Storm-1747
· Published 21/12/2025 19:19 · Modified 21/12/2025 19:19
· Source: AlienVault
Essential information
- Confidence
- 100/100
- Published
- 21/12/2025 19:19
- Modified
- 21/12/2025 19:19
- Updated at
- 21/12/2025 19:19
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 2 reports, 23 attack patterns (mitre), 2 malware, 4 sectors, 24 indicators
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Reports (2)
-
17 MITREs 1 Malware 9 Observables 1 APT
-
10 MITREs 2 Malwares 1 APT
Attack patterns (MITRE) (23)
-
T1102.003 usesOne-Way Communication MITRE
-
T1114 usesEmail Collection MITRE
-
T1190 usesExploit Public-Facing Application MITRE
-
T1140 usesDeobfuscate/Decode Files or Information MITRE
-
T1550 usesUse Alternate Authentication Material MITRE
-
T1087 usesAccount Discovery MITRE
-
T1027 usesObfuscated Files or Information MITRE
-
T1056 usesInput Capture MITRE
-
T1592 usesGather Victim Host Information MITRE
-
T1059 usesCommand and Scripting Interpreter MITRE
-
T1098 usesAccount Manipulation MITRE
-
T1608.001 usesUpload Malware MITRE
Sectors (4)
-
Healthcare targets
-
Finance targets
-
Government targets
-
Education targets
Indicators (24)
-
https://immutable.nathacha.digital/T@uWhi6jqZQH7/#?EMAIL_ADDRESSindicates -
mock.zuyistoo.todayindicates -
https://astro.thorousha.ru/vojd4e50fw4o!g/$ENCODEDindicates -
astro.thorousha.ruindicates -
stoozucha.sa.comindicates -
https://mysql.vecedoo.online/JB5ow79@fKst02/#EMAIL_ADDRESSindicates -
https://q9y3.efwzxgd.es/MEaap8nZG5A@c8T/*EMAIL_ADDRESSindicates -
q9y3.efwzxgd.esindicates -
https://piwf.ariitdc.es/kv2gVMHLZ@dNeXt/$EMAIL_ADDRESSindicates -
lapointelegal-portail.pages.devindicates -
immutable.nathacha.digitalindicates -
mysql.vecedoo.onlineindicates