A Hunt How-To: Detecting RedGuard C2 Redirector
Tags
country: China
attack-pattern: Dns - T1071.004 Dns - T1590.002 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Tool - T1588.002 Connection Proxy - T1090
Show in Graph
Common Information
Type Value
UUID f65edc06-1da3-4b6f-b128-f163268d651e
Fingerprint 9f9cfa5f15079ec3
Analysis status DONE
Considered CTI value 0
Text language
Published Oct. 3, 2024, midnight
Added to db Oct. 9, 2024, 8:28 p.m.
Last updated Nov. 14, 2024, 4:12 p.m.
Headline A Hunt How-To: Detecting RedGuard C2 Redirector
Title A Hunt How-To: Detecting RedGuard C2 Redirector
Detected Hints/Tags/Attributes 37/2/5
Source URLs
Redirection Url
Details Source https://hunt.io/blog/detecting-redguard-c2-redirector
URL Provider
Details Provider Source level domain
Details hunt.io hunt.io
Attributes
Details Type #Events CTI Value
Details Domain 8 
aliyun.com
Details Domain 91 
360.net
Details Domain 57 
hunt.io
Details IPv4 1 
45.136.14.85
Details Url 1 
https://360.net