Bad ad fad leads to IcedID, Gozi infections
Tags
cmtmf-attack-pattern: Traffic Distribution
maec-delivery-vectors: Watering Hole
attack-pattern: Credentials - T1589.001 Malvertising - T1583.008 Malware - T1587.001 Malware - T1588.001 Powershell - T1059.001 Search Engines - T1593.002 Seo Poisoning - T1608.006 Software - T1592.002 Tool - T1588.002 Powershell - T1086
Show in Graph
Common Information
Type Value
UUID cf637525-da6e-4c5e-9f2f-a0fc76e1b4f6
Fingerprint d903db9811f01c7
Analysis status DONE
Considered CTI value 1
Text language
Published July 20, 2023, 10 a.m.
Added to db July 20, 2023, 12:32 p.m.
Last updated Sept. 5, 2024, 1:12 a.m.
Headline Bad ad fad leads to IcedID, Gozi infections
Title Bad ad fad leads to IcedID, Gozi infections
Detected Hints/Tags/Attributes 77/3/4
Source URLs
Redirection Url
Details Source https://news.sophos.com/en-us/2023/07/20/bad-ad-fad-leads-to-icedid-gozi-infections/
URL Provider
Details Provider Source level domain
Details sophos.com news.sophos.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 183 Sophos News https://news.sophos.com/feed/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 1 
supersofrportal.pw
Details File 2 
installer.bat
Details Deprecated Microsoft Threat Actor Naming Taxonomy (Groups in development) 27 
DEV-0569
Details Microsoft Threat Actor Naming Taxonomy (Groups in development) 4 
Storm-0569