KAWA4096
AlienVault
· Published 21/12/2025 15:04 · Modified 21/12/2025 15:04
Essential information
- Confidence
- 100/100
- Is family
- No
- Published
- 21/12/2025 15:04
- Modified
- 21/12/2025 15:04
- Revoked
- No
- Author / Source
- AlienVault
- Related entities
- 19 attack patterns (mitre), 2 intrusion sets (apt), 2 countries, 9 indicators, 2 reports
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators, intrusion sets and other entities linked to this malware.
Attack patterns (MITRE) (19)
-
T1027 usesObfuscated Files or Information
-
T1021.001 usesRemote Desktop Protocol
-
T1222 usesFile and Directory Permissions Modification
-
T1082 usesSystem Information Discovery
-
T1021.002 usesSMB/Windows Admin Shares
-
T1083 usesFile and Directory Discovery
-
T1070.004 usesFile Deletion
-
T1569.002 usesService Execution
-
T1059.003 usesWindows Command Shell
-
T1486 usesData Encrypted for Impact
-
T1485 usesData Destruction
-
T1070.001 usesClear Windows Event Logs
Intrusion sets (APT) (2)
-
KAWA4096 usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 Published 21/12/2025 15:04 · Modified 21/12/2025 15:04
-
KawaLocker usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 Published 21/12/2025 15:36 · Modified 21/12/2025 15:36
Countries (2)
- United States of America targets
- Japan targets
Indicators (9)
-
kawasa2qo7345dt7ogxmx7qmn6z2hnwaoi3h5aeosupozkddqwp6lqqd.onionindicates -
fadfef5caf6aede2a3a02a856b965ed40ee189612fa6fde81a30d5ed5ee6ae7dindicates -
01a3dabb4684908082cb2ac710d5d42afae2d30f282f023d54d7e945ad3272f5indicates -
11b262c936ffa8eb83457efd3261578376d49d6e789c7c026f1fa0b91929e135indicates -
db8f4e007187795e60f22ee08f5916d97b03479ae70ad95ad227c57e20241e9dindicates -
ecca86e9b79d5a391a433d8d782bf54ada5a9ee04038dbaf211e0f087b5dad52indicates -
f3a6d4ccdd0f663269c3909e74d6847608b8632fb2814b0436a4532b8281e617indicates -
e4fb852fed532802aa37988ef9425982d272bc5f8979c24b25b620846dac9a23indicates -
[email protected]indicates
Reports (2)
-
4 MITREs 3 Malwares 5 Observables 1 APTPublished 15/08/2025 05:29 · Modified 15/08/2025 12:38
-
9 MITREs 1 Malware 1 APTPublished 18/07/2025 07:36 · Modified 18/07/2025 08:51