Threat Advisory
Common Information
| Type | Value |
|---|---|
| UUID | 5e91ce4f-8349-464e-90b6-6b864684ca9a |
| Fingerprint | 53ee564ddefdb77beb5e2ba19360428f4b5424d3a287fe936138ad07ea051b86 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Oct. 12, 2023, 3:55 p.m. |
| Added to db | Feb. 7, 2024, 7:30 p.m. |
| Last updated | Aug. 31, 2024, 2:29 a.m. |
| Headline | Threat Advisory |
| Title | Threat Advisory |
| Detected Hints/Tags/Attributes | 72/4/53 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 6 | cve-2022-23748 |
|
| Details | Domain | 3 | ns01.nayatel.orinafz.com |
|
| Details | Domain | 3 | eaq.machineaccountquota.com |
|
| Details | Domain | 3 | qaq2.machineaccountquota.com |
|
| Details | Domain | 3 | imap.774b884034c450b.com |
|
| Details | Domain | 3 | admit.pkigoscorp.com |
|
| Details | Domain | 1 | www.audinate.com |
|
| Details | Domain | 141 | research.checkpoint.com |
|
| Details | Domain | 435 | www.hivepro.com |
|
| Details | Domain | 3 | update.certexvpn.com |
|
| Details | Domain | 3 | cyberguard.certexvpn.com |
|
| Details | Domain | 3 | gist.gitbusercontent.com |
|
| Details | Domain | 3 | git.gitbusercontent.com |
|
| Details | Domain | 3 | raw.gitbusercontent.com |
|
| Details | Domain | 3 | cert.qform3d.in |
|
| Details | Domain | 3 | sslvpn.pkigoscorp.com |
|
| Details | Domain | 3 | cdn.pkigoscorp.com |
|
| Details | Domain | 3 | idp.pkigoscorp.com |
|
| Details | Domain | 3 | ad.fopingu.com |
|
| Details | Domain | 3 | proxy.rtmcsync.com |
|
| Details | Domain | 3 | pic.rtmcsync.com |
|
| Details | Domain | 3 | backend.rtmcsync.com |
|
| Details | File | 18 | mdnsresponder.exe |
|
| Details | File | 6 | dal_keepalives.dll |
|
| Details | IPv4 | 3 | 70.34.201.229 |
|
| Details | IPv4 | 3 | 185.136.163.129 |
|
| Details | IPv4 | 3 | 45.77.171.170 |
|
| Details | IPv4 | 3 | 167.179.91.150 |
|
| Details | IPv4 | 3 | 185.243.112.223 |
|
| Details | IPv4 | 5 | 207.148.69.74 |
|
| Details | IPv4 | 3 | 139.180.145.121 |
|
| Details | IPv4 | 3 | 77.91.75.232 |
|
| Details | IPv4 | 3 | 178.23.190.206 |
|
| Details | IPv4 | 3 | 136.244.111.25 |
|
| Details | IPv4 | 3 | 185.242.85.124 |
|
| Details | IPv4 | 3 | 45.159.250.179 |
|
| Details | IPv4 | 3 | 65.20.68.126 |
|
| Details | MITRE ATT&CK Techniques | 110 | T1588.006 |
|
| Details | MITRE ATT&CK Techniques | 409 | T1566 |
|
| Details | MITRE ATT&CK Techniques | 13 | T1598.002 |
|
| Details | MITRE ATT&CK Techniques | 695 | T1059 |
|
| Details | MITRE ATT&CK Techniques | 480 | T1053 |
|
| Details | MITRE ATT&CK Techniques | 122 | T1543 |
|
| Details | MITRE ATT&CK Techniques | 164 | T1574 |
|
| Details | MITRE ATT&CK Techniques | 227 | T1574.002 |
|
| Details | MITRE ATT&CK Techniques | 440 | T1055 |
|
| Details | MITRE ATT&CK Techniques | 585 | T1083 |
|
| Details | MITRE ATT&CK Techniques | 118 | T1570 |
|
| Details | MITRE ATT&CK Techniques | 492 | T1105 |
|
| Details | MITRE ATT&CK Techniques | 444 | T1071 |
|
| Details | Url | 1 | https://www.audinate.com/learning/faqs/audinate-response-to-dante-discovery- |
|
| Details | Url | 2 | https://research.checkpoint.com/2023/stayin-alive-targeted-attacks-against-telecoms-and- |
|
| Details | Url | 1 | https://www.hivepro.com/toddycat-exploits-unknown-vulnerability-in-microsoft-exchange- |