OSINT — Iranian hackers attack Israel with WezRat
Tags
| country: | Israel Oman Russia |
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Data Domains - T1583.001 Domains - T1584.001 Javascript - T1059.007 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Software - T1592.002 Whois - T1596.002 |
Common Information
| Type | Value |
|---|---|
| UUID | e5307a28-2384-4c3d-aa13-79db935b4e49 |
| Fingerprint | 9ab188df08d3b704 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Nov. 17, 2024, 10:02 p.m. |
| Added to db | Nov. 17, 2024, 11:36 p.m. |
| Last updated | Nov. 17, 2024, 11:37 p.m. |
| Headline | OSINT — Iranian hackers attack Israel with WezRat |
| Title | OSINT — Iranian hackers attack Israel with WezRat |
| Detected Hints/Tags/Attributes | 62/3/27 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 171 | ✔ | Malware on Medium | https://medium.com/feed/tag/malware | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 5 | il-cert.net |
|
| Details | Domain | 1 | il-cert.info |
|
| Details | Domain | 1 | 250-il-cert.net |
|
| Details | Domain | 1 | omerc.net |
|
| Details | Domain | 1175 | gmail.com |
|
| Details | Domain | 54 | godaddy.com |
|
| Details | Domain | 1 | mybabyclips.com |
|
| Details | Domain | 1 | ns1.dreamhost.com |
|
| Details | Domain | 1 | ns2.dreamhost.com |
|
| Details | Domain | 1 | ns3.dreamhost.com |
|
| Details | Domain | 1 | omercohen.co.il |
|
| Details | Domain | 1 | omer.io |
|
| Details | Domain | 2 | profi.ru |
|
| Details | Domain | 1 | std.sehir.edu.tr |
|
| Details | 1 | omerc.net@gmail.com |
||
| Details | 1 | omer@omercohen.co.il |
||
| Details | 1 | li@omerc.net |
||
| Details | 1 | git@omerc.net |
||
| Details | 1 | abobukarbatygov@gmail.com |
||
| Details | 1 | abobukarbatygov@std.sehir.edu.tr |
||
| Details | 1 | alihanbogatyrev770@gmail.com |
||
| Details | File | 1 | il-cert.inf |
|
| Details | IPv4 | 2 | 45.143.166.233 |
|
| Details | IPv4 | 1 | 79.177.122.80 |
|
| Details | IPv4 | 1 | 109.252.70.185 |
|
| Details | Url | 1 | https://profi.ru/profile/batygovaa |
|
| Details | Url | 1 | https://trudvsem.ru/cv/card/91443110-b583-11ea-ada6-7bf9d8e248ac/f568fac0-bb7f-11ea-88e8-03fd6b4dc11f |