ioc[.]one - OSINT Cyber Threat Intelligence Database

Legislation alone isn’t enough to stop spyware

Tags

country:	Canada China Germany Hungary Spain Poland Taiwan
maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Botnet - T1583.005 Botnet - T1584.005 Contact List - T1636.003 Email Accounts - T1585.002 Email Accounts - T1586.002 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Powershell - T1059.001 Software - T1592.002 Web Shell - T1505.003 Tool - T1588.002 Powershell - T1086 Web Shell - T1100

Show in Graph

Common Information

Type	Value
UUID	bf2efd49-2c1d-407c-9fbe-68ba59bcaf4e
Fingerprint	ed0c0d167a37beff
Analysis status	DONE
Considered CTI value	2
Text language
Published	June 1, 2023, 2:06 p.m.
Added to db	June 5, 2023, 10:26 a.m.
Last updated	Nov. 1, 2024, 1:18 p.m.
Headline	Cisco Talos Intelligence Blog
Title	Legislation alone isn’t enough to stop spyware
Detected Hints/Tags/Attributes	82/3/19

Source URLs

	Redirection	Url
Details	Source	https://blog.talosintelligence.com/threat-source-newsletter-june-1-23-spyware/

URL Provider

Details	Provider	Source level domain
Details	talosintelligence.com	blog.talosintelligence.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	68	✔	Cisco Talos Blog	https://blog.talosintelligence.com/rss/	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	35		w32.auto
Details	Domain	127		pua.win
Details	Domain	36		85.lp.ret.sbx.tg
Details	File	1		a8a6d67140ac6cfec88b748b8057e958a825224fcc619ed95750acbd1d7a4848-dropped.bin
Details	File	2		kmsauto.exe
Details	File	17		img001.exe
Details	File	1		kmsauto_net.exe
Details	md5	2		8cb26e5b687cafb66e65e4fc71ec4d63
Details	md5	2		a2d60b5c01a305af1ac76c95e12fdf4a
Details	md5	37		93fefc3e88ffb78abb36365fa5cf857c
Details	md5	13		3e10a74a7613d1cae4b9749d7ec93515
Details	md5	5		fd743b55d530e0468805de0e83758fe9
Details	sha256	2		a8a6d67140ac6cfec88b748b8057e958a825224fcc619ed95750acbd1d7a4848
Details	sha256	2		f3d5815e844319d78da574e2ec5cd0b9dd0712347622f1122f1cb821bb421f8f
Details	sha256	27		e4973db44081591e9bff5117946defbef6041397e56164f485cf8ec57b1d8934
Details	sha256	14		5616b94f1a40b49096e2f8f78d646891b45c649473a5b67b8beddac46ad398e1
Details	sha256	5		161937ed1502c491748d055287898dd37af96405aeff48c2500b834f6739e72d
Details	IPv6	36		c::85
Details	IPv6	63		::1201