IOC Radar
TLP:WHITE11 IOCs

State-backed attackers and commercial surveillance vendors repeatedly use the same exploits

BO
Botvrij.eu OSINT Feed
Published September 9, 2024Original Report

Diamond Model

SOCIAL AXISTECHNOLOGY AXISADVERSARYunknownINFRASTRUCTUREhttps://track-adv.com…https://ceo-adviser.c…https://track-adv.com…CAPABILITYunknownVICTIMunknown
Adversary
Infrastructure(4)
Capability
Victim

5W+H Threat Analysis

Analysis unavailable

Indicators of Compromise

Indicators of Compromise11

TypeIndicatorConfidenceScoreFirst Seen
SHA25621682218bde550b2f06ee2bb4f6a39cff29672ebe27acbb3cee5db79bf6d7297
file-hashloadermalware
High
68
Jun 2, 26
SHA256d19dcbb7ab91f908d70739968b14b26d7f6301069332609c78aafc0053b6a7e1
exploitfile-hashloader
High
68
Jun 2, 26
SHA256df21c2615bc66c369690cf35aa5a681aed1692a5255d872427a2970e2894b2e3
file-hashloadermalware
High
68
Jun 2, 26
URLhttps://track-adv.com/market-analytics.php?pc=1
loadermalwarenetwork
High
68
Jun 2, 26
CVECVE-2023-41993
exploitvulnerability
High
68
Jun 2, 26
SHA2568bd9a73da704b4d7314164bff71ca76c15742dcc343304def49b1e4543478d1a
exploitfile-hashloader
High
68
Jun 2, 26
CVECVE-2024-4671
exploitloadermalware
High
68
Jun 2, 26
CVECVE-2024-5274
exploitloadermalware
High
68
Jun 2, 26
URLhttps://ceo-adviser.com/fb-connect.php?online=1
loadermalwarenetwork
High
68
Jun 2, 26
URLhttps://track-adv.com/analytics.php?personalization_id=<random
networkurl
High
68
Jun 2, 26
URLhttps://track-adv.com/analytics.php
malwarenetworkstealer
High
68
Jun 2, 26

IOC Relationship Graph

IOC Relationship Graph11 total IOCs
SHA256URLCVE
SHA2564URL4CVE3REPORTState-backed attackers and
scroll to zoom · drag to pan · click IOC to open