Threat Advisory
Common Information
| Type | Value |
|---|---|
| UUID | 7f6e731b-174d-4d80-bcff-c62ce0f0f8e9 |
| Fingerprint | 9fb0cad5005342fc0a7663eb7cbe8dfceb65b7a554def2be59e07ddf4cdee6a9 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Sept. 13, 2023, 10:13 a.m. |
| Added to db | Feb. 7, 2024, 7:24 p.m. |
| Last updated | Aug. 31, 2024, 2:20 a.m. |
| Headline | Threat Advisory |
| Title | Threat Advisory |
| Detected Hints/Tags/Attributes | 94/3/45 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 184 | cve-2021-26855 |
|
| Details | Domain | 452 | msrc.microsoft.com |
|
| Details | Domain | 262 | www.welivesecurity.com |
|
| Details | Domain | 1 | www.gilead.com |
|
| Details | Domain | 13 | www.who.int |
|
| Details | Domain | 435 | www.hivepro.com |
|
| Details | sha1 | 1 | 098b9a6ce722311553e1d8ac5849ba1dc5834c52 |
|
| Details | sha1 | 1 | 5aee3c957056a8640041abc108d0b8a3d7a02ebd |
|
| Details | sha1 | 1 | 764eb6ca3752576c182fc19cff3e86c38dd51475 |
|
| Details | sha1 | 1 | 2f3eda9d788a35f4c467b63860e73c3b010529cc |
|
| Details | sha1 | 1 | e443dc53284537513c00818392e569c79328f56f |
|
| Details | sha1 | 1 | c4bc1a5a02f8ac3cf642880dc1fc3b1e46e4da61 |
|
| Details | sha1 | 1 | 39ae8ba8c5280a09ba638df4c9d64ac0f3f706b6 |
|
| Details | sha1 | 1 | a200be662cdc0ece2a2c8fc4dbbc8c574d31848a |
|
| Details | sha1 | 1 | 5d60c8507ac9b840a13ffdf19e3315a3e14de66a |
|
| Details | sha1 | 1 | 50cfb3cf1a0fe5ec2264ace53f96fadfe99cc617 |
|
| Details | sha1 | 2 | 1aae62acee3c04a6728f9edc3756fabd6e342252 |
|
| Details | sha1 | 1 | 519ca93366f1b1d71052c6ce140f5c80ce885181 |
|
| Details | sha1 | 3 | 4709827c7a95012ab970bf651ed5183083366c79 |
|
| Details | sha1 | 1 | 99c7b5827df89b4fafc2b565abed97c58a3c65b8 |
|
| Details | sha1 | 1 | e52aa118a59502790a4dd6625854bd93c0deaf27 |
|
| Details | IPv4 | 2 | 162.55.137.20 |
|
| Details | IPv4 | 1 | 37.120.222.168 |
|
| Details | IPv4 | 3 | 198.144.189.74 |
|
| Details | IPv4 | 1 | 5.255.97.172 |
|
| Details | Mandiant Temporary Group Assumption | 6 | TEMP.BEANIE |
|
| Details | Mandiant Uncategorized Groups | 18 | UNC788 |
|
| Details | MITRE ATT&CK Techniques | 36 | T1595 |
|
| Details | MITRE ATT&CK Techniques | 96 | T1587.001 |
|
| Details | MITRE ATT&CK Techniques | 59 | T1588.002 |
|
| Details | MITRE ATT&CK Techniques | 542 | T1190 |
|
| Details | MITRE ATT&CK Techniques | 333 | T1059.003 |
|
| Details | MITRE ATT&CK Techniques | 174 | T1569.002 |
|
| Details | MITRE ATT&CK Techniques | 180 | T1543.003 |
|
| Details | MITRE ATT&CK Techniques | 43 | T1078.003 |
|
| Details | MITRE ATT&CK Techniques | 504 | T1140 |
|
| Details | MITRE ATT&CK Techniques | 627 | T1027 |
|
| Details | MITRE ATT&CK Techniques | 125 | T1555.003 |
|
| Details | MITRE ATT&CK Techniques | 243 | T1018 |
|
| Details | MITRE ATT&CK Techniques | 75 | T1001 |
|
| Details | Threat Actor Identifier - APT | 194 | APT35 |
|
| Details | Url | 1 | https://msrc.microsoft.com/update-guide/en-us/advisory/cve-2021-26855 |
|
| Details | Url | 1 | https://www.welivesecurity.com/en/eset-research/sponsor-batch-filed-whiskers-ballistic-bobcats- |
|
| Details | Url | 1 | https://www.gilead.com |
|
| Details | Url | 4 | https://www.who.int |