UNKNOWN
Common Information
| Type | Value |
|---|---|
| UUID | 495e7a74-c9c2-4222-98cd-97aedc05a7dc |
| Fingerprint | 9951227b8e7e472da7706af92af6f33b15737a55f2a6a91cd06853c0d1e61770 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | May 22, 2023, 6:34 p.m. |
| Added to db | May 19, 2024, 12:49 p.m. |
| Last updated | Aug. 31, 2024, 7:08 a.m. |
| Headline | UNKNOWN |
| Title | UNKNOWN |
| Detected Hints/Tags/Attributes | 250/3/106 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 172 | cve-2022-30190 |
|
| Details | CVE | 397 | cve-2021-44228 |
|
| Details | CVE | 105 | cve-2022-41040 |
|
| Details | CVE | 87 | cve-2022-22965 |
|
| Details | CVE | 122 | cve-2022-26134 |
|
| Details | CVE | 20 | cve-2022-26138 |
|
| Details | CVE | 29 | cve-2022-27925 |
|
| Details | CVE | 22 | cve-2022-41352 |
|
| Details | CVE | 70 | cve-2022-1388 |
|
| Details | CVE | 62 | cve-2022-40684 |
|
| Details | CVE | 34 | cve-2022-0847 |
|
| Details | CVE | 42 | cve-2022-22954 |
|
| Details | CVE | 5 | cve-2022-36934 |
|
| Details | CVE | 4 | cve-2022-27492 |
|
| Details | CVE | 4 | cve-2022-28799 |
|
| Details | CVE | 5 | cve-2022-28763 |
|
| Details | CVE | 2 | cve-2020-0188 |
|
| Details | CVE | 25 | cve-2020-3992 |
|
| Details | CVE | 30 | cve-2023-21674 |
|
| Details | CVE | 12 | cve-2023-21707 |
|
| Details | CVE | 10 | cve-2023-21706 |
|
| Details | CVE | 18 | cve-2023-21529 |
|
| Details | CVE | 7 | cve-2023-21549 |
|
| Details | CVE | 66 | cve-2021-21974 |
|
| Details | CVE | 27 | cve-2023-21823 |
|
| Details | CVE | 36 | cve-2023-23376 |
|
| Details | CVE | 7 | cve-2023-21710 |
|
| Details | CVE | 14 | cve-2022-26809 |
|
| Details | CVE | 2 | cve-2018-10642 |
|
| Details | Domain | 4 | level.travel |
|
| Details | Domain | 7 | gov.il |
|
| Details | Domain | 2 | bugbounty.sa |
|
| Details | Domain | 4 | bugbounty.jp |
|
| Details | Domain | 2 | com.news.app |
|
| Details | Domain | 2 | raritet.io |
|
| Details | Domain | 3 | rekt.news |
|
| Details | Domain | 2 | itop.city |
|
| Details | Domain | 1 | 148.city |
|
| Details | Domain | 2 | advertising.city |
|
| Details | Domain | 7 | xx.xxx.xxx |
|
| Details | Domain | 2 | object.property |
|
| Details | Domain | 2 | lg4.ptsecurity.net |
|
| Details | Domain | 2 | lg4.win |
|
| Details | Domain | 2 | bugbounty.standoff365.com |
|
| Details | Domain | 246 | mail.ru |
|
| Details | Domain | 226 | ptsecurity.com |
|
| Details | Domain | 17 | tenable.sc |
|
| Details | Domain | 44 | tenable.io |
|
| Details | Domain | 13 | snyk.io |
|
| Details | 1 | hr@bankoff.stf |
||
| Details | 1 | bsimon@services.stf |
||
| Details | 2 | hr@city.stf |
||
| Details | File | 91 | access.log |
|
| Details | File | 27 | jscript.dll |
|
| Details | File | 23 | vbscript.dll |
|
| Details | File | 478 | lsass.exe |
|
| Details | File | 115 | auth.log |
|
| Details | File | 2125 | cmd.exe |
|
| Details | File | 25 | findstr.exe |
|
| Details | File | 173 | outlook.exe |
|
| Details | File | 62 | whoami.exe |
|
| Details | File | 17 | cv.doc |
|
| Details | File | 1208 | powershell.exe |
|
| Details | File | 7 | 7zip.exe |
|
| Details | File | 17 | artifact.exe |
|
| Details | File | 19 | nmap.exe |
|
| Details | File | 2 | lsysnetworkrestricted.exe |
|
| Details | File | 2 | wwihost.exe |
|
| Details | File | 156 | 1.exe |
|
| Details | File | 74 | mstsc.exe |
|
| Details | File | 1260 | explorer.exe |
|
| Details | File | 6 | c:\users\public\1.exe |
|
| Details | File | 2 | zabbix-agent.exe |
|
| Details | File | 1 | zabbix_agent.exe |
|
| Details | File | 2 | hv.log |
|
| Details | IPv4 | 2 | 10.156.12.34 |
|
| Details | IPv4 | 2 | 10.156.14.12 |
|
| Details | IPv4 | 2 | 10.156.12.25 |
|
| Details | IPv4 | 2 | 10.156.22.134 |
|
| Details | IPv4 | 2 | 10.156.22.25 |
|
| Details | IPv4 | 2 | 10.156.26.21 |
|
| Details | IPv4 | 2 | 10.156.26.34 |
|
| Details | IPv4 | 2 | 10.156.24.219 |
|
| Details | IPv4 | 2 | 10.156.24.3 |
|
| Details | Microsoft Patch Numbers | 18 | KB2871997 |
|
| Details | MITRE ATT&CK Techniques | 542 | T1190 |
|
| Details | MITRE ATT&CK Techniques | 695 | T1059 |
|
| Details | MITRE ATT&CK Techniques | 112 | T1098 |
|
| Details | MITRE ATT&CK Techniques | 125 | T1110 |
|
| Details | MITRE ATT&CK Techniques | 289 | T1003 |
|
| Details | MITRE ATT&CK Techniques | 113 | T1552 |
|
| Details | MITRE ATT&CK Techniques | 179 | T1087 |
|
| Details | MITRE ATT&CK Techniques | 585 | T1083 |
|
| Details | MITRE ATT&CK Techniques | 33 | T1550 |
|
| Details | MITRE ATT&CK Techniques | 444 | T1071 |
|
| Details | MITRE ATT&CK Techniques | 27 | T1003.006 |
|
| Details | MITRE ATT&CK Techniques | 173 | T1003.001 |
|
| Details | MITRE ATT&CK Techniques | 44 | T1110.001 |
|
| Details | MITRE ATT&CK Techniques | 49 | T1110.003 |
|
| Details | MITRE ATT&CK Techniques | 99 | T1087.002 |
|
| Details | MITRE ATT&CK Techniques | 72 | T1087.001 |
|
| Details | MITRE ATT&CK Techniques | 38 | T1550.002 |
|
| Details | MITRE ATT&CK Techniques | 12 | T1550.003 |
|
| Details | Threat Actor Identifier - APT | 166 | APT31 |
|
| Details | Url | 1 | http://lg4.ptsecurity |
|
| Details | Windows Registry Key | 11 | HKLM\SOFTWARE\Microsoft |