Core Werewolf против ОПК и критической инфраструктуры
Tags
| attack-pattern: | Domains - T1583.001 Domains - T1584.001 Scheduled Task - T1053.005 Scheduled Task - T1053 |
Common Information
| Type | Value |
|---|---|
| UUID | fc129f9c-a888-4253-bd39-73d0986c7d07 |
| Fingerprint | b6f4a5b30233c6ea |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | May 29, 2023, midnight |
| Added to db | June 14, 2023, 10:31 a.m. |
| Last updated | Nov. 17, 2024, 6:54 p.m. |
| Headline | Core Werewolf против ОПК и критической инфраструктуры |
| Title | Core Werewolf против ОПК и критической инфраструктуры |
| Detected Hints/Tags/Attributes | 16/1/60 |
Source URLs
URL Provider
| Details | Provider | Source level domain |
|---|---|---|
| Details | bi.zone | bi.zone |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 2 | infovesty.ru |
|
| Details | Domain | 51 | reg.ru |
|
| Details | Domain | 246 | mail.ru |
|
| Details | Domain | 119 | yandex.ru |
|
| Details | Domain | 24 | bi.zone |
|
| Details | Domain | 1 | clodmail.ru |
|
| Details | Domain | 2 | seemsurprise.com |
|
| Details | Domain | 2 | moscowguarante.com |
|
| Details | Domain | 1 | linux-tech-world.net |
|
| Details | Domain | 1 | linux-techworld.com |
|
| Details | Domain | 1 | linux-tech-world.com |
|
| Details | Domain | 1 | getvalerianllc.com |
|
| Details | Domain | 1 | bitsbfree.com |
|
| Details | Domain | 1 | licensecheckout.net |
|
| Details | Domain | 1 | win32soft.com |
|
| Details | Domain | 1 | microsoftsupertech.com |
|
| Details | Domain | 1 | microsofttechinfo.com |
|
| Details | Domain | 1 | autotimesvc.com |
|
| Details | Domain | 1 | msk-gov.com |
|
| Details | Domain | 1 | samssmgr.com |
|
| Details | Domain | 1 | versusmain.com |
|
| Details | Domain | 1 | savebrowsing.net |
|
| Details | Domain | 1 | statusgeotrust.com |
|
| Details | Domain | 1 | contileservices.net |
|
| Details | Domain | 1 | tapiservicemgr.com |
|
| Details | Domain | 1 | microsoftdownloaderonline.com |
|
| Details | Domain | 1 | microsoftdownloadonline.com |
|
| Details | Domain | 1 | microsoftdownloader.com |
|
| Details | Domain | 1 | cortanaupdater.net |
|
| Details | Domain | 1 | cortanaupdater.com |
|
| Details | Domain | 1 | checkerserviceonline.net |
|
| Details | Domain | 1 | checkerserviceonline.com |
|
| Details | Domain | 1 | softsandtools.com |
|
| Details | Domain | 1 | sensauto.info |
|
| Details | Domain | 1 | softdownloaderonline.net |
|
| Details | Domain | 1 | softdownloaderonline.com |
|
| Details | Domain | 1 | uploadingonline.com |
|
| Details | Domain | 1 | uploadeonline.com |
|
| Details | Domain | 1 | uploaderonline.com |
|
| Details | Domain | 1 | webupdateronline.net |
|
| Details | Domain | 1 | webupdateronline.com |
|
| Details | Domain | 1 | winuptodate.com |
|
| Details | Domain | 2 | winupdateonline.com |
|
| Details | Domain | 1 | winupdateronline.com |
|
| Details | Domain | 1 | webengincs.com |
|
| Details | Domain | 1 | exactsynchtime.ru |
|
| Details | Domain | 1 | licensecheckout.com |
|
| Details | Domain | 1 | servicehost-update.net |
|
| Details | Domain | 1 | passportyandex.net |
|
| Details | File | 1 | гувп.docx |
|
| Details | File | 1 | полный.doc |
|
| Details | File | 2 | virtual.exe |
|
| Details | File | 1 | nuvp.doc |
|
| Details | File | 10 | ultravnc.ini |
|
| Details | File | 2125 | cmd.exe |
|
| Details | File | 17 | attack.exe |
|
| Details | File | 249 | schtasks.exe |
|
| Details | File | 1 | sensauto.inf |
|
| Details | MITRE ATT&CK Techniques | 275 | T1053.005 |
|
| Details | Url | 1 | https://bi.zone/expertise/blog/core-werewolf-protiv-opk-i-kriticheskoy-infrastruktury |