bluebottle
· Published 20/12/2025 23:16 · Modified 20/12/2025 23:16
· Source: AlienVault
Essential information
- Confidence
- 100/100
- Published
- 20/12/2025 23:16
- Modified
- 20/12/2025 23:16
- Updated at
- 20/12/2025 23:16
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 9 attack patterns (mitre), 5 malware, 1 sectors, 37 indicators
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Attack patterns (MITRE) (9)
Malware (5)
-
SharpHound usesFamily
-
GuLoader usesFamily
-
Quasar usesFamily
-
Cobalt Strike usesFamily
-
NETWIRE uses
Sectors (1)
-
Finance targets
Indicators (37)
-
117c66c0aa3f7a5208b3872806d481fd8d682950573c2a7acaf7c7c7945fe10dindicates -
stix 100/100 Revoked
HackTool:Win32/Mimikatz.D
· Valid until 28/12/2024 · Source: AlienVault -
0440ef40c46fdd2b5d86e7feef8577a8591de862cfd7928cdbcc8f47b8fa3ffcindicates -
b4adbb5d017d6452c2e1700584261cd3170ee5a14ac658424945f15177494ba1indicates -
udapte.adesy.inindicates -
ac98e6bf6d16904355b1c706bc2b79761a8b09044da40f2c8bce35142ef8bcc8indicates -
a539961f80feb689546a2e334b03aed81252a04fae032e2d28ed9a7000b3afffindicates -
07ca6122fde46d48f71bcde356d5eeb89040e4a6e83441968a9dade98dc36fe5indicates -
6db5e2bb146b11182f29d03b036af4e195044f0ef7a8f7c4429f5d4201756b8findicates -
ae4ff662c959cf24df621a2c0b934ed1fa1c26a270a180f695cd5295579afbbdindicates -
stix 100/100· Valid until 12/01/2027 · Source: AlienVault
-
d5b3b1304739986298ba9b7c3ff8b40b3740233d6bb02437ce61a20ee87468bcindicates