ioc[.]one - OSINT Cyber Threat Intelligence Database

Drive-by as a service: BlackTDS | Proofpoint US

Tags

cmtmf-attack-pattern:	Traffic Distribution
maec-delivery-vectors:	Watering Hole
attack-pattern:	Domains - T1583.001 Domains - T1584.001 Exploits - T1587.004 Exploits - T1588.005 Malvertising - T1583.008 Malware - T1587.001 Malware - T1588.001 Screen Capture - T1513 Server - T1583.004 Server - T1584.004 Software - T1592.002 Tool - T1588.002 Screen Capture - T1113 Screen Capture

Show in Graph

Common Information

Type	Value
UUID	e336156c-85f8-44f8-8c29-269a91716835
Fingerprint	3ef438d9212262ad
Analysis status	DONE
Considered CTI value	1
Text language
Published	March 13, 2018, 8 p.m.
Added to db	April 15, 2023, 1 p.m.
Last updated	Sept. 4, 2024, 2:23 a.m.
Headline	Drive-by as a service: BlackTDS
Title	Drive-by as a service: BlackTDS \| Proofpoint US
Detected Hints/Tags/Attributes	44/3/7

Source URLs

	Redirection	Url
Details	Source	https://www.proofpoint.com/us/threat-insight/post/drive-service-blacktds

URL Provider

Details	Provider	Source level domain
Details	proofpoint.com	www.proofpoint.com

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	1		blacktds.com
Details	Domain	1		blacktds.cf
Details	Domain	2		en.sundayloop.com
Details	sha256	1		6a207ea9d9e60a9bc9de7b1c2b87e06fa85ac31cbbf8c69e1627408c8f3d2b7f
Details	IPv4	1		88.99.48.65
Details	IPv4	1		46.30.45.78
Details	IPv4	2		193.70.73.251