ioc[.]one - OSINT Cyber Threat Intelligence Database

Malicious PowerShell Targeting Cryptocurrency Browser Extensions - SANS Internet Storm Center

Tags

attack-pattern:

Powershell - T1059.001 Browser Extensions - T1176 Powershell - T1086

Show in Graph

Common Information

Type	Value
UUID	b5eb4cb7-e3b4-4a36-b774-9b216e3356ad
Fingerprint	24f94a20d3487ea
Analysis status	DONE
Considered CTI value	0
Text language
Published	June 22, 2022, midnight
Added to db	Oct. 24, 2023, 1:44 p.m.
Last updated	Sept. 3, 2024, 4:41 a.m.
Headline	Internet Storm Center
Title	Malicious PowerShell Targeting Cryptocurrency Browser Extensions - SANS Internet Storm Center
Detected Hints/Tags/Attributes	11/1/2

Source URLs

	Redirection	Url
Details	Source	https://isc.sans.edu/diary/rss/28772

URL Provider

Details	Provider	Source level domain
Details	sans.edu	isc.sans.edu

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	2		wmail-endpoint.com
Details	Url	1		https://chrome.google.com/webstore/detail/coinbase-wallet-extension/hnfanknocfeofbddgcijnmhnfnkdnaad