Star Blizzard increases sophistication and evasion in ongoing attacks [Monday, December 11, 2023]

Star Blizzard increases sophistication and evasion in ongoing attacks [Monday, December 11, 2023]
Report

Star Blizzard increases sophistication and evasion in ongoing attacks

Description :
Microsoft Threat Intelligence shared a new blog regarding malicious activity attributed to a Russian state-sponsored actor tracked as Star Blizzard, who has improved its detection evasion capabilities since 2022 while remaining focused on email credential theft against targets.

Published Created Modified
2023-12-11 15:43:12 2023-12-11 15:43:12 2023-12-11 16:16:03

Tags

Indicators

Domains :
  • createtempdoc.com
  • datagatewaydoc.com
  • checkdatapos.com
  • documentkeepersolutionsystems.com
  • truncationcorp.com
  • topcryptoprotect.com
  • defoffresult.com
  • transferlinkdata.com
  • secitweb.com
  • govermentsecintro.com
  • entranceto.com
  • keydatastorageunit.com
  • protectionoffice.tech
  • keeperinformation.com
  • corporatesinvitation.com
  • hubdatapage.com
  • directstoragepro.com
  • webstaticdata.com
  • gzipinteraction.com
  • homedocsdata.com
  • vikingonairplane.com
  • datawebhub.com
  • provideexplorer.com
  • cryptodocumentinformation.com
  • certificatentrance.com
  • doorgovcommunity.com
  • scandefinform.com
  • storageguarddirect.com
  • loginformationbreakthrough.com
  • infoviewstorage.com
  • lawwardensafety.com
  • inyourheadexp.com
  • infostoragegate.com
  • entrygatebreak.com
  • storageinfodata.com
  • setupprofi.com
  • olohaisland.com
  • wardenlawsec.com
  • wardenstoragedoorway.com
  • cloudithub.com
  • informationkeeper.com
  • remcemson.com
  • skyinformdata.com
  • territoryedit.com
  • lazyprotype.com
  • infocryptodata.com
  • theitbugreportbeta.com
  • trastamarafamily.com
  • machinerelise.com
  • dbasecheck.com
  • translatesplit.com
  • rootinformationgateway.com
  • guardittech.com
  • storagekeeperexpress.com
  • webprodata.com
  • infoviewerdata.com
  • digitalworkdata.com
  • hubinfodocs.com
  • documentsecsolution.com
  • mintwithapples.com
  • natalyincity.com
  • paternenabler.com
  • medicprognosis.com
  • industrialcorptruncate.com
  • documentgatekeeper.com
  • constructionholdingnewlife.com
  • getclouddoc.com
  • leviathanfish.com
  • cloudwebfile.com
  • maxintrosec.com
  • documentgateprotector.com
  • cryptogatehomes.com
  • protectitbase.com
  • homedocsview.com
  • clouditprofi.com
  • gatedocsview.com
  • incorpreview.com
  • techpenopen.com
  • infocryptoweb.com
  • secbrowsingate.com
  • digitalhubdata.com
  • docscontentview.com
  • incorpcpu.com
  • keeperdatastorage.com
  • hallowenwitch.com
  • docsinfohub.com
  • infowardendoc.com
  • glorybuses.com
  • docanalizergate.com
  • docanalizerhub.com
  • silenceprotocol.com
  • cryptogatesolution.com
  • firewitches.com
  • adventuresrebornpanda.com
  • cryptoinfostorage.com
  • docsaccessdata.com
  • datacryptosafe.com
  • truncatetrim.com
  • documentitsolution.com
  • storagedatadirect.com
  • alldocssolution.com
  • winterholds.com
  • industrialwatership.com
  • literallyandme.com
  • centralitdef.com
  • storageinfohub.com
  • marungame.com
  • safetyagencyservice.com
  • judicialliquidators.com
  • vectorto.com
  • webitresourse.com
  • ghostshowing.com
  • servershieldme.com
  • wardengovermentlaw.com
  • apireflection.com
  • apidatahook.com
