ioc[.]one - OSINT Cyber Threat Intelligence Database

Real News, Fake Flash: Mac OS X Users Targeted | Volexity

Tags

cmtmf-attack-pattern:	Masquerading
country:	Georgia Lithuania Russia
attack-pattern:	Code Signing - T1553.002 Dns - T1071.004 Dns - T1590.002 Hardware - T1592.001 Ip Addresses - T1590.005 Javascript - T1059.007 Launch Agent - T1543.001 Malware - T1587.001 Malware - T1588.001 Masquerading - T1655 Non-Standard Port - T1509 Non-Standard Port - T1571 Server - T1583.004 Server - T1584.004 Code Signing - T1116 Launch Agent - T1159 Masquerading - T1036 Masquerading

Show in Graph

Common Information

Type	Value
UUID	fe68b772-a095-4a29-8629-dba306c2fb75
Fingerprint	dda7bd336de70783
Analysis status	DONE
Considered CTI value	2
Text language
Published	July 24, 2017, midnight
Added to db	Sept. 26, 2022, 9:30 a.m.
Last updated	Nov. 17, 2024, 6:54 p.m.
Headline	UNKNOWN
Title	Real News, Fake Flash: Mac OS X Users Targeted \| Volexity
Detected Hints/Tags/Attributes	53/3/24

Source URLs

	Redirection	Url
Details	Source	https://www.volexity.com/blog/2017/07/24/real-news-fake-flash-mac-os-x-users-targeted/

URL Provider

Details	Provider	Source level domain
Details	volexity.com	www.volexity.com

Attributes

Details	Type	#Events	Value
Details	Domain	1	updatesec.webredirect.org
Details	Domain	1	getflashplayer.app
Details	Domain	111	www.apple.com
Details	Domain	12	get.adobe.com
Details	Domain	1	downloadarchives.servehttp.com
Details	Domain	1	getflashplayer.zip
Details	File	816	index.html
Details	File	1	getflashplayer.pl
Details	File	1	getflashplayer.zip
Details	File	130	info.pl
Details	md5	1	6597ffd7d1d241b1bf776bc7e1e3f840
Details	md5	1	28064805242b3aa9c138061d6c18e7f5
Details	sha1	1	2810d554b2e9e14551cef7293e5240b058fb78c3
Details	sha1	1	2441e2e9f68b4110218e1fcdc2cfce864b96e2da
Details	IPv4	1	213.200.14.138
Details	IPv4	1	45.77.53.146
Details	IPv4	1	176.9.192.223
Details	IPv4	1	45.77.52.0
Details	IPv4	1	213.200.0.0
Details	IPv4	3	176.9.0.0
Details	IPv4	1	185.28.22.22
Details	Url	1	http://updatesec.webredirect.org/flashplayer/index.html
Details	Url	73	http://www.apple.com/dtds/propertylist-1.0.dtd
Details	Url	1	https://get.adobe.com/flashplayer