CTA Adversary Playbook: Goblin Panda
Tags
| country: | Malaysia Cambodia India Indonesia Thailand Myanmar Philippines Vietnam U.S. Virgin Islands |
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Exploits - T1587.004 Exploits - T1588.005 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Vulnerabilities - T1588.006 |
Common Information
| Type | Value |
|---|---|
| UUID | db089be3-1048-4448-904f-ff6d37a83d39 |
| Fingerprint | e66829cb03e8050e |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Nov. 1, 2018, midnight |
| Added to db | Sept. 26, 2022, 9:33 a.m. |
| Last updated | Nov. 17, 2024, 5:57 p.m. |
| Headline | CTA Adversary Playbook: Goblin Panda |
| Title | CTA Adversary Playbook: Goblin Panda |
| Detected Hints/Tags/Attributes | 49/3/52 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 176 | cve-2012-0158 |
|
| Details | CVE | 375 | cve-2017-11882 |
|
| Details | sha256 | 1 | 1d8ad2bf967aff93c713a729d5e9447700a236bde1af616bbe6f51e21bdad8c5 |
|
| Details | sha256 | 1 | 3720c608b82dc52f2f6099bd0d6b30701c8689f5ae6e8249f7a04964b2970ec4 |
|
| Details | sha256 | 1 | 59462ce5c9fccf55efade4784d9ef995905260df1c649894c5500702f46ea4f4 |
|
| Details | sha256 | 1 | 8930c8ca404ffbfe969c0d8efd6d2fce352e584a78bf11fb80ed3a0d35c06eeb |
|
| Details | sha256 | 1 | 8a14b3a3d9da0ea72e40c48ac6fd29bf1c3427917d8ceeb0b81ff7aa1924f68b |
|
| Details | sha256 | 1 | a8efd9835cdd2cff2cdca61039f4d62990d4109f794e25d84250a0738d5f25de |
|
| Details | sha256 | 1 | af1d44b272cb2650f525879e772817f5bb4bf823c36a6e1f5c842f2fcc749930 |
|
| Details | sha256 | 1 | af5301411e507dc142e671fc9a42f2fe32959add3a81fce2742dbf90536eebbd |
|
| Details | sha256 | 1 | cb5e090a867e76214897efcb55a7d8908a36e874229c508ad97c0ebc437d79d8 |
|
| Details | sha256 | 1 | de42dcc2f9094efbd37d65821992865eab1ef9b66e83c76f3fc8c1a800b54350 |
|
| Details | sha256 | 1 | f910c0b18b5af4359e7354475add9f622aa92f945739a1c3b3bfc3704a037561 |
|
| Details | sha256 | 1 | fce7a763c05711bc0ba110ed23651c0f18aceddae5ada6e8042a2664a35d18ec |
|
| Details | sha256 | 1 | e5a170755ab090e944d1d24faef67ae1f80bac847f2a501937c9f03b888615c8 |
|
| Details | sha256 | 1 | a270058cef51b49905d7ceb3df7b8b5bb7b60ebfb5099d8b177dc19a2064145c |
|
| Details | sha256 | 1 | c9fb110ec68fd7fde1b72c5d92be5f6f03559d11a5d863e2179ebecc8fce2aee |
|
| Details | sha256 | 1 | 5cef63d737153624211a6c408ef6b9ae008837f54f0ba44cbaefa57d8fde34f8 |
|
| Details | sha256 | 1 | c8f19e0f7bbb63919df67f93d3c334e9564bf3aea910951d9ba644ae30783439 |
|
| Details | sha256 | 1 | 79ede3b7133d9edef0c14a6c8914113f7cfe2e45f76d216efbf1fc731f46e561 |
|
| Details | sha256 | 1 | 32946f137deb4d2abb7c71c021984e0d5364b6ee80560e09de133d8c11a5cf72 |
|
| Details | sha256 | 1 | c299841e17b621db7a386c24f426a0a74912758b19ecfc368fabc8fb4742ab9c |
|
