Squidoor
· Published 21/12/2025 12:37 · Modified 21/12/2025 12:37
· Source: AlienVault
Essential information
- Confidence
- 100/100
- Published
- 21/12/2025 12:37
- Modified
- 21/12/2025 12:37
- Updated at
- 21/12/2025 12:37
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 1 reports, 7 attack patterns (mitre), 4 sectors, 27 indicators
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Reports (1)
-
7 MITREs 30 Observables 1 APT
Attack patterns (MITRE) (7)
-
T1505 usesServer Software Component MITRE
-
T1095 usesNon-Application Layer Protocol MITRE
-
T1190 usesExploit Public-Facing Application MITRE
-
T1027 usesObfuscated Files or Information MITRE
-
T1041 usesExfiltration Over C2 Channel MITRE
-
T1071 usesApplication Layer Protocol MITRE
-
T1078 usesValid Accounts MITRE
Sectors (4)
-
Aerospace targets
-
Government targets
-
Education targets
-
Defense targets
Indicators (27)
-
microsoftapimap.comindicates -
7c6d29cb1f3f3e956905016f0171c2450cca8f70546eee56cface7ba31d78970indicates -
945313edd0703c966421211078911c4832a0d898f0774f049026fc8c9e7d1865indicates -
stix 100/100 Revoked
webshell_asp_runtime_compile
· Valid until 23/02/2026 · Source: AlienVault -
support.vmphere.comindicates -
6c1d918b33b1e6dab948064a59e61161e55fccee383e523223213aa2c20c609cindicates -
81bd2a8d68509dd293a31ddd6d31262247a9bde362c98cf71f86ae702ba90db4indicates -
a7d76e0f7eab56618f4671b5462f5c210f3ca813ff266f585bb6a58a85374156indicates -
33689ac745d204a2e5de76bc976c904622508beda9c79f9d64c460ebe934c192indicates -
2b6080641239604c625d41857167fea14b6ce47f6d288dc7eb5e88ae848aa57findicates -
update.hobiter.comindicates