APT36, SideCopy
· Published 21/12/2025 06:08 · Modified 21/12/2025 06:08
· Source: AlienVault
Essential information
- Confidence
- 100/100
- Published
- 21/12/2025 06:08
- Modified
- 21/12/2025 06:08
- Updated at
- 21/12/2025 06:08
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 1 reports, 18 attack patterns (mitre), 6 malware, 4 sectors, 1 countries, 76 indicators
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Reports (1)
-
18 MITREs 6 Malwares 89 Observables 1 APTPublished 29/07/2024 10:59 · Modified 29/07/2024 11:37
Attack patterns (MITRE) (18)
-
T1129 usesShared Modules
-
T1566.002 usesSpearphishing Link
-
T1583.001 usesDomains
-
T1204.001 usesMalicious Link
-
T1584.001 usesDomains
-
T1059 usesCommand and Scripting Interpreter
-
T1566.001 usesSpearphishing Attachment
-
T1588.002 usesTool
-
T1047 usesWindows Management Instrumentation
-
T1608.005 usesLink Target
-
T1587.001 usesMalware
-
T1547.013 usesXDG Autostart Entries
-
T1106 usesNative API
-
T1547.001 usesRegistry Run Keys / Startup Folder
-
T1608.001 usesUpload Malware
-
T1204.002 usesMalicious File
-
T1588.001 usesMalware
-
T1053.003 usesCron
Malware (6)
-
Reverse RAT usesFamilyPublished 29/07/2024 10:59 · Modified 29/07/2024 10:59
-
Geta RAT usesFamilyPublished 29/07/2024 10:59 · Modified 29/07/2024 10:59
-
Crimson RAT usesFamilyPublished 04/02/2026 15:57 · Modified 04/02/2026 15:57
-
Action RAT - S1028 usesFamilyPublished 29/07/2024 10:59 · Modified 29/07/2024 10:59
-
Poseidon usesFamilyPublished 01/08/2025 12:31 · Modified 01/08/2025 12:31
-
DISGOMOJI usesFamilyPublished 29/07/2024 10:59 · Modified 29/07/2024 10:59
Sectors (4)
- Government targets
- Defense targets
- Transportation targets
- Manufacturing targets
Countries (1)
- India targets
Indicators (76)
-
https://mazagondoc.com/images/igfxtk.exeindicates -
https://slidesfinder.com/free-templates/freefiles/158/tmps.dotmindicates -
https://mazagondoc.com/images/msedg.batindicates -
vocport.comindicates -
googleservices.liveindicates -
https://campusportals.in/files/documents/xmlnsprcs.htaindicates -
https://campusportals.in/files/documents/bs/it/indicates -
https://mazagondoc.com/images/igfxtk.batindicates -
https://mazagondoc.com/documents01/rt12.pngindicates -
https://mazagondoc.com/images/AdobeReader.batindicates -
https://slidesfinder.com/free-templates/freefiles/158/08978.pngindicates -
https://mazagondoc.com/images/templates/Aerospace.dotmindicates -
https://mazagondoc.com/images/word/Project_and_Services_Section_report_10102023.docxindicates -
https://mazagondoc.com/images/templates/Slide7.pngindicates -
http://vocport.com/khalistanLeaderprotestindicates -
https://campusportals.in/files/documents/bs/it/1.htaindicates -
https://campusportals.in/files/documents/bs/survey/2.htaindicates -
https://mazagondoc.com/documents01/Letter002.pdfindicates -
https://mazagondoc.com/documents01/001doc.pdfindicates -
dns1.indianblog.xyzindicates -
https://dipl.site/Content/2022-23/01/03/Imge12542.htaindicates -
https://slidesfinder.com/free-templates/freefiles/158/rt12.pngindicates -
https://campusportals.in//files//documents//backup//ap.txtindicates -
https://dipl.site/Content/2022-23/01/01/indicates -
http://vocport.com/Contactusindicates -
