2024-09-04 The Intricate Babylon RAT Campaign Targets Malaysian Politicians, Government| Threat Intelligence Malaysia

📃Title: The Intricate Babylon RAT Campaign Targets Malaysian Politicians, Government
📅Date: 2024-09-04
🔗References:

https://cyble.com/blog/the-intricate-babylon-rat-campaign-targets-malaysian-politicians-government/

🔖Rectifyq Taxonomies:

relevancy: 🔴 Highly Relevant
category: ⚔Threat
action-taken: diamond-model
MY-relevancy: relevant

🔖MISP Galaxies:

target-information=“Malaysia”
sector=“Government, Administration”
sector=“Political party”
malpedia=“BabyLon RAT”
producer Cyble
mitre-attack-pattern=[‘T1115’, ‘T1555.003’, ‘T1027.007’, ‘T1027.013’, ‘T1041’, ‘T1056.001’, ‘T1027.012’, ‘T1204.002’, ‘T1059.001’, ‘T1547.001’, ‘T1082’, ‘T1071.001’]

MISP event uuid: f6e08cf8-0233-4db5-a87b-68d99ce7191e

Indicator of Compromise (IoCs)

type,value,comment
ip-dst, 64.176.65.152, 'C&C'
domain, workhub-microsoft-team.com, 'C&C'
ip-dst, 149.28.19.207, 'C&C'
hostname, fund.sekretariatparti.org, 'C&C'

Full IOCs available in Rectifyq's MISP```