ioc[.]one - OSINT Cyber Threat Intelligence Database

PowerPoint Presentation

Show in Graph

Common Information

Type	Value
UUID	da8d8f95-dd25-47d0-9b38-e3bbd3c99667
Fingerprint	0b8b84239396b3b637241caa9a0e51fc3fe292d06d2071e9f222f3465db40884
Analysis status	DONE
Considered CTI value	2
Text language
Published	April 12, 2022, 3:49 p.m.
Added to db	Feb. 7, 2024, 6:48 p.m.
Last updated	Aug. 31, 2024, 2:24 a.m.
Headline	PowerPoint Presentation
Title	PowerPoint Presentation
Detected Hints/Tags/Attributes	27/3/105

Source URLs

	Redirection	Url
Details	Source	https://www.hivepro.com/wp-content/uploads/2021/11/RCE-Spring-Framework-Zero-Day-vulnerability-Spring4Shell_TA2022084.pdf

URL Provider

Details	Provider	Source level domain
Details	hivepro.com	www.hivepro.com

Attributes

Details	Type	#Events	Value
Details	CVE	87	cve-2022-22965
Details	Domain	10	www.praetorian.com
Details	Domain	2	www.cyberkendra.com
Details	Domain	38	blog.netlab.360.com
Details	Domain	28	spring.io
Details	Domain	7	tanzu.vmware.com
Details	File	1	springshell-rce-0-day-vulnerability.html
Details	File	2	cve-2022-22965-analyzing-the-exploitation-of-spring4shell-vulner.html
Details	md5	3	be3f78b59fa14140b6cc8633bf705a75
Details	md5	3	c08fec5682085417b0a039bdf47c38f2
Details	md5	3	4bcd19351697d04fb357ce5b36600207
Details	md5	3	7d244e7bf48d6631b588cecae87e759d
Details	md5	3	9c14d670a48bba4b7c047a01d417f8f2
Details	md5	3	97a7a357b8290a7236a5fbf45f17569f
Details	md5	3	7621f1a5e8db18f3ae30031122c9c397
Details	md5	3	100674f1e3ecfb6fa244de4ba7fd2ae2
Details	md5	3	329155ab45e244661a7725d81dfad740
Details	md5	3	611630a580e33017be32de8c72625489
Details	md5	3	650152a2fe78dfceceb4d1a1fdeaccb8
Details	md5	3	400590515f0f1cf942fe734126be94e7
Details	md5	3	a8a36132632366c7f65066b23d6f7e4f
Details	md5	3	b1124c862998bc4ab3ff8b1d471310a6
Details	md5	3	cca63413e3ca6b834b6a4446768c5ccb
Details	md5	3	dcc157b2c284ac676000d64dd33f3ec4
Details	md5	3	e1190f07a6da91caaa317affc9512caa
Details	md5	3	eba95249cf0a51e300d7b6029cf7088e
Details	md5	3	fb63e9a23dbf4124116471fcf3254283
Details	md5	3	fd839753ca4d89c0ccd229b12f95827c
Details	sha256	1	69366a4e652041c78c2cc267288a4c4bb0d4eece4074adda82eecd11d9dcf08d
Details	sha256	1	945d49d58d2d3041aad9445487f01a13d863cf8e76151e9a5008615175f7e52e
Details	sha256	1	208fc38faf5a2267d837971b48889e855c0edc164c0b2edefff08d0782ccf1bb
Details	sha256	1	890f25ee7cfb2931536ee3e12fb75ce3f0be21ec03bdfdb38dc688db06e07198
Details	sha256	2	de4040a631b95044e08797837e2143c64ef7c6b981547a9220f8ed7b40701ef9
Details	sha256	1	b73314087130fe98896add3430787744de7310d3342b219bd668cdce79368f91
Details	sha256	1	596acbbfd7bc54dcc06123b7adfb7337f8ceab736004ce930d8286c8914b8e25
Details	sha256	2	fa7bbc46a7b062a5828380b7c70a67cb47ba10c2ef127fd2348647313f65aa11
Details	sha256	1	7052cef3936c29707da0dd0d4696863b63971eefa1b0e7db611df2ce26b73f50
Details	sha256	2	8f429996f5be9d59d86ba4346de535a25b9a2c3e89cf2e29dbc053d13ae99269
Details	sha256	1	ae3fabbbb2e2297e31435b7a57c486f0eaf0f01738da8d0ab68214dc92373666
