TA397 APT IOCs - SEC-1275-1
Tags
attack-pattern: | Domains - T1583.001 Domains - T1584.001 Powershell - T1059.001 Powershell - T1086 |
Common Information
Type | Value |
---|---|
UUID | ea2d11b2-cd4c-40e0-bb0e-ee606dcedbd9 |
Fingerprint | 2c7069db539ce53b |
Analysis status | DONE |
Considered CTI value | 0 |
Text language | |
Published | Dec. 19, 2024, midnight |
Added to db | Dec. 21, 2024, 3:12 a.m. |
Last updated | Dec. 23, 2024, 7:23 a.m. |
Headline | TA397 APT IOCs |
Title | TA397 APT IOCs - SEC-1275-1 |
Detected Hints/Tags/Attributes | 4/1/9 |
Source URLs
Redirection | Url | |
---|---|---|
Details | Source | https://1275.ru/ioc/8625/ta397-apt-iocs/?mtm_campaign=rss |
URL Provider
Details | Provider | Source level domain |
---|---|---|
Details | 1275.ru | 1275.ru |
RSS Feed
Details | Id | Enabled | Feed title | Url | Added to db |
---|---|---|---|---|---|
Details | 8 | ✔ | Архивы IOC - SEC-1275-1 | https://1275.ru/ioc/feed | 2024-08-30 22:08 |
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 4 | academymusica.com |
|
Details | Domain | 9 | jacknwoods.com |
|
Details | Domain | 6 | samsnewlooker.com |
|
Details | sha256 | 3 | 10cec5a84943f9b0c635640fad93fd2a2469cc46aae5e43a4604c903d139970f |
|
Details | sha256 | 3 | 53a653aae9678075276bdb8ccf5eaff947f9121f73b8dcf24858c0447922d0b1 |
|
Details | sha256 | 3 | c7ab300df27ad41f8d9e52e2d732f95479f4212a3c3d62dbf0511b37b3e81317 |
|
Details | sha256 | 3 | f6c77098906f5634789d7fd7ff294bfd95325d69f1be96be1ee49ff161e07733 |
|
Details | IPv4 | 3 | 38.180.142.228 |
|
Details | IPv4 | 5 | 96.9.215.155 |