The Snake Attacks Holding the Industrial Sector Ransom
Tags
| country: | Italy Japan |
| attack-pattern: | Data Model Dns - T1071.004 Dns - T1590.002 Malware - T1587.001 Malware - T1588.001 Tool - T1588.002 Vulnerabilities - T1588.006 |
Common Information
| Type | Value |
|---|---|
| UUID | cf39fbbc-517a-42e3-a3b6-7c266249a327 |
| Fingerprint | 94060119947076d1 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | June 29, 2020, 6:38 a.m. |
| Added to db | Feb. 18, 2023, 12:02 a.m. |
| Last updated | Nov. 17, 2024, 5:54 p.m. |
| Headline | The Snake Attacks Holding the Industrial Sector Ransom |
| Title | The Snake Attacks Holding the Industrial Sector Ransom |
| Detected Hints/Tags/Attributes | 65/2/14 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 162 | bleepingcomputer.com |
|
| Details | Domain | 7 | mds.honda.com |
|
| Details | Domain | 3 | enelint.global |
|
| Details | File | 2 | nmon.exe |
|
| Details | File | 1 | encrypt_me.txt |
|
| Details | sha256 | 2 | d4da69e424241c291c173c8b3756639c654432706e7def5025a649730868c4a1 |
|
| Details | sha256 | 5 | e5262db186c97bbe533f0a674b08ecdafa3798ea7bc17c705df526419c168b60 |
|
| Details | sha256 | 2 | a5a7e6ddf99634a253a060adb1f0871a5a861624382e8ca6d086e54f03bed493 |
|
| Details | sha256 | 2 | b17863d41c0b915052fea85a354ec985280f4d38b46d64158a75b17ef89d76da |
|
| Details | sha256 | 2 | a8f0ff40d1e624dd2aad4d689ed47a900e4f719923647cacb58d1a4809c7bd31 |
|
| Details | sha256 | 1 | 09133f97793186542546f439e518554a5bb17117689c83bc3978cc532ae2f138 |
|
| Details | sha256 | 2 | edef8b955468236c6323e9019abb10c324c27b4f5667bc3f85f3a097b2e5159a |
|
| Details | IPv4 | 1 | 170.108.71.153 |
|
| Details | IPv4 | 1 | 170.108.71.15 |