TLP:WHITE2 IOCs
Investigating Storm-2755: “Payroll pirate” attacks targeting Canadian employees
Diamond Model
Adversary
Infrastructure(1)
Capability
Victim
Attack Flow8 steps · MITRE ATT&CK mapped
5W+H Threat Analysis
Analysis unavailable
Indicators of Compromise
Indicators of Compromise2
| Type | Indicator | Confidence | Score | First Seen |
|---|---|---|---|---|
| CVE | CVE-2025-27152 exploitintel-blogvulnerability | Medium | 51 | Jun 2, 26 |
| URL | http://bluegraintours.com intel-blogmalwarenetwork | High | 58 | Jun 2, 26 |
IOC Relationship Graph
IOC Relationship Graph2 total IOCs
CVEURL