ioc[.]one - OSINT Cyber Threat Intelligence Database

KQL KC7 — A Scandal in Valdoria Part 2

Tags

attack-pattern:

Data

Show in Graph

Common Information

Type	Value
UUID	ef450b52-1ed2-48f3-9717-62bb41f2f135
Fingerprint	4e8312592ba6547a
Analysis status	DONE
Considered CTI value	0
Text language
Published	Nov. 11, 2024, 6:02 p.m.
Added to db	Nov. 11, 2024, 7:13 p.m.
Last updated	Nov. 17, 2024, 5:54 p.m.
Headline	KQL KC7 — A Scandal in Valdoria Part 2
Title	KQL KC7 — A Scandal in Valdoria Part 2
Detected Hints/Tags/Attributes	18/1/18

Source URLs

	Redirection	Url
Details	Source	https://medium.com/@Abdalla116/kql-kc7-a-scandal-in-valdoria-part-2-a9b2704ca409?source=rss------cybersecurity-5

URL Provider

Details	Provider	Source level domain
Details	medium.com	medium.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	167	✔	Cybersecurity on Medium	https://medium.com/feed/tag/cybersecurity	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	1174		gmail.com
Details	Domain	1		promotionrecruit.org
Details	Domain	1		hire-recruit.org
Details	Domain	1		hirerecruit.com
Details	Domain	1		hirejob.com
Details	Email	1		valdorias_best_recruiter@gmail.com
Details	File	1		editorial_j0b_openings_2024.docx
Details	File	1		fakestory.docx
Details	File	1		c:\users\romclovin\documents\opedfinal_to_print.docx
Details	File	2		opedfinal_to_print.docx
Details	File	1		dankmemes.7z
Details	File	1		mystolendatafromdocuments.7z
Details	File	1		mystolendatafromdesktop.7z
Details	File	97		upload.php
Details	IPv4	1		168.57.191.100
Details	IPv4	1		10.10.0.19
Details	Url	1		https://hire-recruit.org/files/fakescandal/2024/fakestory.docx
Details	Url	1		https://hirejob.com/exfil_processor/upload.php