https://mazagondoc.com/images/word/Naval_Projects_Payment_section_Report_131023.docxindicates -
https://mazagondoc.com/images/pdf/Naval_Projects_Payment_section_Report_29092023.docxindicates -
checkdailytips.servehttp.comindicates -
https://campusportals.in/files/documents/bs/economy/indicates -
https://campusportals.in/files/documents/bs/economy/1.htaindicates -
https://campusportals.in/files/documents/bs/it/2.htaindicates -
https://dipl.site/Content/2022-23/01/01/ugt254d.htaindicates -
https://campusportals.in/files/documents/bs/economy/2.htaindicates -
http://178.128.166.148/cjs-binindicates -
defender.windowupdatecache.inindicates -
http://defender.windowupdatecache.in/indicates -
https://slidesfinder.com/free-templates/freefiles/158/rtloki.pngindicates -
https://dipl.site/Content/2022-23/01/02/US_China_standoff-Opportunity-for-India-Chadha-21-Aug-23.zipindicates -
https://utkalsevasamitikanjurmarg.in/assets/pdfs/Salary_Increment_FY_2024/binastos10/newpictures.pngindicates -
http://checkdailytips.servehttp.com/dailyworkoutindicates -
http://165.22.221.71/distro-dlnaindicates -
https://mazagondoc.com/images/templates/Naval_Projects_Payment_section_Report_131023.docxindicates -
https://mazagondoc.com/images/pdf/cheexe.exeindicates -
http://defender.windowupdatecache.in/officalupdatesindicates -
https://campusportals.in/files/documents/bs/survey/1.htaindicates -
https://mazagondoc.com/images/sigthief.pyindicates -
https://utkalsevasamitikanjurmarg.in/assets/pdfs/Salary_Increment_FY_2024/Salary_Increment_FY_2024.zipindicates -
https://campusportals.in/files/documents/bs/2.htaindicates -
91a4093cbda11aa4e4816708fd58c3339315b389d87a34e5078338213c5e07d9indicates -
https://mazagondoc.com/images/awccs.batindicates -
https://campusportals.in/files/documents/bs/survey/indicates -
ordai.questindicates -
https://dipl.site/Content/2022-23/01/04/WhatsApp_Image_2024-05-06.zipindicates -
https://campusportals.in/files/2.htaindicates -
https://mazagondoc.com/documents01/08978.pngindicates -
802c3b63a5026a52c90e6e96b5f96e2a70b662d23ff0db63f9ebe2894da6f077indicates -
https://mazagondoc.com/documents01/sigthief.pyindicates -
https://mazagondoc.com/images/templates/propritery/doc-logo.pngindicates -
cabinet-gov-pk.ministry-pk.netindicates -
https://mazagondoc.com/images/msedg.exeindicates -
https://slidesfinder.com/free-templates/freefiles/158/Letter002.pdfindicates -
o97m.dropper.dzindicates -
https://mazagondoc.com/documents01/Filezilla.exeindicates -
https://mazagondoc.com/images/msedgprefix.exeindicates -
https://utkalsevasamitikanjurmarg.in/assets/pdfs/Salary_Increment_FY_2024/binastos10/indicates -
https://mazagondoc.com/images/AdobeArm.exeindicates -
https://mazagondoc.com/images/Chromes.exeindicates -
https://googleservices.live/dakshf_upload.phpindicates -
http://157.245.100.177/acpid-ditindicates -
https://dipl.site/Content/2022-23/01/03/indicates -
http://159.65.146.80/bin-xdgindicates -
reviewassignment.inindicates -
http://149.28.95.195/dakshf_upload.phpindicates -
https://mazagondoc.com/images/templates/logo.pngindicates -
e7d7d45677d1552950f74dbb72f214995382baaffea9465da1a412108210335dindicates -
https://campusportals.in/myfiles/bdocuments/survey1.zipindicates