Threat Advisory
Common Information
| Type | Value |
|---|---|
| UUID | 8ac31e9d-e1fd-4212-bd68-46d7a770a354 |
| Fingerprint | b0cdca1402ba368c43476805a7dcb9f0024a7eb66a372cee5077dd91ba7b3343 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Jan. 31, 2024, 2:53 p.m. |
| Added to db | Feb. 7, 2024, 7:48 p.m. |
| Last updated | Aug. 31, 2024, 3:02 a.m. |
| Headline | Threat Advisory |
| Title | Threat Advisory |
| Detected Hints/Tags/Attributes | 56/3/22 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 1 | nuxtsharp.data |
|
| Details | Domain | 41 | arcticwolf.com |
|
| Details | Domain | 101 | www.elastic.co |
|
| Details | Domain | 435 | www.hivepro.com |
|
| Details | File | 1 | nuxtsharp.dat |
|
| Details | IPv4 | 1 | 141.11.187.70 |
|
| Details | MITRE ATT&CK Techniques | 695 | T1059 |
|
| Details | MITRE ATT&CK Techniques | 86 | T1136 |
|
| Details | MITRE ATT&CK Techniques | 208 | T1068 |
|
| Details | MITRE ATT&CK Techniques | 20 | T1055.003 |
|
| Details | MITRE ATT&CK Techniques | 122 | T1543 |
|
| Details | MITRE ATT&CK Techniques | 164 | T1574 |
|
| Details | MITRE ATT&CK Techniques | 235 | T1562 |
|
| Details | MITRE ATT&CK Techniques | 9 | T1656 |
|
| Details | MITRE ATT&CK Techniques | 107 | T1564 |
|
| Details | MITRE ATT&CK Techniques | 504 | T1140 |
|
| Details | MITRE ATT&CK Techniques | 1006 | T1082 |
|
| Details | MITRE ATT&CK Techniques | 492 | T1105 |
|
| Details | MITRE ATT&CK Techniques | 348 | T1036 |
|
| Details | MITRE ATT&CK Techniques | 8 | T1027.011 |
|
| Details | Url | 1 | https://arcticwolf.com/resources/blog/cherryloader-a-new-go-based-loader-discovered- |
|
| Details | Url | 2 | https://www.elastic.co/blog/process-ghosting-a-new-executable-image-tampering-attack |