Finding the LNK: Techniques and methodology for advanced analysis with Velociraptor | Rapid7 Blog
Tags
maec-delivery-vectors: Watering Hole
attack-pattern: Data Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Powershell - T1059.001 Syncappvpublishingserver - T1216.002 Tool - T1588.002 Powershell - T1086
Show in Graph
Common Information
Type Value
UUID c000e0c4-a3c2-43a2-a32a-5031531dadd6
Fingerprint b4831a130d74cfa0
Analysis status DONE
Considered CTI value 0
Text language
Published Nov. 1, 2024, 1 p.m.
Added to db Nov. 1, 2024, 2:20 p.m.
Last updated Nov. 17, 2024, 6:54 p.m.
Headline Finding the LNK: Techniques and methodology for advanced analysis with Velociraptor
Title Finding the LNK: Techniques and methodology for advanced analysis with Velociraptor | Rapid7 Blog
Detected Hints/Tags/Attributes 41/2/4
Source URLs
Redirection Url
Details Source https://www.rapid7.com/blog/post/2024/11/01/finding-the-lnk-techniques-and-methodology-for-advanced-analysis-with-velociraptor/
Details Redirection https://blog.rapid7.com/2024/11/01/finding-the-lnk-techniques-and-methodology-for-advanced-analysis-with-velociraptor/
URL Provider
Details Provider Source level domain
Details rapid7.com blog.rapid7.com
Details rapid7.com www.rapid7.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 50 Rapid7 Cybersecurity Blog https://blog.rapid7.com/rss/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 1 
linkinfo.target
Details File 1 
linkinfo.tar
Details File 13 
syncappvpublishingserver.vbs
Details Threat Actor Identifier - APT 665 
APT29