FROZEN#SHADOW
· Published 21/12/2025 04:25 · Modified 21/12/2025 04:25
· Source: AlienVault
Essential information
- Confidence
- 100/100
- Published
- 21/12/2025 04:25
- Modified
- 21/12/2025 04:25
- Updated at
- 21/12/2025 04:25
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 18 attack patterns (mitre), 2 malware, 73 indicators
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Attack patterns (MITRE) (18)
-
T1057 usesProcess Discovery MITRE
-
T1082 usesSystem Information Discovery MITRE
-
T1070.004 usesFile Deletion MITRE
-
T1033 usesSystem Owner/User Discovery MITRE
-
T1518.001 usesSecurity Software Discovery MITRE
-
T1219 usesRemote Access Tools MITRE
-
T1059 usesCommand and Scripting Interpreter MITRE
-
T1102 usesWeb Service MITRE
-
T1059.001 usesPowerShell MITRE
-
T1069.002 usesDomain Groups MITRE
-
T1071.002 usesFile Transfer Protocols MITRE
-
T1059.007 usesJavaScript MITRE
Malware (2)
-
SSLoad usesFamily
-
AlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
Indicators (73)
-
b9dbe9649c761b0eee38419ac39dcd7e90486ee34cd0eb56adde6b2f645f2960indicates -
17ddc339b14845bc9d67c5c3cd9a0e617387cc0569131ff3641035d82043effaindicates -
tjx-usa.comindicates -
ae610eb8f8622653b9be9692a7d2a680b0c2154022704ca58af0eaeed0066d03indicates -
a557f891f4d50e458d745c7eaf7d0be3eceea36f0398097e977cd3f6ec463875indicates -
805b59e48af90504024f70124d850870a69b822b8e34d1ee551353c42a338bf7indicates -
08075e8a6dcc6a5fca089348edbd5fc07b2b0b26a26a46e0dd401121fdaa88d3indicates -
4f52b4a2a781f366ed534d8c4b2fafef48a7848c4c20b4229b98747ca8ab06d3indicates -
6e892aa13cbd4b71a1c476207abddb1ef830be04999809b4ef569488a37e47e0indicates -
5fb093a9348fcf4a81befda978c948796a8319fcabe7899c2cf5ba1419ec9d35indicates -
https://titnovacrion.top/live/.indicates -
232f8f8dc9e5b9723c43c78cb942cc810ef56e305e4bd650110a484334f568a8indicates