ioc[.]one - OSINT Cyber Threat Intelligence Database

Phantom of the Opaera: New KASPERAGENT Malware Campaign

Tags

country:	Egypt Argentina Israel United States Of America
maec-delivery-vectors:	Watering Hole
attack-pattern:	Direct Technical Blogs Dns - T1071.004 Dns - T1590.002 Domains - T1583.001 Domains - T1584.001 Malicious File - T1204.002 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Social Media - T1593.001 Tool - T1588.002

Show in Graph

Common Information

Type	Value
UUID	cafa34fa-0051-477b-8d52-03c26f60a6a9
Fingerprint	90c89bc12b3bc3c2
Analysis status	DONE
Considered CTI value	2
Text language
Published	June 14, 2017, midnight
Added to db	Sept. 26, 2022, 9:30 a.m.
Last updated	Oct. 15, 2024, 11:28 p.m.
Headline	Phantom of the Opaera: New KASPERAGENT Malware Campaign
Title	Phantom of the Opaera: New KASPERAGENT Malware Campaign
Detected Hints/Tags/Attributes	52/3/19

Source URLs

	Redirection	Url
Details	Source	https://www.threatconnect.com/blog/kasperagent-malware-campaign/

URL Provider

Details	Provider	Source level domain
Details	threatconnect.com	www.threatconnect.com

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	2		mailsinfo.net
Details	Domain	3		stikerscloud.com
Details	Domain	1		treestower.com
Details	Domain	36		malwr.com
Details	Domain	1		windowsnewupdates.com
Details	Domain	1		upfile2box.com
Details	Domain	1		7aga.net
Details	File	2		testproj.exe
Details	File	16		vlc.exe
Details	md5	1		6843AE9EAC03F69DF301D024BFDEFC88
Details	md5	1		4FE7561F63A71CA73C26CB95B28EAEE8
Details	md5	1		2DE25306A58D8A5B6CBE8D5E2FC5F3C5
Details	md5	1		C66F88D2D76D79210D568D7AD7896B45
Details	md5	1		c66f88d2d76d79210d568d7ad7896b45
Details	md5	1		dcf3aa484253068d8833c7c5b019b07a
Details	md5	1		0B4E44256788783634A2B1DADF4F9784
Details	md5	1		E44F0BD2ADFB9CBCABCAD314D27ACCFC
Details	IPv4	1		195.154.110.237
Details	Pdb	1		kasperreleasekasper.pdb