Waterbear 分析
No activities identified yet
活动 (1)
These are the campaigns that can be associated with the actor:
- WaterBear
IOC - Indicator of Compromise (1)
These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.
ID | IP地址 | Hostname | 参与者 | 活动 | Identified | 类型 | 可信度 |
---|---|---|---|---|---|---|---|
1 | 10.0.0.211 | Waterbear | 2019-12-11 | verified | 高 |
参考 (3)
The following list contains external sources which discuss the actor and the associated activities:
- https://blog.trendmicro.com/trendlabs-security-intelligence/waterbear-is-back-uses-api-hooking-to-evade-security-product-detection/
- xxxxx://xxxxxx.xxx/xxxxx/xxxxx_xxxxxx_xxxxxxxxxxxx/xxxx/xxxx/xxxxxx/xxxxxxxxx
- xxxxx://xxx.xxxxxxxxxx.xxx/xx_xx/xxxxxxxx/xx/x/xxxxxxxxx-xx-xxxx-xxxx-xxx-xxxxxxx-xx-xxxxx-xxxxxxxx-xxxxxxx-xxxxxxxxx.xxxx