RudePanda
· Published 21/12/2025 17:42 · Modified 21/12/2025 17:42
· Source: AlienVault
Essential information
- Confidence
- 100/100
- Published
- 21/12/2025 17:42
- Modified
- 21/12/2025 17:42
- Updated at
- 21/12/2025 17:42
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 1 reports, 20 attack patterns (mitre), 3 malware, 36 indicators
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Reports (1)
-
16 MITREs 3 Malwares 36 Observables 1 APT
Attack patterns (MITRE) (20)
-
T1078 usesValid Accounts MITRE
-
T1014 usesRootkit MITRE
-
T1105 usesIngress Tool Transfer MITRE
-
T1140 usesDeobfuscate/Decode Files or Information MITRE
-
T1190 usesExploit Public-Facing Application MITRE
-
T1218.011 usesRundll32 MITRE
-
T1573.002 usesAsymmetric Cryptography MITRE
-
T1112 usesModify Registry MITRE
-
T1070.001 usesClear Windows Event Logs MITRE
-
T1204.001 usesMalicious Link MITRE
-
T1505.003 usesWeb Shell MITRE
-
T1059.001 usesPowerShell MITRE
Malware (3)
-
HijackServer usesFamily
-
HijackDriverManager usesFamily
-
WingtbCLI usesFamily
Indicators (36)
-
5113d2da6cd9f4a4a9123a3547b01250659dcc349c36159ee11b93805ce51105indicates -
ed2c4429cf27e19aa6881d86bc5b42c21470525564fc53be688b9b26c83db766indicates -
915441b7d7ddb7d885ecfe75b11eed512079b49875fc288cd65b023ce1e05964indicates -
13ebf6422fe07392c886c960fafb90ef1ba3561f00eedb121a136e7f6c29c9eeindicates -
aseo88.comindicates -
jseo99.comindicates -
4e24349b61c5af60a5e7f543c86963087ca6d6078378f83c8fe55b36dc6331f4indicates -
lseo99.comindicates -
4c6703c7435759dbe0c889474a5fae4ca86e491ca45887a0dae3fcd4649e79c5indicates -
bd2de6ca6c561cec1c1c525e7853f6f73bf6f2406198cd104ecb2ad00859f7d3indicates -
0d07b8485145e0ea6789570b9ab476d8e1604110a9c45c9c753ef7bc5edfd539indicates -
e3bfd9aca49726556f6279aad2ab54ca9c1f0df22bcad27aa7e1ba3234f8eaffindicates