New Qilin Ransomware Attack Uses VPN Credentials, Steals Chrome Data
Tags
country: Russia
attack-pattern: Data Credentials - T1589.001 Malware - T1587.001 Malware - T1588.001 Multi-Factor Authentication - T1556.006 Powershell - T1059.001 Software - T1592.002 Powershell - T1086
Show in Graph
Common Information
Type Value
UUID f48ef17b-2e73-49e4-b46d-837e273e9ff8
Fingerprint 879480d91817954d
Analysis status DONE
Considered CTI value 0
Text language
Published Aug. 23, 2024, 3:54 p.m.
Added to db Aug. 31, 2024, 6:26 a.m.
Last updated Oct. 16, 2024, 2:33 a.m.
Headline New Qilin Ransomware Attack Uses VPN Credentials, Steals Chrome Data
Title New Qilin Ransomware Attack Uses VPN Credentials, Steals Chrome Data
Detected Hints/Tags/Attributes 63/2/2
Source URLs
Redirection Url
Details Source https://thehackernews.com/2024/08/new-qilin-ransomware-attack-uses-vpn.html
URL Provider
Details Provider Source level domain
Details thehackernews.com thehackernews.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 118 The Hacker News https://feeds.feedburner.com/TheHackersNews 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details File 3 
ipscanner.ps1
Details File 8 
logon.bat