Threat Advisory
Common Information
| Type | Value |
|---|---|
| UUID | f25f80d7-a829-4f68-95b1-36e0da5d1b47 |
| Fingerprint | 3c157c171aea077af66d12d45588314c57adbbfcb5eb2987614690b37c2b0498 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Dec. 12, 2023, 6:15 p.m. |
| Added to db | Feb. 7, 2024, 7:39 p.m. |
| Last updated | Aug. 31, 2024, 2:06 a.m. |
| Headline | Threat Advisory |
| Title | Threat Advisory |
| Detected Hints/Tags/Attributes | 95/3/42 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 397 | cve-2021-44228 |
|
| Details | Domain | 1 | tech.micrsofts.com |
|
| Details | Domain | 1 | tech.micrsofts.tech |
|
| Details | Domain | 261 | blog.talosintelligence.com |
|
| Details | Domain | 23 | logging.apache.org |
|
| Details | Domain | 435 | www.hivepro.com |
|
| Details | File | 64 | security.html |
|
| Details | IBM X-Force - Threat Group Enumeration | 6 | ITG03 |
|
| Details | IPv4 | 1 | 27.102.113.93 |
|
| Details | IPv4 | 1 | 185.29.8.53 |
|
| Details | IPv4 | 1 | 155.94.208.209 |
|
| Details | IPv4 | 3 | 162.19.71.175 |
|
| Details | IPv4 | 1 | 201.77.179.66 |
|
| Details | Mandiant Uncategorized Groups | 9 | UNC577 |
|
| Details | Mandiant Uncategorized Groups | 44 | UNC2970 |
|
| Details | Mandiant Uncategorized Groups | 16 | UNC4034 |
|
| Details | Mandiant Uncategorized Groups | 59 | UNC4736 |
|
| Details | Mandiant Uncategorized Groups | 21 | UNC4899 |
|
| Details | MITRE ATT&CK Techniques | 164 | T1574 |
|
| Details | MITRE ATT&CK Techniques | 116 | T1134 |
|
| Details | MITRE ATT&CK Techniques | 207 | T1547 |
|
| Details | MITRE ATT&CK Techniques | 149 | T1102 |
|
| Details | MITRE ATT&CK Techniques | 1006 | T1082 |
|
| Details | MITRE ATT&CK Techniques | 289 | T1003 |
|
| Details | MITRE ATT&CK Techniques | 14 | T1003.005 |
|
| Details | MITRE ATT&CK Techniques | 550 | T1112 |
|
| Details | MITRE ATT&CK Techniques | 185 | T1518 |
|
| Details | MITRE ATT&CK Techniques | 86 | T1136 |
|
| Details | MITRE ATT&CK Techniques | 112 | T1098 |
|
| Details | MITRE ATT&CK Techniques | 230 | T1033 |
|
| Details | MITRE ATT&CK Techniques | 492 | T1105 |
|
| Details | Deprecated Microsoft Threat Actor Naming Taxonomy (Groups in development) | 24 | DEV-0139 |
|
| Details | Threat Actor Identifier - APT-C | 30 | APT-C-26 |
|
| Details | Threat Actor Identifier by Red Alert | 39 | SectorA01 |
|
| Details | Threat Actor Identifier by Thales | 7 | ATK 3 |
|
| Details | Url | 1 | http://27.102.113.93/inet.txt |
|
| Details | Url | 1 | http://162.19.71.175:7443/sonic/bottom.gif |
|
| Details | Url | 1 | http://201.77.179.66:8082/img/lndex.php |
|
| Details | Url | 1 | http://201.77.179.66:8082/img/images/header/b691646991ebae |
|
| Details | Url | 1 | http://201.77.179.66:8082/img/images/header/7aebc320998fd5 |
|
| Details | Url | 2 | https://blog.talosintelligence.com/lazarus_new_rats_dlang_and_telegram |
|
| Details | Url | 15 | https://logging.apache.org/log4j/2.x/security.html |