  • johnysadventure.com
  • winterhascometo.com
  • aliceplants.com
  • rootgatewaystorage.com
  • storageinformationsolutions.com
  • readdatainform.com
  • paneindestination.com
  • analyzedatainfo.com
  • directkeeperstorage.com
  • tarifjane.com
  • infoformdata.com
  • panelittechweb.com
  • apiwebdata.com
  • proffitsolution.com
  • readinfodata.com
  • vertransmitcontrol.com
  • infodocitsolution.com
  • everyinit.com
  • nextgenexp.com
  • docholdersolution.com
  • doorwayseclaw.com
  • dynamiclnk.com
  • encryptionrenewal.com
  • directsgate.com
  • datadocsview.com
  • victorinwounder.com
  • comintroduction.com
  • proffsolution.com
  • explorewebdata.com
  • medicoutpatient.com
  • panelitsolution.com
  • docview.cloud
  • getfigmacreator.com
  • documentinformationsolution.com
  • craftfilelink.com
  • infoviewergate.com
  • webcatalogpro.com
  • cpuisocutter.com
  • datainfosecure.com
  • rootgatestorage.com
  • rootgatewayshome.com
  • directdocumentinfo.com
  • greatnotifyinfo.com
  • pandawithrainbow.com
  • gatewaykeeperinformation.com
  • voodoomagician.com
  • fastnamegenerator.com
  • bitespacedev.com
  • sslkeycert.com
  • getvaluepast.com
  • govsafebreakthrough.com
  • cloudinfodata.com
  • poscheckdatacenter.com
  • informationdoorwaycertificate.com
  • secbrowsingsystems.com
  • webcryptoinfo.com
  • entrancequick.com
  • cloudsetupprofi.com
  • barbarictruths.com
  • keyservicebar.com
  • keeperdocumentgatewayhub.com
  • onestorageprotectordirect.com
  • infoconnectstorage.com
  • reviewopenfile.com
  • gulperfish.com
  • sockintrodoorway.com
  • krakfish.com
  • cloudwebstorage.com
  • documententranceintelligence.com
  • castlefranks.com
  • triminget.com
  • storagekeepdirect.com
  • docsecgate.com
  • angelicfish.com
  • statusfiles.com
  • safedocumentgatesolution.com
  • temphoster.com
  • keeperdocument.com
  • safedocitsolution.com
  • securebrowssolution.com
  • defproresults.com
  • ziplinetransfer.com
  • andysalesproject.com
  • docdatares.com
  • topinformdata.com
  • globalyfish.com
  • keepinformationroot.com
  • itbugreportbeta.com
  • countingtall.com
  • openprojectgate.com
  • topnotifydata.com
  • webpartdata.com
  • docscontentgate.com
  • dockeeperweb.com
  • newestchairs.com
  • postrequestin.com
  • gaterecord.com
  • myposcheck.com
  • osixmals.com
  • infolookstorage.com
  • webfigmadesignershop.com
  • stingrayfish.com
  • govlawentrance.com
  • janeairintroduction.com
  • configlayers.com
  • webdataproceed.com
  • cryptdatahub.com
  • cryingpand.com
  • lawsystemjudgement.com
  • wardensecbreakthrough.com
  • webfigmadesigner.com
  • gatewayitservices.com
  • entryloginpoint.com
  • tarentrycommunity.com
  • solartemplar.com
  • gatewaydocumentdata.com
  • corpviewer.com
  • docguardmaterial.com
  • seclawdoorway.com
  • dbasechecker.com
  • logincontrolway.com
  • statuswebcert.com
MITRE ATT&CK Techniques :

External References

You can download the txt file containing the indicators by clicking on the button below:

About the author
Julien B.

Securitricks

Up-to-Date Cybersecurity Insights & Malware Reports

Securitricks

Great! You’ve successfully signed up.

Welcome back! You've successfully signed in.

You've successfully subscribed to Securitricks.

Success! Check your email for magic link to sign-in.

Success! Your billing info has been updated.

Your billing was not updated.