EfsPotato
AlienVault
· Published 08/06/2026 10:23 · Modified 08/06/2026 10:23
Essential information
- Confidence
- 100/100
- Is family
- No
- Published
- 08/06/2026 10:23
- Modified
- 08/06/2026 10:23
- Revoked
- No
- Author / Source
- AlienVault
- Related entities
- 19 attack patterns (mitre), 1 intrusion sets (apt), 7 indicators, 1 reports
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators, intrusion sets and other entities linked to this malware.
Attack patterns (MITRE) (19)
-
T1102.002 usesBidirectional Communication MITRE
-
T1070.006 usesTimestomp MITRE
-
T1033 usesSystem Owner/User Discovery MITRE
-
T1057 usesProcess Discovery MITRE
-
T1190 usesExploit Public-Facing Application MITRE
-
T1548.002 usesBypass User Account Control MITRE
-
T1505.003 usesWeb Shell MITRE
-
T1090.001 usesInternal Proxy MITRE
-
T1573.001 usesSymmetric Cryptography MITRE
-
T1140 usesDeobfuscate/Decode Files or Information MITRE
-
T1105 usesIngress Tool Transfer MITRE
-
T1071.001 usesWeb Protocols MITRE
Intrusion sets (APT) (1)
-
OP-512 usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
Indicators (7)
-
124.156.129.151indicatesstix 100/100CC=HK ASN=AS132203 tencent building kejizhongyi avenue
· Valid until 02/07/2026 · Source: AlienVault -
140.206.161.227indicatesstix 100/100CC=CN ASN=AS140979 china unicom shanghai fute idc network
· Valid until 02/07/2026 · Source: AlienVault -
43.160.202.246indicatesstix 100/100CC=SG ASN=ASNone
· Valid until 02/07/2026 · Source: AlienVault
Reports (1)
-
AlienVault Confidence 100 19 MITREs 11 Malwares 7 IOCs 7 Observables 1 APT