IOC Radar
TLP:WHITE1 IOC

Secure Amazon container workloads using container attribute-based rules in AWS Network Firewall

AS
AWS Security
Published July 1, 2026Original Report

Diamond Model

Attack Flow6 steps · MITRE ATT&CK mapped

Defense EvasionTA0005·T1090.003
1/6
Proxy: Multi-hop Proxy
ActionRoute traffic through firewall
The report describes using AWS Network Firewall to protect containerized workloads, implying traffic is routed through the firewall, potentially acting as a proxy.

5W+H Threat Analysis

Analysis unavailable

Indicators of Compromise

Indicators of Compromise1

TypeIndicatorConfidenceScoreFirst Seen
SHA122d200f8670dbdb3e253a90eee5098477c95c23d
aptespionagefile-hash
High
84
Jun 2, 26

IOC Relationship Graph

IOC Relationship Graph1 total IOCs
SHA1
SHA11REPORTSecure Amazon container wo
scroll to zoom · drag to pan · click IOC to open