| Details | sha256 | 1 | c1b9d0639d416232995d5eef2515c9d9be0f694e67b1136d7c5d37ca2af2dacd |
|
| Details | sha256 | 1 | 471c075d5e3c9cb009fa6ef1f8ec9c0ecf61251b4dab6eea161abec6935272bf |
|
| Details | sha256 | 1 | 5e488198c47befc49a08fec6f19c3c7d8e0e955589465d4e83ba87b46b3d80df |
|
| Details | sha256 | 1 | 22b0f774379c0e28211ffb53722d8cd5727da8e02aada3507be81d888864770f |
|
| Details | sha256 | 1 | b88cd263828b9856c1cee7eeecdd6da22eb9c892cbbd38c5bdab284f2a007582 |
|
| Details | sha256 | 1 | 8023c060d49479466b6595c72f07d89a6e598b8bde6805cdffcc52d1169d0304 |
|
| Details | sha256 | 1 | e7def95e889704343557431aa30914faafeb5318bb2f0f6e7a00c6b319a5edd7 |
|
| Details | sha256 | 1 | c9b96665e6962ccb47fb9963c3db6b0d9aebaedf717c42ac6ba321d7981dd69e |
|
| Details | sha256 | 1 | 78ce3dcbe9b828b9be0c1a74757eb8f32052db171cde2f2e2fe897a8096f1140 |
|
| Details | sha256 | 1 | 8485d9ecfa94f3cd316057c97e13629973b7e110bdee288087f98338b67d8b48 |
|
| Details | sha256 | 1 | dacb62e6a86a4ecd4f8f5e1685de018258b36372bad5d58bc9745725e2d04f8f |
|
| Details | sha256 | 1 | 195ffc2123b3e601f36698584c032c6e429d4d20ea9bcc66ee7f8e4918c9106e |
|
| Details | sha256 | 1 | 1185b1b983908f39d6885329e83f6349683716f9d056f56a22a86d8014cf0aac |
|
| Details | sha256 | 1 | 471a980082a9fd1dfc66d068a4658df3b8e9552edac55e14622bd59e3093fd8d |
|
| Details | sha256 | 1 | d28ce94db53318bf951adf3a60af74ca6924291274f5474ae7bd77cbbeef581a |
|
| Details | sha256 | 1 | 2b73a808c9a9b12f807c2282e30858acdcb6251e040c97c37037e78af1e99b3b |
|
| Details | sha256 | 1 | bceaf0be831e0a633ec204c70800a6827e0a9871167e812a6331b09c70c81a12 |
|
| Details | sha256 | 1 | db4085acc3de63994186425d11c354879527ddd448a9f2cf5f830855d2c8257b |
|
| Details | sha256 | 1 | df46fe83dab8fc1c4cfcff9b75d3ebf3b7390db6ebff09b74cb3c485300e8a78 |
|
| Details | sha256 | 1 | 79b57b487ea7e5dc6276a9028584a7fcc015a547c1ec221f10314ecec8a384fc |
|
| Details | sha256 | 1 | 1cb80eed2cd06aa0a419f808e05efc29e5c63c3c6134b2f4d8b36fd2aeb49887 |
|
| Details | sha256 | 1 | 14daa0e0db8759568e5d49986d12ae8a1289efd308bdd41634448be543dd7c76 |
|
| Details | sha256 | 1 | 6b7dbf0a03b0e41a327bd7de2e26645a220465d7be68e8c3c70b8a1da534adcf |
|
| Details | sha256 | 1 | 9fa5cc69aaa023a54ee7497b0f04b8d90960b276427d870b1782fb524d20c535 |
|
| Details | sha256 | 1 | ca0e90a60c21bff48c02a17f73023c8813f5ddf0c9231878c6ade4c8e6ad8a1c |
|
| Details | sha256 | 1 | a65e0ef3d70bd891f0d077972fb86652bbb4132b276504cdd1b75882523bcf30 |
|
| Details | sha256 | 1 | e5a31524fc95da517342bd1accc783e088fed42db33cb9caf7b60a39918ebdc2 |
|
| Details | sha256 | 1 | 281f3ce73e434f7616ce1600e0d6cab335ecdff2778dac0f916cc0e65224a753 |
|
| Details | sha256 | 1 | b93b7ad0e27d95665b699c3f6cf49129cff410555defd2c56cd3ec8a112bf1c9 |
|
| Details | Threat Actor Identifier - APT | 297 | APT27 |