ioc[.]one - OSINT Cyber Threat Intelligence Database

Cyber Threats Unveiled: SSH Scanning and XorDDos Propagation

Tags

country:	Australia China Germany France Hong Kong Poland Singapore United States Of America
maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Cron - T1053.003 Dns - T1071.004 Dns - T1590.002 Domains - T1583.001 Domains - T1584.001 Hardware - T1592.001 Ip Addresses - T1590.005 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Ssh - T1021.004 Tool - T1588.002 Whois - T1596.002 Brute Force - T1110

Show in Graph

Common Information

Type	Value
UUID	de90723f-27f3-4e7d-a3ad-d11ab111eaee
Fingerprint	3a09be0728f184d7
Analysis status	DONE
Considered CTI value	2
Text language
Published	March 1, 2023, midnight
Added to db	March 1, 2023, 5:54 p.m.
Last updated	Sept. 1, 2024, 12:54 a.m.
Headline	Cyber Threats Unveiled: SSH Scanning and XorDDos Propagation
Title	Cyber Threats Unveiled: SSH Scanning and XorDDos Propagation
Detected Hints/Tags/Attributes	78/3/40

Source URLs

	Redirection	Url
Details	Source	https://www.avertium.com/resources/threat-reports/ssh-scanning-and-xorddos-propagation

URL Provider

Details	Provider	Source level domain
Details	avertium.com	www.avertium.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	274	✔	Threat Reports	https://www.avertium.com/resources/threat-reports/rss.xml	2024-08-30 22:08

Attributes

Details	Type	#Events	Value
Details	Domain	3	xxxatat456.com
Details	Domain	3	gggatat456.com
Details	sha256	1	2e88f685828251c4208afce35593e2b8a9e6849be94623b468abb22167474c4a
Details	sha256	1	860e2e82d7bd01abeb72afede6db129a5b7d024a3356fa2db0e1626326fca4db
Details	sha256	1	55db2ef3b4b514d196ffe2c47c6ef819207ae51802c474150f9841fcb3a17d3d
Details	sha256	1	495aa89868bb72275a755028c3e0c994bc945cc61512569fc8b5e56234812574
Details	sha256	1	5d7cdb8c06f5e4d8d0bd8f4cccaeee1dcaa2df3b1d88b4128a009e94aa459b7b
Details	sha256	1	6ff672202de36bd7d4e0c6246340f63409ef14499533141f735648407b879ef4
Details	sha256	1	70167bee44cde87b48e132a9abbac66055277cb552f666ca8b7bf5120914e852
Details	sha256	1	d177394d03dfa3e22b79916e45d16fcaf5ff4046d95ac6807bb5544bc4c14fe9
Details	sha256	1	6a2bc04e6116e1dcc2a5491f0ea0a114b8a12752c3ef12432607cf37f5a4eefc
Details	sha256	1	f2e7199ac3645f02db993f4cfff30a67556df77126fcbf76e21ab83d0970e646
Details	sha256	1	ec2d1c769cd2926e010c736d3129ce0548b1c0d24d9f3ac393862a80237bcaa2
Details	IPv4	1	61.177.172.0
Details	IPv4	1	218.92.0.128
Details	IPv4	1	49.88.112.65
Details	IPv4	1	49.88.112.115
Details	IPv4	1	103.64.12.105
Details	IPv4	1	176.31.91.136
Details	IPv4	1	176.31.91.137
Details	IPv4	1	176.31.91.138
Details	IPv4	1	176.31.91.139
Details	IPv4	1	54.36.15.96
Details	IPv4	1	54.36.15.97
Details	IPv4	1	54.36.15.98
Details	IPv4	1	54.36.15.99
Details	IPv4	1	54.36.145.104
Details	IPv4	1	54.36.145.105
Details	IPv4	1	54.36.145.106
Details	IPv4	1	54.36.145.107
Details	IPv4	1	54.36.145.173
Details	IPv4	1	54.36.145.178
Details	IPv4	1	46.105.84.188
Details	IPv4	1	46.105.84.189
Details	IPv4	1	46.105.84.190
Details	IPv4	1	46.105.84.191
Details	IPv4	1	79.137.1.133
Details	IPv4	1	79.137.1.134
Details	IPv4	1	79.137.1.135
Details	IPv4	1	79.137.1.136