Common Information
| Type | Value |
|---|---|
| Value |
powershell.exe |
| Category | |
| Type | File |
| Misp Type | |
| Description |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2023-07-21 | 42 | Emekçi bir SOC — Investigating Windows 2.0'yi çözelim. | ||
| Details | Website | 2023-07-21 | 29 | A Guide to Sysmon-View | ||
| Details | Website | 2023-07-21 | 15 | SOC164 EventID:114 — SOC164 — Suspicious Mshta Behavior — letsdefend.io | ||
| Details | 2023-07-20 | 158 | Understanding LockBit Ransomware: TTPs and Behavioral Insights for Effective Defense | |||
| Details | Website | 2023-07-20 | 9 | Threat Hunting for Windows Shell Escape Characters in cmd.exe Execution | ||
| Details | Website | 2023-07-20 | 9 | Threat Hunting for CVE-2019–19781 | ||
| Details | Website | 2023-07-18 | 56 | Ursnif VS Italy: Il PDF del Destino | ||
| Details | Website | 2023-07-18 | 12 | What Are LOLBins? - SOC Prime | ||
| Details | Website | 2023-07-18 | 42 | FIN8 Uses Revamped Sardonic Backdoor to Deliver Noberus Ransomware | ||
| Details | Website | 2023-07-17 | 5 | UAC-0010 aka Armageddon APT Attacks Detection: Overview of Group’s Ongoing Offensive Operations Targeting Ukraine - SOC Prime | ||
| Details | Website | 2023-07-17 | 12 | MS-SQL 서버로 유포되는 PurpleFox - ASEC BLOG | ||
| Details | Website | 2023-07-17 | 3 | Social Engineering using Hidden Macros in Excel | ||
| Details | Website | 2023-07-17 | 42 | Threat Actors Add .zip Domains to Their Phishing Arsenals | Fortinet Blog | ||
| Details | Website | 2023-07-16 | 5 | Gamaredon hackers start stealing data 30 minutes after a breach - RedPacket Security | ||
| Details | Website | 2023-07-15 | 5 | Gamaredon hackers start stealing data 30 minutes after a breach | ||
| Details | Website | 2023-07-13 | 75 | HackTheBox “Conceal” Walkthrough | ||
| Details | Website | 2023-07-13 | 16 | Stories from the SOC: OneNote MalSpam – Detection & response - Cybersecurity Insiders | ||
| Details | Website | 2023-07-12 | 5 | Blue Team Labs Online: A Classic Injection | ||
| Details | Website | 2023-07-12 | 13 | Unraveling the Illusion of Trust: The Innovative Attack Methodology Leveraging the "search-ms" URI Protocol Handler | ||
| Details | Website | 2023-07-11 | 10 | Confluence to Cerber: Exploitation of CVE-2023-22518 for Ransomware Deployment | ||
| Details | Website | 2023-07-09 | 33 | CloudEyE — From .lnk to Shellcode | ||
| Details | Website | 2023-07-07 | 18 | HackTheBox “Bounty” Walkthrough | ||
| Details | Website | 2023-07-07 | 37 | Kimsuky Threat Group Using Chrome Remote Desktop - ASEC BLOG | ||
| Details | Website | 2023-07-06 | 17 | [QuickNote] Examining Formbook Campaign via Phishing Emails | ||
| Details | Website | 2023-07-04 | 10 | ICMTC CTF 2023 Qualifications | Forensics writeup |