Inteligencia en amenazas - Presentación 1.pdf

Práctica 1: Ioc —> bug.restoroad[.]com

1. 2016-10-29
2. 2023-08-31 08:51:54 — 2023-11-29 08:51:53
3. OVH —> FR

Práctica 2: Ioc —> http://www.stracarrara[.]org/images/img.asp

1. 31.11.35.121
2. Microsoft-IIS/10.0
3. Amazon‑themed campaigns
4. netherlands-belgium

Práctica 3: Ioc —> 9D8BADE2030C93D0A010AA57B90915EB7D99EC82

1. HSBC job offer.pdf.zip
2. LINUX
3. fc41cb8425b6432af8403959bb59430d
4. Uses the "uname" system call to query kernel version information (possible evasion)