Honkbox
AlienVault
· Published 20/12/2025 19:37 · Modified 20/12/2025 23:29
Essential information
- Confidence
- 100/100
- Is family
- No
- Published
- 20/12/2025 19:37
- Modified
- 20/12/2025 23:29
- Revoked
- No
- Author / Source
- AlienVault
- Related entities
- 13 attack patterns (mitre), 32 indicators
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators, intrusion sets and other entities linked to this malware.
Attack patterns (MITRE) (13)
-
T1574 usesHijack Execution Flow MITRE
-
T1564 usesHide Artifacts MITRE
-
T1064 usesScripting MITRE
-
T1518 usesSoftware Discovery MITRE
-
T1082 usesSystem Information Discovery MITRE
-
T1036 usesMasquerading MITRE
-
T1027 usesObfuscated Files or Information MITRE
-
T1059 usesCommand and Scripting Interpreter MITRE
-
T1090 usesProxy MITRE
-
T1070 usesIndicator Removal MITRE
-
T1095 usesNon-Application Layer Protocol MITRE
-
T1553 usesSubvert Trust Controls MITRE
Indicators (32)
-
stix 100/100 Revoked
MacOS:Agent-VU\ [Drp] SHA256 of bce251548798f159e99e71e68b65bbb4a9607296
· Valid until 04/06/2024 · Source: AlienVault -
stix 100/100 Revoked
Osx.Malware.Agent-7992911-0 SHA256 of 687ec2b7d79ed6f953c7f519044b7117d12bdafa
· Valid until 04/06/2024 · Source: AlienVault -
stix 100/100 Revoked
MacOS:Agent-JN\ [Trj] SHA256 of 68f4979c04b4753a9f275f29c00d4b260f4c2ec0
· Valid until 04/06/2024 · Source: AlienVault -
stix 100/100 Revoked
MacOS:Agent-JN\ [Trj] SHA256 of 6ee76d296abf8da0f98d23f545ba4aa7c69e8211
· Valid until 04/06/2024 · Source: AlienVault -
stix 100/100 Revoked
MacOS:Agent-VU\ [Drp] SHA256 of 3ab040271882eb6c3a028498c7469450610ef7b8
· Valid until 04/06/2024 · Source: AlienVault -
stix 100/100 Revoked
cf_java_system_cmds SHA256 of 5e4792e459f1107cf83ce3293141f9ba3026b015
· Valid until 04/06/2024 · Source: AlienVault -
stix 100/100 Revoked
MacOS:Agent-VU\ [Drp] SHA256 of 53fd50b23372a73e74e7cdc370f51ac560a1130f
· Valid until 04/06/2024 · Source: AlienVault -
stix 100/100 Revoked
MacOS:Agent-VU\ [Drp] SHA256 of a605e20250e66726a58699a2ae4f7264c8c2e4e2
· Valid until 04/06/2024 · Source: AlienVault