Common Information
| Type | Value |
|---|---|
| Value |
certutil.exe |
| Category | |
| Type | File |
| Misp Type | |
| Description |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2024-03-20 | 18 | Managing Attack Surface | Huntress | ||
| Details | 2024-03-13 | 283 | THREAT | |||
| Details | 2024-03-05 | 207 | A Comprehensive Overview on Stealer Malware Families | |||
| Details | 2024-03-01 | 207 | A Comprehensive Overview on Stealer Malware Families | |||
| Details | Website | 2024-02-27 | 72 | Threat Actor Groups, Including Black Basta, are Exploiting Recent ScreenConnect Vulnerabilities | ||
| Details | Website | 2024-02-27 | 73 | Threat Actor Groups, Including Black Basta, are Exploiting Recent ScreenConnect Vulnerabilities | ||
| Details | Website | 2024-02-26 | 32 | Earth Lusca Uses Geopolitical Lure to Target Taiwan Before Elections | ||
| Details | Website | 2024-02-26 | 32 | Earth Lusca Uses Geopolitical Lure to Target Taiwan Before Elections | ||
| Details | Website | 2024-01-01 | 8 | Can’t Touch This: Data Exfiltration via Finger | Huntress | ||
| Details | 2023-12-26 | 141 | Emerging Threat: Uncovering Rhysida and their activities | |||
| Details | Website | 2023-12-21 | 41 | Trend Analysis on Kimsuky Group’s Attacks Using AppleSeed - ASEC | ||
| Details | 2023-11-09 | 1572 | Modern Asian APT Groups | |||
| Details | Website | 2023-11-02 | 12 | Hackers use Citrix Bleed flaw in attacks on govt networks worldwide - RedPacket Security | ||
| Details | Website | 2023-11-01 | 12 | Hackers use Citrix Bleed flaw in attacks on govt networks worldwide | ||
| Details | 2023-10-30 | 295 | TG2003: Elephant Beetle UNCOVERING AN ORGANIZED FINANCIAL-THEFT OPERATION | |||
| Details | 2023-10-25 | 153 | CAMPAGNES D'ATTAQUES DU MODE OPÉRATOIRE APT28 DEPUIS 2021 | |||
| Details | Website | 2023-10-19 | 30 | Ransomware actor exploits unsupported ColdFusion servers—but comes away empty-handed | ||
| Details | Website | 2023-10-09 | 67 | Threat Actors Actively Exploiting Progress WS_FTP via Multiple Attack Chains | ||
| Details | Website | 2023-10-03 | 94 | Defending new vectors: Threat actors attempt SQL Server to cloud lateral movement | Microsoft Security Blog | ||
| Details | 2023-08-23 | 94 | Defending Against 8base: Uncovering Their Arsenal and Crafting Responses | |||
| Details | Website | 2023-08-18 | 77 | WARNING: NEW ATTACK CAMPAIGN UTILIZED A NEW 0-DAY RCE VULNERABILITY ON MICROSOFT EXCHANGE SERVER | ||
| Details | Website | 2023-08-08 | 12 | Clustering attacker behavior reveals hidden patterns | ||
| Details | 2023-08-07 | 255 | RedHotel: A Prolific, Chinese State-Sponsored Group Operating at a Global Scale | |||
| Details | Website | 2023-08-02 | 31 | Investigating Intrusions From Intriguing Exploits | ||
| Details | Website | 2023-07-31 | 3 | Letsdefend.io SOC163 — Suspicious Certutil.exe Usage (Event Id:113) |