Bigpanzi
· Published 21/12/2025 02:47 · Modified 21/12/2025 02:47
· Source: AlienVault
Essential information
- Confidence
- 100/100
- Published
- 21/12/2025 02:47
- Modified
- 21/12/2025 02:47
- Updated at
- 21/12/2025 02:47
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 14 attack patterns (mitre), 1 malware, 1 countries, 125 indicators
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Attack patterns (MITRE) (14)
-
T1059 usesCommand and Scripting Interpreter
-
T1102 usesWeb Service
-
T1106 usesNative API
-
T1140 usesDeobfuscate/Decode Files or Information
-
T1123 usesAudio Capture
-
T1495 usesFirmware Corruption
-
T1499 usesEndpoint Denial of Service
-
T1027 usesObfuscated Files or Information
-
T1560 usesArchive Collected Data
-
T1490 usesInhibit System Recovery
-
T1090 usesProxy
-
T1016 usesSystem Network Configuration Discovery
Malware (1)
-
BigPanzi usesFamilyPublished 28/02/2025 10:35 · Modified 28/02/2025 10:35
Countries (1)
- Brazil targets
Indicators (125)
-
wwrc9.ngoox.comindicates -
abcr.ftsym1.comindicates -
http://fadfa.dyanoe.com:8080indicates -
ok3.mf1ve.comindicates -
dlewals.adfoiadf892.netindicates -
btyu.pifsq.comindicates -
api.qicicloud.xyzindicates -
jgp.pdltdgie.comindicates -
gsb.reakf.comindicates -
http://xihb.bhowljw1.com:8080indicates -
fadfatest.pneydn.comindicates -
dmdz.res4f.comindicates