SOLARDEFLECTION C2 Infrastructure Used by NOBELIUM in Company Brand Misuse
Tags
country: Russia Ukraine United States Of America
maec-delivery-vectors: Watering Hole
attack-pattern: Data Credentials - T1589.001 Domains - T1583.001 Domains - T1584.001 Email Addresses - T1589.002 Phishing - T1660 Phishing - T1566 Server - T1583.004 Server - T1584.004 Tool - T1588.002
Show in Graph
Common Information
Type Value
UUID db24ac12-24c9-4213-848e-b2191059d5c1
Fingerprint a38087b74b0997ad
Analysis status DONE
Considered CTI value 1
Text language
Published May 3, 2022, midnight
Added to db Sept. 26, 2022, 9:34 a.m.
Last updated Nov. 19, 2024, 8:52 p.m.
Headline SOLARDEFLECTION C2 Infrastructure Used by NOBELIUM in Company Brand Misuse
Title SOLARDEFLECTION C2 Infrastructure Used by NOBELIUM in Company Brand Misuse
Detected Hints/Tags/Attributes 64/3/1
Source URLs
Redirection Url
Details Source https://www.recordedfuture.com/solardeflection-c2-infrastructure-used-by-nobelium-in-company-brand-misuse/
URL Provider
Details Provider Source level domain
Details recordedfuture.com www.recordedfuture.com
Attributes
Details Type #Events CTI Value
Details Threat Actor Identifier - APT 669 
APT29