ADExplorer on Engagements - TrustedSec
Tags
| country: | Norway |
| attack-pattern: | Data Direct Create Snapshot - T1578.001 Server - T1583.004 Server - T1584.004 Ssh - T1021.004 Tool - T1588.002 Connection Proxy - T1090 |
Common Information
| Type | Value |
|---|---|
| UUID | cb2d8204-1334-456a-8e3e-1142d1470844 |
| Fingerprint | ef105d931ce1b6b3 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | April 27, 2021, 2:48 p.m. |
| Added to db | Jan. 18, 2023, 11:51 p.m. |
| Last updated | Nov. 17, 2024, 11:40 p.m. |
| Headline | ADExplorer on Engagements |
| Title | ADExplorer on Engagements - TrustedSec |
| Detected Hints/Tags/Attributes | 45/2/19 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://www.trustedsec.com/blog/adexplorer-on-engagements/ |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 281 | docs.microsoft.com |
|
| Details | Domain | 2 | www.proxifier.com |
|
| Details | Domain | 4 | domainname.com |
|
| Details | Domain | 12 | oddvar.moe |
|
| Details | Domain | 1 | dc1.oddvar.moe |
|
| Details | Domain | 1 | onlinestringtools.com |
|
| Details | Domain | 12 | www.blackhillsinfosec.com |
|
| Details | Domain | 4128 | github.com |
|
| Details | File | 5 | adexplorer.exe |
|
| Details | File | 1 | c:\program files\tools\adexplorer.exe |
|
| Details | Github username | 1 | stufus |
|
| Details | IPv4 | 1441 | 127.0.0.1 |
|
| Details | IPv4 | 1 | 192.168.86.22 |
|
| Details | IPv4 | 1 | 10.100.10.0 |
|
| Details | Url | 1 | https://docs.microsoft.com/en-us/sysinternals/downloads/adexplorer |
|
| Details | Url | 2 | https://www.proxifier.com |
|
| Details | Url | 1 | https://onlinestringtools.com/convert-ascii-to-string |
|
| Details | Url | 1 | https://www.blackhillsinfosec.com/domain-goodness-learned-love-ad-explorer |
|
| Details | Url | 1 | https://github.com/stufus/adegrab |