384ce61d421a8a313bf0 |
|
| Details | sha1 | 1 | 5687e7689ed076ae5354b25bb21c14615155133c |
|
| Details | IPv4 | 1 | 104.21.39.144 |
|
| Details | IPv4 | 1 | 5.8.33.175 |
|
| Details | IPv4 | 1 | 104.21.3.105 |
|
| Details | IPv4 | 1 | 190.83.43.37 |