First Known Phishing Attack Against PyPi Users
Tags
maec-delivery-vectors: | Watering Hole |
attack-pattern: | Credentials - T1589.001 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Python - T1059.006 |
Common Information
Type | Value |
---|---|
UUID | bd30ff1f-0c5b-4edc-8804-c6898e9a7282 |
Fingerprint | c03039598852d709 |
Analysis status | DONE |
Considered CTI value | 0 |
Text language | |
Published | Aug. 31, 2022, 5:16 p.m. |
Added to db | June 5, 2023, 10:30 a.m. |
Last updated | Sept. 2, 2024, 2:10 a.m. |
Headline | First Known Phishing Attack Against PyPi Users |
Title | First Known Phishing Attack Against PyPi Users |
Detected Hints/Tags/Attributes | 26/2/14 |
Source URLs
Redirection | Url | |
---|---|---|
Details | Source | https://checkmarx.com/blog/first-known-phishing-attack-against-pypi-users/ |
URL Provider
RSS Feed
Details | Id | Enabled | Feed title | Url | Added to db |
---|---|---|---|---|---|
Details | 82 | ✔ | Checkmarx | https://checkmarx.com/feed/ | 2024-08-30 22:08 |
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 5 | linkedopports.com |
|
Details | Domain | 4 | python-release.com |
|
Details | Domain | 2 | ledgdown.com |
|
Details | Domain | 2 | ledgersetup.zip |
|
Details | File | 2 | ledgersetup.zip |
|
Details | File | 2 | resp.php |
|
Details | sha256 | 2 | 60434af3ebe924efabc96558e6c8d8176bf4eb06dd6cc47b4c491da9964be874 |
|
Details | sha256 | 2 | 8e97c6883e7af5cc1f88ac03197d62298906ac4a35a789d94cc9fde45ee7ea13 |
|
Details | Url | 3 | https://python-release.com/python-install.scr |
|
Details | Url | 2 | https://python-release.com |
|
Details | Url | 2 | https://ledgdown.com/ledgersetup.zip |
|
Details | Url | 2 | https://ledgdown.com |
|
Details | Url | 2 | https://linkedopports.com |
|
Details | Url | 2 | https://linkedopports.com/pyp/resp.php?live=installation |