Actor behind Operation LagTime targets Russia
Tags
country: Armenia Azerbaijan Malaysia Mongolia
attack-pattern: Malware - T1587.001 Malware - T1588.001
Show in Graph
Common Information
Type Value
UUID fe9f8f5f-a32d-458b-92f7-f8bb02f593dd
Fingerprint fd05bd3140b8e581
Analysis status DONE
Considered CTI value 2
Text language
Published Nov. 25, 2020, 5:31 p.m.
Added to db Sept. 11, 2022, 12:36 p.m.
Last updated Nov. 17, 2024, 6:54 p.m.
Headline Actor behind Operation LagTime targets Russia
Title Actor behind Operation LagTime targets Russia
Detected Hints/Tags/Attributes 19/2/10
Source URLs
Redirection Url
Details Source https://sebdraven.medium.com/actor-behind-operation-lagtime-targets-russia-f8c277dc52a9
URL Provider
Details Provider Source level domain
Details medium.com sebdraven.medium.com
Attributes
Details Type #Events CTI Value
Details Domain 2 
custom.songuulcomiss.com
Details File 57 
eqnedt32.exe
Details md5 1 
ae1b4a5775aca501954076b8024b04ec
Details sha1 1 
2d678cba2795d0339331125692e9a850a043a22f
Details sha256 1 
f5a78a155a219582db8959c3a96a1d91ed891801663b1cce0c599779773bc3f5
Details sha256 2 
4c22eb33aa1d10511eaf8d13098e2687e44eaebc5af8112473e28acedac34bea
Details sha256 1 
46a9ca7d5364fbe5fd3d6ffb0f8d86e9a9e566708657e59ef8873d3ed536348d
Details IPv4 3 
95.179.131.29
Details IPv4 1 
103.106.250.239
Details Url 1 
https://otx.alienvault.com/indicator/file/4c22eb33aa1d10511eaf8d13098e2687e44eaebc5af8112473e28acedac34bea