ioc[.]one - OSINT Cyber Threat Intelligence Database

APT-C-59（芜琼洞）组织2021年攻击行动揭秘

Tags

Show in Graph

Common Information

Type	Value
UUID	ded8b076-19a5-4c66-9905-08ef23e02c75
Fingerprint	e9df294f4ef13ab7
Analysis status	DONE
Considered CTI value	0
Text language
Published	Feb. 10, 2021, 9:34 a.m.
Added to db	Sept. 11, 2022, 12:48 p.m.
Last updated	Nov. 17, 2024, 6:55 p.m.
Headline	APT-C-59（芜琼洞）组织2021年攻击行动揭秘
Title	APT-C-59（芜琼洞）组织2021年攻击行动揭秘
Detected Hints/Tags/Attributes	0/0/12

Source URLs

	Redirection	Url
Details	Source	https://mp-weixin-qq-com.translate.goog/s/WBpML3BTxFPHmBgyunmEEA?_x_tr_sl=zh-CN&_x_tr_tl=en&_x_tr_hl=zh-CN&_x_tr_pto=nui

URL Provider

Details	Provider	Source level domain
Details	translate.goog	mp-weixin-qq-com.translate.goog

Attributes

Details	Type	#Events	CTI	Value
Details	CVE	48		cve-2021-26411
Details	Domain	1		common.js.ftp.sh
Details	Domain	1		hao.360.mooo.com
Details	Domain	1		itoxtlthpw.com
Details	File	1		组织在攻击行动中习惯利用正常应用vmnat.exe
Details	File	1		launcher_setup.exe
Details	File	1		2912.exe
Details	File	2		filelocatorproportable.exe
Details	File	1		其中netcmplugin.dat
Details	File	13		shfolder.dll
Details	File	1		nplbplugin.dll
Details	File	33		forfiles.exe