Water Bakunawa
· Published 21/12/2025 07:22 · Modified 21/12/2025 07:22
· Source: AlienVault
Essential information
- Confidence
- 100/100
- Published
- 21/12/2025 07:22
- Modified
- 21/12/2025 07:22
- Updated at
- 21/12/2025 07:22
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 1 reports, 15 attack patterns (mitre), 2 malware, 8 sectors, 8 indicators
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Reports (1)
-
15 MITREs 2 Malwares 9 Observables 1 APT
Attack patterns (MITRE) (15)
-
T1003.001 usesLSASS Memory MITRE
-
T1110 usesBrute Force MITRE
-
T1567.002 usesExfiltration to Cloud Storage MITRE
-
T1021.002 usesSMB/Windows Admin Shares MITRE
-
T1222.001 usesWindows File and Directory Permissions Modification MITRE
-
T1562.001 usesDisable or Modify Tools MITRE
-
T1490 usesInhibit System Recovery MITRE
-
T1078.002 usesDomain Accounts MITRE
-
T1210 usesExploitation of Remote Services MITRE
-
T1003 usesOS Credential Dumping MITRE
-
T1046 usesNetwork Service Discovery MITRE
-
T1070.001 usesClear Windows Event Logs MITRE
Malware (2)
-
RansomHub usesFamily
-
EDRKillShifter usesFamily
Sectors (8)
-
Government targets
-
Transportation targets
-
Finance targets
-
Agriculture targets
-
Technology targets
-
Telecommunications targets
-
Manufacturing targets
-
Healthcare targets
Indicators (8)
-
869758de8334c2b201a07cfbfc0a903105a113080dde0355857de46b3eaae08eindicates -
d9a8c4fc94655f47a127b45c71e426d0f2057b6faf78fb7b86ee2995f7def41dindicates -
bd70882f67da03836f372172f655456ce19f95878d70ec39fcc6c059f9ef4ca0indicates -
b2a2e8e0795b2f69d96a48a49985fb67d22d1c6e8b40dadd690c299b9af970d4indicates -
46ff164e066a3a88dad76cad25c6ea42c7da6890bcba3fa3ccd4c6e93a3272d0indicates -
2d823c8b6076e932d696e8cb8a2c5c5df6d392526cba8e39b64c43635f683009indicates -
30abbbeedeeb268435899a7697f7a72f37a38e60ae2430e09bc029c7a8aa7001indicates -
bfbbba7d18be1aa2e85390fa69a761302756ee9348b7343af6f42f3b5d0a939cindicates