koneko
· Published 21/12/2025 18:54 · Modified 21/12/2025 18:54
· Source: AlienVault
Essential information
- Confidence
- 100/100
- Published
- 21/12/2025 18:54
- Modified
- 21/12/2025 18:54
- Updated at
- 21/12/2025 18:54
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 1 reports, 20 attack patterns (mitre), 2 malware, 21 indicators
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Reports (1)
-
20 MITREs 2 Malwares 21 Observables 1 APTPublished 20/11/2025 22:12 · Modified 21/11/2025 09:36
Attack patterns (MITRE) (20)
-
T1027 usesObfuscated Files or Information
-
T1020 usesAutomated Exfiltration
-
T1071.001 usesWeb Protocols
-
T1124 usesSystem Time Discovery
-
T1056 usesInput Capture
-
T1012 usesQuery Registry
-
T1041 usesExfiltration Over C2 Channel
-
T1132.001 usesStandard Encoding
-
T1140 usesDeobfuscate/Decode Files or Information
-
T1082 usesSystem Information Discovery
-
T1057 usesProcess Discovery
-
T1112 usesModify Registry
-
T1573 usesEncrypted Channel
-
T1105 usesIngress Tool Transfer
-
T1059.001 usesPowerShell
-
T1102.003 usesOne-Way Communication
-
T1497.001 usesSystem Checks
-
T1571 usesNon-Standard Port
-
T1547.001 usesRegistry Run Keys / Startup Folder
-
T1095 usesNon-Application Layer Protocol
Malware (2)
-
123 Stealer usesFamilyPublished 21/01/2026 12:36 · Modified 21/01/2026 12:36
-
Tsundere Bot usesFamilyPublished 28/01/2026 18:26 · Modified 28/01/2026 18:26
Indicators (21)
-
024982c7b27f1472856d1c1d9dffb33c7604b1aaecf168061ac62797dce8f297indicates -
afe75f474363a7a50282babdc3e00035848c94c2d8019011568adc476bfb005findicates -
62.60.226.179indicates -
1f715a97657a547e9eb55878bb0b946c3a2d43b6d467ca60e816853d4d727828indicates -
185.28.119.179indicates -
2de16fea5af78d5f1fdb8039efd7fb319d8e233cea8b4c20ea1f13ad380aea1dindicates -
e7c6904f65ff69c54d59ca058b196049b97b24f7a9fac4542f7fac427155ed2aindicates -
80cb42a7a6cea0a74824b0d6917ff49ed80eeeea5cc363cdde025ad3013d9e3findicates -
0b6f7eb2f6a60e7912068c4e066f41d5088855e9a350d871ebc5b2b487972e08indicates -
3ec6e84dc710bc6c3ff31bb0345c6c3cf2be45cb7b14a69162a71f491136e796indicates -
67e894471bd87e48e8a3d5b272134b21975bbf47448b8fa0d4d26ab7944c1f8bindicates -
196.251.72.192indicates -
2d994b6d56622095a0a5e24481aff9f5aa0fefceb731aa2e3456fcaed34915bcindicates -
193.24.123.68indicates -
4d21e0d5754e5c9e34598f0afb0efb118f8d2cf48b0299477d5d5384053925a9indicates -
0c552941479737a055ecf8e5e7a33b83eace569f7c9be282c1d7b0a932632f82indicates -
103.246.145.201indicates -
e970bda7434968969d6e1bf90d4ffb77becefb181a1763276106d8f9bae8ddc3indicates -
c6e6c0306035241154bb0199497e59d8c98afbf1bc7bc4e0b5eb52909826ff59indicates -
9e5eb972fbde91f7b01d2bdd3794cce12257a27087ee0baa645b703f18fb9583indicates -
15cb2ef46cbccdf5344d46d58d9260b0c60f898afe9b6cc1881f1b1f2faf27f6indicates