ioc[.]one - OSINT Cyber Threat Intelligence Database

RDoS attacks by fake Fancy Bear hit banks in multiple locations

Tags

country:

Show in Graph

Common Information

Type	Value
UUID	b6e9fdc7-30b3-4d47-8091-38f5eb55540c
Fingerprint	551488bb81611eca
Analysis status	DONE
Considered CTI value	1
Text language
Published	May 11, 2019, midnight
Added to db	Aug. 30, 2024, 11:31 p.m.
Last updated	Nov. 17, 2024, 6:54 p.m.
Headline	UNKNOWN
Title	RDoS attacks by fake Fancy Bear hit banks in multiple locations
Detected Hints/Tags/Attributes	42/1/105

Source URLs

	Redirection	Url
Details	Source	https://blog.group-ib.com/fakeapt28

URL Provider

Details	Provider	Source level domain
Details	group-ib.com	blog.group-ib.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	36	✔	Blog Group-IB	https://blog.group-ib.com/rss.xml	2024-08-30 22:08

Attributes

Details	Type	#Events	Value
Details	Domain	24	ctemplar.com
Details	Email	1	sednit@ctemplar.com
Details	IPv4	1	213.193.124.178
Details	IPv4	1	73.222.102.43
Details	IPv4	1	141.213.30.81
Details	IPv4	1	93.148.227.167
Details	IPv4	1	90.79.181.162
Details	IPv4	1	128.9.168.175
Details	IPv4	1	82.112.195.37
Details	IPv4	1	80.219.165.93
Details	IPv4	1	179.219.122.179
Details	IPv4	1	128.255.242.214
Details	IPv4	1	135.23.41.7
Details	IPv4	1	141.219.40.200
Details	IPv4	1	134.102.89.135
Details	IPv4	1	207.61.192.156
Details	IPv4	1	96.47.194.168
Details	IPv4	1	50.246.36.5
Details	IPv4	1	185.44.131.72
Details	IPv4	1	1.224.87.99
Details	IPv4	1	185.44.128.135
Details	IPv4	1	122.155.210.111
Details	IPv4	1	93.190.144.101
Details	IPv4	1	77.245.135.76
Details	IPv4	1	87.238.149.14
Details	IPv4	1	137.99.120.107
Details	IPv4	1	184.67.233.66
Details	IPv4	1	181.126.191.95
Details	IPv4	1	95.180.32.125
Details	IPv4	1	181.51.57.46
Details	IPv4	1	77.120.40.141
Details	IPv4	1	188.0.152.204
Details	IPv4	1	195.35.85.169
Details	IPv4	1	177.0.33.194
Details	IPv4	1	47.51.133.130
Details	IPv4	1	92.83.149.135
Details	IPv4	1	31.211.144.80
Details	IPv4	1	13.94.104.145
Details	IPv4	1	78.131.204.106
Details	IPv4	1	109.199.51.209
Details	IPv4	1	89.218.62.12
Details	IPv4	1	54.36.172.201
Details	IPv4	1	40.76.194.159
Details	IPv4	1	146.0.80.173
Details	IPv4	1	138.201.31.169
Details	IPv4	1	87.251.185.197
Details	IPv4	1	43.252.18.154
Details	IPv4	1	190.218.75.12
Details	IPv4	1	73.215.166.26
Details	IPv4	1	186.4.206.69
Details	IPv4	1	160.226.137.18
Details	IPv4	1	98.242.135.12
Details	IPv4	1	181.46.188.24
Details	IPv4	1	24.139.113.96
Details	IPv4	1	50.206.77.90
Details	IPv4	1	161.43.205.202
Details	IPv4	1	93.170.188.147
Details	IPv4	1	202.160.16.144
Details	IPv4	1	220.130.80.212
Details	IPv4	1	1.225.103.192
Details	IPv4	1	186.249.86.98
Details	IPv4	1	81.25.62.153
Details	IPv4	1	73.184.131.152
Details	IPv4	1	186.249.85.62
Details	IPv4	1	78.96.4.97
Details	IPv4	1	62.112.106.10
Details	IPv4	1	91.211.245.17
Details	IPv4	1	179.52.58.71
Details	IPv4	1	167.59.10.111
Details	IPv4	1	103.63.190.66
Details	IPv4	1	101.109.67.131
Details	IPv4	1	54.171.57.68
Details	IPv4	1	104.130.2.169
Details	IPv4	1	104.225.15.131
Details	IPv4	1	107.0.160.33
Details	IPv4	1	116.196.93.71
Details	IPv4	1	123.56.73.58
Details	IPv4	1	125.75.132.53
Details	IPv4	1	162.151.72.86
Details	IPv4	1	173.225.97.59
Details	IPv4	1	180.100.133.21
Details	IPv4	1	186.233.204.15
Details	IPv4	1	194.165.135.37
Details	IPv4	1	201.20.109.156
Details	IPv4	1	207.99.1.106
Details	IPv4	1	216.15.163.130
Details	IPv4	1	220.243.237.14
Details	IPv4	1	222.216.190.151
Details	IPv4	1	24.103.42.134
Details	IPv4	1	42.123.67.10
Details	IPv4	1	62.32.103.141
Details	IPv4	1	69.174.3.94
Details	IPv4	1	70.88.196.178
Details	IPv4	1	71.71.127.49
Details	IPv4	1	77.81.107.173
Details	IPv4	1	77.81.107.189
Details	IPv4	1	77.81.110.208
Details	IPv4	1	77.81.110.36
Details	IPv4	1	85.17.68.133
Details	IPv4	1	89.42.31.105
Details	IPv4	1	93.107.107.147
Details	IPv4	1	98.197.252.15
Details	IPv6	1	135::3283
Details	Threat Actor Identifier - APT	783	APT28
Details	Threat Actor Identifier by SecureWorks	15	TG-4127