ioc[.]one - OSINT Cyber Threat Intelligence Database

Monthly Threat Actor Group Intelligence Report, July 2024 (JPN) – Red Alert

Tags

maec-delivery-vectors:	Watering Hole
attack-pattern:	Botnet - T1583.005 Botnet - T1584.005 Phishing - T1660 Phishing - T1566 Powershell - T1059.001 Screen Capture - T1513 Visual Basic - T1059.005 Web Shell - T1505.003 Powershell - T1086 Screen Capture - T1113 Web Shell - T1100 Screen Capture

Show in Graph

Common Information

Type	Value
UUID	c1cf4863-b08c-4591-adb8-d8566c1a9e91
Fingerprint	74ddafd65c8eef4e
Analysis status	DONE
Considered CTI value	2
Text language
Published	Oct. 29, 2024, midnight
Added to db	Oct. 29, 2024, 10:36 a.m.
Last updated	Nov. 12, 2024, 11:52 a.m.
Headline	Monthly Threat Actor Group Intelligence Report, July 2024 (JPN)
Title	Monthly Threat Actor Group Intelligence Report, July 2024 (JPN) – Red Alert
Detected Hints/Tags/Attributes	37/2/16

Source URLs

	Redirection	Url
Details	Source	https://redalert.nshc.net/2024/10/29/monthly-threat-actor-group-intelligence-report-july-2024-jpn/

URL Provider

Details	Provider	Source level domain
Details	nshc.net	redalert.nshc.net

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	201	✔	Red Alert	https://redalert.nshc.net/feed/	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	CVE	48		cve-2024-38112
Details	Domain	32		nshc.net
Details	Email	27		service@nshc.net
Details	File	2		ターゲットのシステムに最終的にインストールされたマルウェアを通じてcmd.exe
Details	Threat Actor Identifier by Red Alert	17		SectorA04
Details	Threat Actor Identifier by Red Alert	50		SectorA05
Details	Threat Actor Identifier by Red Alert	7		SectorB07
Details	Threat Actor Identifier by Red Alert	6		SectorB10
Details	Threat Actor Identifier by Red Alert	4		SectorB17
Details	Threat Actor Identifier by Red Alert	4		SectorB28
Details	Threat Actor Identifier by Red Alert	16		SectorB38
Details	Threat Actor Identifier by Red Alert	30		SectorE04
Details	Threat Actor Identifier by Red Alert	33		SectorE05
Details	Threat Actor Identifier by Red Alert	30		SectorJ09
Details	Threat Actor Identifier by Red Alert	19		SectorJ64
Details	Threat Actor Identifier by Red Alert	13		SectorJ74