Threat Source newsletter (April 21, 2022) — Sideloading apps is as safe as you make it
Tags
country: Russia
maec-delivery-vectors: Watering Hole
attack-pattern: Data Models Credentials - T1589.001 Firmware - T1592.003 Malware - T1587.001 Malware - T1588.001 Software - T1592.002 Vulnerabilities - T1588.006
Show in Graph
Common Information
Type Value
UUID acc2c815-83f4-4b43-8f70-b5b7ed1ec1de
Fingerprint 5c0c0dd297f7f73d
Analysis status DONE
Considered CTI value 2
Text language
Published April 21, 2022, 2 p.m.
Added to db Oct. 9, 2022, 4:09 p.m.
Last updated Oct. 23, 2024, 12:21 p.m.
Headline Vulnerability Information
Title Threat Source newsletter (April 21, 2022) — Sideloading apps is as safe as you make it
Detected Hints/Tags/Attributes 48/3/17
Source URLs
Redirection Url
Details Source https://blog.talosintelligence.com/2022/04/threat-source-newsletter-april-21-2022.html
URL Provider
Details Provider Source level domain
Details talosintelligence.com blog.talosintelligence.com
Attributes
Details Type #Events CTI Value
Details Domain 127 
pua.win
Details Domain 36 
85.lp.ret.sbx.tg
Details File 17 
img001.exe
Details File 11 
doc001.exe
Details File 3 
ntuser.vb
Details md5 37 
93fefc3e88ffb78abb36365fa5cf857c
Details md5 13 
3e10a74a7613d1cae4b9749d7ec93515
Details md5 11 
df11b3105df8d7c70e7b501e210e3cc3
Details md5 8 
2c8ea737a232fd03ab80db672d50a17a
Details md5 3 
10f1561457242973e0fed724eec92f8c
Details sha256 27 
e4973db44081591e9bff5117946defbef6041397e56164f485cf8ec57b1d8934
Details sha256 14 
5616b94f1a40b49096e2f8f78d646891b45c649473a5b67b8beddac46ad398e1
Details sha256 11 
59f1e69b68de4839c65b6e6d39ac7a272e2611ec1ed1bf73a4f455e2ca20eeaa
Details sha256 8 
125e12c8045689bb2a5dcad6fa2644847156dec8b533ee8a3653b432f8fd5645
Details sha256 3 
1a234656f81e870cdeb0e648a6b305a41452c405cca21124de26b54f79d55ad0
Details IPv6 36 
c::85
Details IPv6 63 
::1201