UNC4034
· Published 20/12/2025 22:19 · Modified 20/12/2025 22:19
· Source: AlienVault
Essential information
- Confidence
- 100/100
- Published
- 20/12/2025 22:19
- Modified
- 20/12/2025 22:19
- Updated at
- 20/12/2025 22:19
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 12 attack patterns (mitre), 13 indicators
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Attack patterns (MITRE) (12)
-
T1573.001 usesSymmetric Cryptography
-
T1566.001 usesSpearphishing Attachment
-
T1574.001 usesDLL
-
T1059.005 usesVisual Basic
-
T1218 usesSystem Binary Proxy Execution
-
T1055.001 usesDynamic-link Library Injection
-
T1071.002 usesFile Transfer Protocols
-
T1053.005 usesScheduled Task
-
T1027 usesObfuscated Files or Information
-
T1573.002 usesAsymmetric Cryptography
-
T1132.001 usesStandard Encoding
-
T1566.003 usesSpearphishing via Service
Indicators (13)
-
6af9af8aa0d8d4416c75e0e3f7a20dfe8af345fb5c5a82d79e004a54f1b670dcindicates -
cd8e12cddfe71b89597b6621d538b63673c8a8a3bf47a0fa572961ca1280e5b5indicates -
e03da0530a961a784fbba93154e9258776160e1394555d0752ac787f0182d3c0indicates -
ccdb436a5941ba47a8b7e110021ad98ba6dc4e0296dc973429fc0c73de5e5397indicates -
37e30dc2faaabaf93f0539ffbde032461ab63a2c242fbe6e1f60a22344c8a334indicates -
52ec2098ed37d4734a34baa66eb79ec21548b42b9ccb52820fca529724be9d54indicates -
dc20873b80f5cd3cf221ad5738f411323198fb83a608a8232504fd2567b14031indicates -
8cc60b628bded497b11dbc04facc7b5d7160294cbe521764df1a9ccb219bba6bindicates -
455a7ebf67aec7b4d6cc18ed930bde491c0327ba5e24968514dd9b3449a7c374indicates -
75771b5c57bc7f0d233839a610fa7a527e40dc51b2ec8cbda91fab3b4faa977findicates -
14f736b7df6a35c29eaed82a47fc0a248684960aa8f2222b5ab8cdad28ead745indicates -
3818527bc78efcece9d9bc87d77efa9450c2ba5c94f8441ea557ba29d865e7d3indicates -
cf22964951352c62d553b228cf4d2d9efe1ccb51729418c45dc48801d36f69b4indicates