Wool3n.H4t Analysis

No activities identified yet

Campaigns (1)

These are the campaigns that can be associated with the actor:

  • Woolen-Goldfish

IOC - Indicator of Compromise (20)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameCampaignsConfidence
183.170.33.32host-83-170-33-32.customer.teleport-iabg.deWoolen-GoldfishHigh
283.170.33.37host-83-170-33-37.customer.teleport-iabg.deWoolen-GoldfishHigh
383.170.33.60host-83-170-33-60.customer.teleport-iabg.deWoolen-GoldfishHigh
483.170.33.63host-83-170-33-63.customer.teleport-iabg.deWoolen-GoldfishHigh
5XX.XXX.XX.XXxxxx-xx-xxx-xx-xx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxxx-xxxxxxxxHigh
6XX.XXX.XX.XXxxxx-xx-xxx-xx-xx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxxx-xxxxxxxxHigh
7XX.XXX.XX.XXxxxx-xx-xxx-xx-xx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxxx-xxxxxxxxHigh
8XX.XXX.XX.XXxxxx-xx-xxx-xx-xx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxxx-xxxxxxxxHigh
9XX.XXX.XX.XXxxxx-xx-xxx-xx-xx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxxx-xxxxxxxxHigh
10XX.XXX.XX.XXxxxx-xx-xxx-xx-xx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxxx-xxxxxxxxHigh
11XX.XX.XX.XXXxxxx-xx-xx-xx-xxx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxxx-xxxxxxxxHigh
12XX.XX.XX.XXXxxxx-xx-xx-xx-xxx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxxx-xxxxxxxxHigh
13XX.XX.XX.XXXxxxx-xx-xx-xx-xxx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxxx-xxxxxxxxHigh
14XX.XX.XX.XXXxxxx-xx-xx-xx-xxx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxxx-xxxxxxxxHigh
15XX.XX.XX.XXXxxxx-xx-xx-xx-xxx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxxx-xxxxxxxxHigh
16XX.XX.XX.XXXxxxx-xx-xx-xx-xxx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxxx-xxxxxxxxHigh
17XX.XX.XX.XXXxxxx-xx-xx-xx-xxx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxxx-xxxxxxxxHigh
18XX.XX.XX.XXXxxxx-xx-xx-xx-xxx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxxx-xxxxxxxxHigh
19XX.XX.XXX.XXxxxx-xx-xx-xxx-xx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxxx-xxxxxxxxHigh
20XX.XX.XXX.XXXxxxx-xx-xx-xxx-xxx.xxxxxxxx.xxxxxxxx-xxxx.xxXxxxxx-xxxxxxxxHigh

References (1)

The following list contains external sources which discuss the actor and the associated activities:

Do you want to use VulDB in your project?

Use the official API to access entries easily!