Details	sha256	2	cf7570cbbca779c755729484792208900a89564669785cb26e88442278ac52b2
Details	sha256	2	0b63f6e7621421de9968d46de243ef769a343b61597816615222387c45df80ae
Details	sha256	2	303abc6d8ab41cb00e3e7a2165ecc1e7fb4377ba46a9f4213a05f764567182e5
Details	sha256	1	a0a39c06f56d63b9d37f7e72c24ec0768fe0aff497870ef879d7ae813d84bf1e
Details	sha256	2	09472d6bfb1c142a3b02f73175254a5e961f91e792dc9b347b099944bcfeab6f
Details	sha256	1	ad03c5f2add8c629f4294b2a7df440cbae213f466e18f98af66db0b82a4e4142
Details	sha256	1	452a89dd1c760881e0066a5f6c0fc7b5f936a90a197859a4f3ee74b39f705da0
Details	sha256	1	ded51c96d161e9ac22782d7f9df37fe4816eae13be9369f9c8630ee706de53e1
Details	sha256	1	baae0ac6b3873dfdec2587dcddfaf1a327aadf77f7fea6a1532960f31e3dd240
Details	IPv4	3	45.95.169.143
Details	IPv4	4	107.174.133.167
Details	IPv4	3	15.185.213.122
Details	IPv4	3	46.175.146.159
Details	IPv4	3	1.85.220.54
Details	IPv4	3	3.239.1.141
Details	IPv4	6	5.2.69.50
Details	IPv4	3	27.102.106.117
Details	IPv4	3	37.187.18.212
Details	IPv4	3	43.128.201.239
Details	IPv4	3	43.242.116.54
Details	IPv4	3	45.15.16.105
Details	IPv4	3	45.32.251.86
Details	IPv4	3	45.128.133.242
Details	IPv4	3	45.129.56.200
Details	IPv4	3	46.232.251.191
Details	IPv4	3	51.77.52.216
Details	IPv4	3	81.17.18.59
Details	IPv4	4	85.93.218.204
Details	IPv4	3	85.204.116.204
Details	IPv4	3	87.120.37.231
Details	IPv4	3	91.149.225.172
Details	IPv4	3	91.211.89.43
Details	IPv4	3	93.95.226.212
Details	IPv4	3	94.140.114.210
Details	IPv4	3	103.140.186.68
Details	IPv4	3	109.70.100.19
Details	IPv4	3	142.4.206.84
Details	IPv4	3	178.17.170.135
Details	IPv4	3	185.36.81.95
Details	IPv4	5	185.83.214.69
Details	IPv4	3	185.100.86.74
Details	IPv4	3	185.105.90.134
Details	IPv4	3	185.226.67.169
Details	IPv4	3	217.138.199.93
Details	MITRE ATT&CK Techniques	145	T1588
Details	MITRE ATT&CK Techniques	110	T1588.006
Details	MITRE ATT&CK Techniques	245	T1203
Details	Url	1	http://45.95.169.143/the420smokeplace.dns
Details	Url	3	http://107.174.133.167/gmpsl
Details	Url	3	http://107.174.133.167/gi686
Details	Url	3	http://107.174.133.167/garm
Details	Url	3	http://107.174.133.167/gmips
Details	Url	3	http://107.174.133.167/garm7
Details	Url	3	http://107.174.133.167/gx86
Details	Url	4	http://107.174.133.167/t.sh
Details	Url	3	http://107.174.133.167/garm6
Details	Url	3	http://107.174.133.167/garm5
Details	Url	3	http://15.185.213.122:65123/javac
Details	Url	3	http://15.185.213.122:65123
Details	Url	3	http://15.185.213.122:65123/java
Details	Url	2	https://www.praetorian.com/blog/spring-core-jdk9-rce
Details	Url	1	https://www.cyberkendra.com/2022/03/springshell-rce-0-day-vulnerability.html
Details	Url	1	https://blog.netlab.360.com/what-our-honeypot-sees-just-one-day-after-the-spring4shell-advisory-en
Details	Url	1	https://www.trendmicro.com/en_us/research/22/d/cve-2022-22965-analyzing-the-exploitation-of-spring4shell-vulner.html
Details	Url	4	https://spring.io/blog/2022/03/31/spring-framework-rce-early-announcement
Details	Url	2	https://tanzu.vmware.com/security/cve-2022-22965