ioc[.]one - OSINT Cyber Threat Intelligence Database

PowerPoint Presentation

Show in Graph

Common Information

Type	Value
UUID	8d0c83fb-7b14-4f60-8605-d93a18833464
Fingerprint	81ae83d2860f98566319b4ecb13c65051736667fcf0e5dde0404640cc2efa53d
Analysis status	DONE
Considered CTI value	2
Text language
Published	Nov. 9, 2022, 4:22 p.m.
Added to db	Feb. 7, 2024, 6:56 p.m.
Last updated	Aug. 31, 2024, 2:16 a.m.
Headline	PowerPoint Presentation
Title	PowerPoint Presentation
Detected Hints/Tags/Attributes	71/2/68

Source URLs

	Redirection	Url
Details	Source	https://www.hivepro.com/wp-content/uploads/2022/09/Unpatched-zero-day-vulnerabilities-of-Microsoft-Exchange-Server_TA2022213.pdf

URL Provider

Details	Provider	Source level domain
Details	hivepro.com	www.hivepro.com

Attributes

Details	Type	#Events	Value
Details	CVE	105	cve-2022-41040
Details	CVE	127	cve-2022-41082
Details	Domain	34	msrc-blog.microsoft.com
Details	Domain	397	www.microsoft.com
Details	Domain	2	gteltsc.vn
Details	Domain	452	msrc.microsoft.com
Details	Domain	435	www.hivepro.com
Details	File	2	c:\root\drsdkcaller.exe
Details	File	3	c:\users\public\all.exe
Details	File	3	c:\users\public\dump.dll
Details	File	2	c:\users\public\ad.exe
Details	File	2	c:\perflogs\gpg-error.exe
Details	File	2	c:\perflogs\cm.exe
Details	File	4	redirsuiteserviceproxy.aspx
Details	File	3	drsdkcaller.exe
Details	File	8	all.exe
Details	File	3	dump.dll
Details	File	7	ad.exe
Details	File	2	gpg-error.exe
Details	File	3	cm.exe
Details	File	1	vulnerability-on-microsoft-exchange-server-12715.html
Details	File	4	themes.aspx
Details	IPv4	4	137.184.67.33
Details	IPv4	4	125.212.220.48
Details	IPv4	4	5.180.61.17
Details	IPv4	4	47.242.39.92
Details	IPv4	4	61.244.94.85
Details	IPv4	4	86.48.6.69
Details	IPv4	4	86.48.12.64
Details	IPv4	4	94.140.8.48
Details	IPv4	4	94.140.8.113
Details	IPv4	4	103.9.76.208
Details	IPv4	4	103.9.76.211
Details	IPv4	5	104.244.79.6
Details	IPv4	4	112.118.48.186
Details	IPv4	4	122.155.174.188
Details	IPv4	4	125.212.241.134
Details	IPv4	4	185.220.101.182
Details	IPv4	4	194.150.167.88
Details	IPv4	4	212.119.34.11
Details	IPv4	4	206.188.196.77
Details	MITRE ATT&CK Techniques	36	T1586
Details	MITRE ATT&CK Techniques	19	T1586.002
Details	MITRE ATT&CK Techniques	695	T1059
Details	MITRE ATT&CK Techniques	333	T1059.003
Details	MITRE ATT&CK Techniques	67	T1505
Details	MITRE ATT&CK Techniques	104	T1505.003
Details	MITRE ATT&CK Techniques	247	T1070
Details	MITRE ATT&CK Techniques	297	T1070.004
Details	MITRE ATT&CK Techniques	348	T1036
Details	MITRE ATT&CK Techniques	183	T1036.005
Details	MITRE ATT&CK Techniques	91	T1620
Details	MITRE ATT&CK Techniques	289	T1003
Details	MITRE ATT&CK Techniques	173	T1003.001
Details	MITRE ATT&CK Techniques	179	T1087
Details	MITRE ATT&CK Techniques	585	T1083
Details	MITRE ATT&CK Techniques	433	T1057
Details	MITRE ATT&CK Techniques	119	T1049
Details	MITRE ATT&CK Techniques	118	T1570
Details	MITRE ATT&CK Techniques	157	T1560
Details	MITRE ATT&CK Techniques	116	T1560.001
Details	MITRE ATT&CK Techniques	310	T1047
Details	Url	1	https://msrc-blog.microsoft.com/2022/09/29/customer-guidance-for-reported-zero-
Details	Url	1	https://www.microsoft.com/security/blog/2022/09/30/analyzing-attacks-using-the-
Details	Url	1	https://gteltsc.vn/blog/warning-new-attack-campaign-utilized-a-new-0day-rce-
Details	Url	4	http://206.188.196.77:8080/themes.aspx
Details	Url	3	https://msrc.microsoft.com/update-guide/vulnerability/cve-2022-41040
Details	Url	3	https://msrc.microsoft.com/update-guide/vulnerability/cve-2022-41082