PHALT#BLYX
· Published 09/01/2026 11:36 · Modified 09/01/2026 11:36
· Source: AlienVault
Essential information
- Confidence
- 100/100
- Published
- 09/01/2026 11:36
- Modified
- 09/01/2026 11:36
- Updated at
- 09/01/2026 11:36
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 1 reports, 8 attack patterns (mitre), 2 malware, 1 sectors, 28 indicators
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Reports (1)
-
2 MITREs 2 Malwares 20 Observables 1 APT
Attack patterns (MITRE) (8)
-
T1547.001 usesRegistry Run Keys / Startup Folder MITRE
-
MSBuild usesT1127.001 MITRE
-
T1055.012 usesProcess Hollowing MITRE
-
T1095 usesNon-Application Layer Protocol MITRE
-
T1566.002 usesSpearphishing Link MITRE
-
T1204.002 usesMalicious File MITRE
-
T1562.001 usesDisable or Modify Tools MITRE
-
T1059.001 usesPowerShell MITRE
Malware (2)
Sectors (1)
-
Hospitality targets
Indicators (28)
-
13b25ae54f3a28f6d01be29bee045e1842b1ebb6fd8d6aca23783791a461d9ddindicates -
08037de4a729634fa818ddf03ddd27c28c89f42158af5ede71cf0ae2d78fa198indicates -
9c891e9dc6fece95b44bb64123f89ddeab7c5efc95bf071fb4457996050f10a0indicates -
2fa-bns.comindicates -
11c1cfce546980287e7d3440033191844b5e5e321052d685f4c9ee49937fa688indicates -
asj88.comindicates -
cd3604fb9fe210261de11921ff1bea0a7bf948ad477d063e17863cede1fadc41indicates -
1f520651958ae1ec9ee788eefe49b9b143630c340dbecd5e9abf56080d2649deindicates -
asj77.comindicates -
8eh18dhq9wd.clickindicates -
2f3d0c15f1c90c5e004377293eaac02d441eb18b59a944b2f2b6201bb36f0d63indicates -
91696f9b909c479be23440a9e4072dd8c11716f2ad3241607b542b202ab831ceindicates