ioc[.]one - OSINT Cyber Threat Intelligence Database

Unmasking the Cyber Mirage: A Journey Through Gulf Region Cyberattacks

Tags

cmtmf-attack-pattern:	Application Layer Protocol Command And Scripting Interpreter Exploit Public-Facing Application
maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Application Layer Protocol - T1437 Command And Scripting Interpreter - T1623 Credentials - T1589.001 Exfiltration Over C2 Channel - T1646 Exploit Public-Facing Application - T1377 Exploits - T1587.004 Exploits - T1588.005 Password Filter Dll - T1556.002 Phishing - T1660 Phishing - T1566 Powershell - T1059.001 Protocol Tunneling - T1572 Scheduled Task - T1053.005 Server - T1583.004 Server - T1584.004 Spearphishing Link - T1566.002 Web Shell - T1505.003 Tool - T1588.002 Vulnerabilities - T1588.006 Standard Application Layer Protocol - T1071 Command-Line Interface - T1059 Exfiltration Over Command And Control Channel - T1041 Exploit Public-Facing Application - T1190 Exploitation For Privilege Escalation - T1068 Password Filter Dll - T1174 Powershell - T1086 Scheduled Task - T1053 Web Shell - T1100 Exploit Public-Facing Application

Show in Graph

Common Information

Type	Value
UUID	b887d206-4a7e-4620-8b3e-227560b1e36a
Fingerprint	acd5b1daa1218ec5
Analysis status	DONE
Considered CTI value	2
Text language
Published	Oct. 19, 2024, 1:04 p.m.
Added to db	Oct. 19, 2024, 3:56 p.m.
Last updated	Nov. 17, 2024, 6:56 p.m.
Headline	Unmasking the Cyber Mirage: A Journey Through Gulf Region Cyberattacks
Title	Unmasking the Cyber Mirage: A Journey Through Gulf Region Cyberattacks
Detected Hints/Tags/Attributes	95/3/21

Source URLs

	Redirection	Url
Details	Redirection	https://infosecwriteups.com/unmasking-the-cyber-mirage-a-journey-through-gulf-region-cyberattacks-cc75e7e60184?gi=930d7f098393&source=rss------malware-5
Details	Source	https://medium.com/@cybershieldjourney/unmasking-the-cyber-mirage-a-journey-through-gulf-region-cyberattacks-cc75e7e60184?source=rss------malware-5
Details	Redirection	https://medium.com/m/global-identity-2?redirectUrl=https%3A%2F%2Finfosecwriteups.com%2Funmasking-the-cyber-mirage-a-journey-through-gulf-region-cyberattacks-cc75e7e60184%3Fsource%3Drss------malware-5
Details	Redirection	https://infosecwriteups.com/unmasking-the-cyber-mirage-a-journey-through-gulf-region-cyberattacks-cc75e7e60184?source=rss------malware-5
Details	Redirection	https://infosecwriteups.com/unmasking-the-cyber-mirage-a-journey-through-gulf-region-cyberattacks-cc75e7e60184?source=rss------cybersecurity-5
Details	Redirection	https://medium.com/m/global-identity-2?redirectUrl=https%3A%2F%2Finfosecwriteups.com%2Funmasking-the-cyber-mirage-a-journey-through-gulf-region-cyberattacks-cc75e7e60184%3Fsource%3Drss------cybersecurity-5
Details	Redirection	https://infosecwriteups.com/unmasking-the-cyber-mirage-a-journey-through-gulf-region-cyberattacks-cc75e7e60184?gi=5cfe193ed735&source=rss------cybersecurity-5
Details	Source	https://medium.com/@cybershieldjourney/unmasking-the-cyber-mirage-a-journey-through-gulf-region-cyberattacks-cc75e7e60184?source=rss------cybersecurity-5

URL Provider

Details	Provider	Source level domain
Details	infosecwriteups.com	infosecwriteups.com
Details	medium.com	medium.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	167	✔	Cybersecurity on Medium	https://medium.com/feed/tag/cybersecurity	2024-08-30 22:08
Details	171	✔	Malware on Medium	https://medium.com/feed/tag/malware	2024-08-30 22:08

Attributes

Details	Type	#Events	Value
Details	CVE	45	cve-2024-30088
Details	Domain	47	microsoft.exchange
Details	Domain	280	thehackernews.com
Details	File	1208	powershell.exe
Details	File	1	'ngrok.exe
Details	File	1	c:\users\public\e.xml
Details	File	13	webservices.dll
Details	File	99	c:\windows\explorer.exe
Details	File	4	u.ps1
Details	File	7	temp.ps1
Details	File	21	ngrok.exe
Details	File	3	e.xml
Details	File	3	defaults.aspx
Details	File	14	logout.aspx
Details	MITRE ATT&CK Techniques	542	T1190
Details	MITRE ATT&CK Techniques	695	T1059
Details	MITRE ATT&CK Techniques	422	T1041
Details	MITRE ATT&CK Techniques	95	T1572
Details	MITRE ATT&CK Techniques	208	T1068
Details	MITRE ATT&CK Techniques	183	T1566.002
Details	MITRE ATT&CK Techniques	444	T1071