Threat Advisory
Common Information
| Type | Value |
|---|---|
| UUID | b1fbfc8b-8ac5-4fea-86c3-98c8ff17823f |
| Fingerprint | 07e20f6e946a838841aa57a61eb8980e8ba4c395a5bf1c3021c16d1be5fadce5 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Oct. 12, 2023, 8:38 p.m. |
| Added to db | Feb. 7, 2024, 7:28 p.m. |
| Last updated | Aug. 31, 2024, 2:29 a.m. |
| Headline | Threat Advisory |
| Title | Threat Advisory |
| Detected Hints/Tags/Attributes | 113/4/126 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 122 | cve-2022-26134 |
|
| Details | Domain | 272 | outlook.com |
|
| Details | Domain | 1 | www.bluefield.edu |
|
| Details | Domain | 1 | www.roseman.edu |
|
| Details | Domain | 1 | www.emmanuel.edu |
|
| Details | Domain | 1 | www.dijones.com.au |
|
| Details | Domain | 1 | cavalierhospital.com |
|
| Details | Domain | 1 | www.laragh.com |
|
| Details | Domain | 1 | sunpowermarine.com |
|
| Details | Domain | 1 | vmedia.ca |
|
| Details | Domain | 1 | maneygordon.com |
|
| Details | Domain | 1 | tiptoppoultry.com |
|
| Details | Domain | 1 | www.hainppc.com |
|
| Details | Domain | 1 | desman.com |
|
| Details | Domain | 1 | acesconn.com |
|
| Details | Domain | 1 | entigrity.com |
|
| Details | Domain | 1 | www.methodistfamily.org |
|
| Details | Domain | 1 | titlecashnow.com |
|
| Details | Domain | 1 | www.openmribala.com |
|
| Details | Domain | 1 | www.cnsu.edu |
|
| Details | Domain | 1 | www.mitchellewis.com |
|
| Details | Domain | 1 | ultralifecorporation.com |
|
| Details | Domain | 1 | www.hamiltonparker.com |
|
| Details | Domain | 1 | schandy.com.uy |
|
| Details | Domain | 1 | cannondesign.com |
|
| Details | Domain | 1 | www.wescoturf.com |
|
| Details | Domain | 1 | buckeyepackaging.com |
|
| Details | Domain | 1 | globalminingproducts.net |
|
| Details | Domain | 1 | memtechacoustical.com |
|
| Details | Domain | 1 | cambiangroup.com |
|
| Details | Domain | 1 | azlaborforce.com |
|
| Details | Domain | 1 | www.corporate-interiors.com |
|
| Details | Domain | 469 | www.cisa.gov |
|
| Details | Domain | 435 | www.hivepro.com |
|
| Details | Domain | 2 | www.securin.io |
|
| Details | Domain | 80 | portal.msrc.microsoft.com |
|
| Details | Domain | 26 | www.manageengine.com |
|
| Details | Domain | 34 | msrc-blog.microsoft.com |
|
| Details | Domain | 23 | logging.apache.org |
|
| Details | Domain | 18 | issues.apache.org |
|
| Details | Domain | 19 | jira.atlassian.com |
|
| Details | 2 | keishagrey994@outlook.com |
||
| Details | File | 9 | get_your_files_back.txt |
|
| Details | File | 2 | authentication-bypass-vulnerability-in-rest-api.html |
|
| Details | File | 64 | security.html |
|
| Details | md5 | 1 | f659d1d15d2e0f3bd87379f8e88c6b42 |
|
| Details | md5 | 1 | e09183041930f37a38d0a776a63aa673 |
|
| Details | md5 | 1 | 31f8eedc2d82f69ccc726e012416ce33 |
|
| Details | md5 | 1 | d3cafcd46dea26c39dec17ca132e5138 |
|
| Details | md5 | 1 | 504bd1695de326bc533fde29b8a69319 |
|
| Details | md5 | 1 | eb45ff7ea2ccdcceb2e7e14f9cc01397 |
|
| Details | md5 | 1 | 829f2233a1cd77e9ec7de98596cd8165 |
|
| Details | md5 | 1 | 6ebd7d7473f0ace3f52c483389cab93f |
|
| Details | md5 | 1 | 10ef090d2f4c8001faadb0a833d60089 |
|
| Details | md5 | 1 | 8227af68552198a2d42de51cded2ce60 |
|
| Details | md5 | 1 | 9d0b3796d1d174080cdfdbd4064bea3a |
|
| Details | md5 | 1 | af31b5a572b3208f81dbf42f6c143f99 |
|
| Details | md5 | 1 | 1892bd45671f17e9f7f63d3ed15e348e |
|
| Details | md5 | 1 | cc68eaf36cb90c08308ad0ca3abc17c1 |
|
| Details | md5 | 1 | 646dc0b7335cffb671ae3dfd1ebefe47 |
|
| Details | md5 | 1 | 609a925fd253e82c80262bad31637f19 |
|
| Details | md5 | 1 | c6a667619fff6cf44f447868d8edd681 |
|
| Details | md5 | 1 | 3222c60b10e5a7c3158fd1cb3f513640 |
|
| Details | md5 | 1 | 90ce10d9aca909a8d2524bc265ef2fa4 |
|
