Rectifyq📃Title: “El Machete”
📅Date: 2014-08-20
🔗References:
🔖Rectifyq Taxonomies:
- relevancy: 🔴 Highly Relevant
- category: ⚔Threat
- sub-category: campaign-analysis
- target: targeted
- MY-relevancy: relevant
🔖MISP Galaxies:
- target-information=“Belgium”
- target-information=“Brazil”
- target-information=“China”
- target-information=“Colombia”
- target-information=“Cuba”
- target-information=“Ecuador”
- target-information=“France”
- target-information=“Germany”
- target-information=“Malaysia”
- target-information=“Peru”
- target-information=“Russia”
- target-information=“Spain”
- target-information=“Sweden”
- target-information=“United States”
- target-information=“Venezuela”
- threat-actor El-Machete
- producer Kaspersky
- mitre-attack-pattern=[‘T1059.006’]
MISP event uuid: 60a75a73-eaf6-4b4f-bd34-0676208f493b
Indicator of Compromise (IoCs)
type,value,comment
md5, 61d33dc5b257a18eb6514e473c1495fe, 'Infection artifacts No sample in VT\r\nLast check:23/02/2025'
md5, b5ada760476ba9a815ca56f12a11d557, 'Infection artifacts No sample in VT\r\nLast check:23/02/2025'
md5, d6c112d951cb48cab37e5d7ebed2420b, 'Infection artifacts No sample in VT\r\nLast check:23/02/2025'
md5, df2889df7ac209e7b696733aa6b52af5, 'Infection artifacts No sample in VT\r\nLast check:23/02/2025'
md5, f7e23b876fc887052ac8e2558f0d6c38, 'Infection artifacts No sample in VT\r\nLast check:23/02/2025'
hostname, java.serveblog.net, ''
domain, agaliarept.com, ''
domain, frejabe.com, ''
domain, grannegral.com, ''
domain, plushbr.com, ''
domain, xmailliwx.com, ''
domain, blogwhereyou.com, ''
Full IOCs available in Rectifyq's MISP```