[RE027] Nhóm APT Mustang Panda có thể vẫn đang tiếp tục hoạt động tấn công vào các tổ chức tại Việt Nam
Tags
country: | China Russia |
attack-pattern: | Data Malware - T1587.001 Malware - T1588.001 Python - T1059.006 Server - T1583.004 Server - T1584.004 |
Common Information
Type | Value |
---|---|
UUID | a9ece2c4-86a1-427d-8cb5-f6c7d302e622 |
Fingerprint | 833e33ca7fce9ed7 |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | May 20, 2022, 10:53 a.m. |
Added to db | Oct. 23, 2023, 12:21 a.m. |
Last updated | Nov. 17, 2024, 5:58 p.m. |
Headline | UNKNOWN |
Title | [RE027] Nhóm APT Mustang Panda có thể vẫn đang tiếp tục hoạt động tấn công vào các tổ chức tại Việt Nam |
Detected Hints/Tags/Attributes | 31/2/17 |
Source URLs
URL Provider
RSS Feed
Details | Id | Enabled | Feed title | Url | Added to db |
---|---|---|---|---|---|
Details | 71 | ✔ | — | https://blog.vincss.net/feeds/posts/default?alt=rss | 2024-08-30 22:08 |
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 2 | www.locvnpt.com |
|
Details | File | 25 | log.dll |
|
Details | File | 13 | log.dat |
|
Details | File | 3 | ljat.dll |
|
Details | File | 748 | kernel32.dll |
|
Details | File | 14 | user.dat |
|
Details | sha256 | 3 | 3171285c4a846368937968bf53bc48ae5c980fe32b0de10cf0226b9122576f4e |
|
Details | sha256 | 3 | 2de77804e2bd9b843a826f194389c2605cfc17fd2fafde1b8eb2f819fc6c0c84 |
|
Details | sha256 | 2 | db0c90da56ad338fa48c720d001f8ed240d545b032b2c2135b87eb9a56b07721 |
|
Details | sha256 | 2 | 84893f36dac3bba6bf09ea04da5d7b9608b892f76a7c25143deebe50ecbbdc5d |
|
Details | sha256 | 2 | da28eb4f4a66c2561ce1b9e827cb7c0e4b10afe0ee3efd82e3cc2110178c9b7a |
|
Details | sha256 | 2 | 0e9e270244371a51fbb0991ee246ef34775787132822d85da0c99f10b17539c0 |
|
Details | sha256 | 2 | 3268dc1cd5c629209df16b120e22f601a7642a85628b82c4715fe2b9fbc19eb0 |
|
Details | sha256 | 2 | 02a9b3beaa34a75a4e2788e0f7038aaf2b9c633a6bdbfe771882b4b7330fa0c5 |
|
Details | IPv4 | 2 | 86.78.23.152 |
|
Details | IPv4 | 2 | 86.79.75.55 |
|
Details | IPv4 | 2 | 86.79.75.46 |