| Details | md5 | 1 | 44a3561fb9e877a2841de36a3698abc0 |
|
| Details | md5 | 1 | 5cb3f10db11e1795c49ec6273c52b5f1 |
|
| Details | md5 | 1 | 122ea6581a36f14ab5ab65475370107e |
|
| Details | md5 | 1 | c82d7be7afdc9f3a0e474f019fb7b0f7 |
|
| Details | sha1 | 1 | 9c8f5c136590a08a3103ba3e988073cfd5779519 |
|
| Details | sha1 | 1 | 05c63ce49129f768d31c4bdb62ef5fb53eb41b54 |
|
| Details | sha1 | 1 | dab33aaf01322e88f79ffddcbc95d1ad9ad97374 |
|
| Details | sha1 | 1 | 6f110f251860a7f6757853181417e19c28841eb4 |
|
| Details | sha1 | 2 | 67f0c8d81aefcfc5943b31d695972194ac15e9f2 |
|
| Details | sha1 | 1 | 2d1ce0231cf8ff967c36bbfc931f3807ddba765c |
|
| Details | sha1 | 2 | 2f3273e5b6739b844fe33f7310476afb971956dd |
|
| Details | MITRE ATT&CK Techniques | 191 | T1133 |
|
| Details | MITRE ATT&CK Techniques | 460 | T1059.001 |
|
| Details | MITRE ATT&CK Techniques | 333 | T1059.003 |
|
| Details | MITRE ATT&CK Techniques | 695 | T1059 |
|
| Details | MITRE ATT&CK Techniques | 310 | T1047 |
|
| Details | MITRE ATT&CK Techniques | 104 | T1505.003 |
|
| Details | MITRE ATT&CK Techniques | 67 | T1505 |
|
| Details | MITRE ATT&CK Techniques | 172 | T1555 |
|
| Details | MITRE ATT&CK Techniques | 95 | T1572 |
|
| Details | MITRE ATT&CK Techniques | 472 | T1486 |
|
| Details | Url | 1 | https://www.bluefield.edu |
|
| Details | Url | 1 | https://www.roseman.edu |
|
| Details | Url | 1 | https://www.emmanuel.edu |
|
| Details | Url | 1 | https://www.dijones.com.au |
|
| Details | Url | 1 | https://cavalierhospital.com |
|
| Details | Url | 1 | https://www.laragh.com |
|
| Details | Url | 1 | https://sunpowermarine.com |
|
| Details | Url | 1 | https://vmedia.ca |
|
| Details | Url | 1 | https://maneygordon.com |
|
| Details | Url | 1 | https://tiptoppoultry.com |
|
| Details | Url | 1 | https://www.hainppc.com |
|
| Details | Url | 1 | https://desman.com |
|
| Details | Url | 1 | https://acesconn.com |
|
| Details | Url | 1 | https://entigrity.com |
|
| Details | Url | 1 | https://www.methodistfamily.org |
|
| Details | Url | 1 | https://titlecashnow.com |
|
| Details | Url | 1 | https://www.openmribala.com |
|
| Details | Url | 1 | https://www.cnsu.edu |
|
| Details | Url | 1 | https://www.mitchellewis.com |
|
| Details | Url | 1 | https://ultralifecorporation.com |
|
| Details | Url | 1 | https://www.hamiltonparker.com |
|
| Details | Url | 1 | https://schandy.com.uy |
|
| Details | Url | 1 | https://cannondesign.com |
|
| Details | Url | 1 | https://www.wescoturf.com |
|
| Details | Url | 1 | https://buckeyepackaging.com |
|
| Details | Url | 1 | https://globalminingproducts.net |
|
| Details | Url | 1 | https://memtechacoustical.com |
|
| Details | Url | 1 | https://cambiangroup.com |
|
| Details | Url | 1 | https://azlaborforce.com |
|
| Details | Url | 1 | https://www.corporate-interiors.com |
|
| Details | Url | 1 | https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-284a |
|
| Details | Url | 1 | https://www.cisa.gov/news-events/alerts/2022/03/22/fbi-and-fincen-release- |
|
| Details | Url | 1 | https://www.hivepro.com/avoslocker-ransomware-group-has-targeted-50- |
|
| Details | Url | 1 | https://www.securin.io/all-about-avoslocker-ransomware |
|
| Details | Url | 1 | https://www.securin.io/cve-2022-26134-a-new-rce-atlassian-bug-exploited-by- |
|
| Details | Url | 1 | https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/cve-2021- |
|
| Details | Url | 2 | https://www.manageengine.com/products/self-service-password/kb/how-to-fix- |
|
| Details | Url | 1 | https://msrc-blog.microsoft.com/2021/12/11/microsofts-response-to-cve-2021- |
|
| Details | Url | 15 | https://logging.apache.org/log4j/2.x/security.html |
|
| Details | Url | 1 | https://issues.apache.org/jira/browse/log4j2-3293 |
|
| Details | Url | 3 | https://jira.atlassian.com/browse/confserver-79016 |