← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
UAC-0063 espionage activity against Ukraine, Kazakhstan, Kyrgyzstan, Mongolia, Israel, Iran, India (CERT-UA#6549)
WHITE otx_support 2023-05-23 Modified: 2023-06-23
39
IOCs
MEDIUM VOLUME
RMPAC7/2023/002/0329 Data 22/05/2023 CERT -UA: tracciata operazione di spionaggio in Ucraina, Israele e in altri Paesi
Indicators of Compromise (13 / 39 total)
All domain FileHash-SHA256 FileHash-MD5 FileHash-SHA1
TYPEINDICATORDESCRIPTIONCREATED
FileHash-MD5 36379daf7ee88e10a395958cacf6f7c0 SvcRestartTaskLogon 2023-05-23
FileHash-MD5 482406314bdb06a44fcdd53f67ddcaf1 WsSwapAssessmentTask 2023-05-23
FileHash-MD5 10cab7f70c3b094f2d47e425e42a6013 SoftwareProtectionPlatform (HATVIBE 2023-05-23
FileHash-MD5 70e4305af8b00d04d95fba1f9ade222d 2023-05-23
FileHash-MD5 ccc4c2174641daab7a623535869df715 2023-05-23
FileHash-MD5 89f15568bc19cc38caa8fd7efca977af 2023-05-23
FileHash-MD5 c273cdfcfd808efa49ec0ed4f1c976e0 2023-05-23
FileHash-MD5 14a8aad94b915831fc1d3a8e7e00a5df 2023-05-23
FileHash-MD5 5ffd5424cda3878ea3974ec91a0b6920 2023-05-23
FileHash-MD5 ea7b4922e6f6a121ba4dbdf5d883f22c 2023-05-23
FileHash-MD5 bac64cabd0f50f34be91e91d41031482 2023-05-23
FileHash-MD5 8c5ba061fec025fd37f1d9ca9029f9ba 2023-05-23
FileHash-MD5 6c61cda823e4174113a0f08a3ba7a689 2023-05-23
References (8)
↗ 2784761.misp-json ↗ https://cert.gov.ua/article/4697016 ↗ http://206.166.251.216/connect.php ↗ http://84.32.188.123/hftqlbgtg.php ↗ https://diagnostic-resolver.com/ ↗ https://ms-webdav-miniredir.com/getdata.php ↗ https://ms-webdav-miniredir.com/takeanwser.php ↗ https://ms-webdav-miniredir.com/connection.php