← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Cuckoo Threat Actor Arsenal
WHITE APT10 AlienVault 2024-10-07 Modified: 2024-10-07
25
IOCs
MEDIUM VOLUME
This report delves into the technical aspects of the NOOPDOOR and NOOPLDR malwares employed by the APT10 threat actor in the Cuckoo Spear campaign. The analysis reveals how these tools operate and the potential risks they pose, helping cybersecurity professionals better understand and defend against this persistent adversary's sophisticated strategies.
noopldrmalwareinjectionloaderpersistenceshellcodenoopdoorapt10cuckoo spear
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
NOOPDOOR NOOPLDR
Indicators of Compromise (25)
All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 domain
TYPEINDICATORDESCRIPTIONCREATED
FileHash-MD5 0dbaff93ec6243035275364d5c1c26c9 2024-10-07
FileHash-MD5 3b07fbaa8b9c5a53658abe3ac9f66e60 2024-10-07
FileHash-MD5 4f1c68d2fe3b0255e706e4c7de0a739f 2024-10-07
FileHash-MD5 6b3148e824fd84f54592fe5d2e766740 2024-10-07
FileHash-MD5 73a904ba602e1bf068f5d217403fa41f 2024-10-07
FileHash-MD5 9eef43edc87ab1f301ec8730113535ee 2024-10-07
FileHash-MD5 b5228638d5de18e59ebbddc13c120879 2024-10-07
FileHash-MD5 c39b02c9771c6be9610977408ebb509f 2024-10-07
FileHash-MD5 c76b1ed6d094edbad887f68093ef6bf9 2024-10-07
FileHash-MD5 d6d59b1ff85bf971286782f8f43d6326 2024-10-07
FileHash-MD5 deedb32bf51dc8f3399614c8a9718e75 2024-10-07
FileHash-MD5 e0a8048c7f69da35bbb2cd35d86c2dc8 2024-10-07
FileHash-MD5 ea474e87f23ce6575057e76108665ffb 2024-10-07
FileHash-MD5 f12873d8b69624d972b3c6fa55e52483 2024-10-07
FileHash-MD5 fe36fd0f09aadd3e7ddd7b66f18d5e93 2024-10-07
FileHash-SHA1 ca38f3f51a6739d9606dee27849a31775eb1d871 2024-10-07
FileHash-SHA256 93af6afb47f4c42bc0da3eedc6ecb9054134f4a47ef0add0d285404984011072 2024-10-07
domain foeake.org 2024-10-07
domain inbullar.com 2024-10-07
domain mangoaiml.com 2024-10-07
domain ocouomors.com 2024-10-07
domain paunsonaz.com 2024-10-07
domain saraosting.com 2024-10-07
domain temmans.com 2024-10-07
domain torefrog.com 2024-10-07
References (1)
↗ https://www.cybereason.com/blog/cuckoo-spear-pt2-threat-actor-arsenal