Water Saci
· Published 21/12/2025 17:54 · Modified 21/12/2025 17:54
· Source: AlienVault
Essential information
- Confidence
- 100/100
- Published
- 21/12/2025 17:54
- Modified
- 21/12/2025 17:54
- Updated at
- 21/12/2025 17:54
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 2 reports, 29 attack patterns (mitre), 4 malware, 1 sectors, 1 countries, 58 indicators
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Reports (2)
-
18 MITREs 2 Malwares 18 Observables 1 APT
-
18 MITREs 2 Malwares 37 Observables 1 APT
Attack patterns (MITRE) (29)
-
T1070.004 usesFile Deletion MITRE
-
T1547.001 usesRegistry Run Keys / Startup Folder MITRE
-
T1027 usesObfuscated Files or Information MITRE
-
T1059.005 usesVisual Basic MITRE
-
T1016 usesSystem Network Configuration Discovery MITRE
-
T1053.005 usesScheduled Task MITRE
-
T1087 usesAccount Discovery MITRE
-
T1033 usesSystem Owner/User Discovery MITRE
-
T1082 usesSystem Information Discovery MITRE
-
T1057 usesProcess Discovery MITRE
-
T1056.001 usesKeylogging MITRE
-
T1105 usesIngress Tool Transfer MITRE
Malware (4)
-
Casbaneiro usesFamily
-
SORVEPOTEL usesFamily
-
Coyote usesFamily
-
Metamorfo - S0455 usesFamily
Sectors (1)
-
Finance targets
Countries (1)
-
Brazil targets
Indicators (58)
-
2c0dff7f8f724476dffd07b0f51ceaae9600073e927d3694d167664eec194b4dindicates -
9b0996380c61060ed3bfec25962c56131ea0eac42c7f373216aab72fdb7b8ac7indicates -
wbdiamonds.comindicates -
centrogauchodabahia123.comindicatesstix 100/100 Revoked· Valid until 29/04/2026 · Source: AlienVault -
15e8f315901ea12639665f1adb9d18a9ace1074a33d70e47ad43203eb8ebfba4indicates -
http://aspeimoveis342235.online/indicates -
ebe37505fa162461515d50bd86cb0fd983a000d418f0be0f9098e087170909bdindicates -
5db59a8a8c2ca54615a6079fa9035d2886c1ec2270ee508efbb0ff98c98b90beindicates -
http://motopartshonda.site/indicates -
6745bb11b8c692be78ec7ade285094beef907ecb3a99f475afa284ccbe7565f2indicates -
12f2e7e997480a3ea3150614664d6de4e6e229dacd6e8ff0ed74cd22207e753dindicates