ioc[.]one - OSINT Cyber Threat Intelligence Database

Russian hackers deliver malicious RDP configuration files to thousands | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #hacker | National Cyber Security Consulting

Tags

country:	Australia Japan Russia
maec-delivery-vectors:	Watering Hole
attack-pattern:	Credentials - T1589.001 Domains - T1583.001 Domains - T1584.001 Email Addresses - T1589.002 Malicious File - T1204.002 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Remote Desktop Protocol - T1021.001 Server - T1583.004 Server - T1584.004 Web Services - T1583.006 Web Services - T1584.006 Remote Desktop Protocol - T1076

Show in Graph

Common Information

Type	Value
UUID	f0e34e75-2ef9-4fb9-83c4-cf2dc133698f
Fingerprint	251058f13eb5ffe4
Analysis status	DONE
Considered CTI value	1
Text language
Published	Oct. 31, 2024, 4:33 a.m.
Added to db	Oct. 31, 2024, 5:48 a.m.
Last updated	Nov. 17, 2024, 6:54 p.m.
Headline	Russian hackers deliver malicious RDP configuration files to thousands \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #hacker
Title	Russian hackers deliver malicious RDP configuration files to thousands \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #hacker \| National Cyber Security Consulting
Detected Hints/Tags/Attributes	50/3/3

Source URLs

	Redirection	Url
Details	Source	https://nationalcybersecurity.com/russian-hackers-deliver-malicious-rdp-configuration-files-to-thousands-hacking-cybersecurity-infosec-comptia-pentest-hacker/?utm_source=rss&utm_medium=rss&utm_campaign=russian-hackers-deliver-malicious-rdp-configuration-files-to-thousands-hacking-cybersecurity-infosec-comptia-pentest-hacker

URL Provider

Details	Provider	Source level domain
Details	nationalcybersecurity.com	nationalcybersecurity.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	6	✔	National Cyber Security Consulting	http://nationalcybersecurity.com/feed/	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	File	74		mstsc.exe
Details	Mandiant Uncategorized Groups	97		UNC2452
Details	Threat Actor Identifier - APT	665		APT29