Macintosh HD:Users:Shared:dd:4work:Bitdefender-PR-Whitepaper-BADHATCH-creat5237-en_EN:Bitdefender-PR-Whitepaper-BADHATCH-creat5237-en_EN.indd
Show in Graph
Image Description
Common Information
Type Value
UUID f693a8ab-921e-451a-9d19-532ec394da16
Fingerprint 5505611a98cbc8a6a818be8c9637adfe36f2983bfd194a648852a8fe689c4d08
Analysis status DONE
Considered CTI value 2
Text language
Published Oct. 5, 2022, 12:06 p.m.
Added to db March 12, 2024, 6:38 p.m.
Last updated Aug. 31, 2024, 4:42 a.m.
Headline Macintosh HD:Users:Shared:dd:4work:Bitdefender-PR-Whitepaper-BADHATCH-creat5237-en_EN:Bitdefender-PR-Whitepaper-BADHATCH-creat5237-en_EN.indd
Title Macintosh HD:Users:Shared:dd:4work:Bitdefender-PR-Whitepaper-BADHATCH-creat5237-en_EN:Bitdefender-PR-Whitepaper-BADHATCH-creat5237-en_EN.indd
Detected Hints/Tags/Attributes 109/3/61
Source URLs
Redirection Url
Details Source https://www.bitdefender.com/files/News/CaseStudies/study/424/Bitdefender-PR-Whitepaper-SLOneDriveCyberJack-creat6318-en-EN.pdf
URL Provider
Details Provider Source level domain
Details bitdefender.com www.bitdefender.com
Attributes
Details Type #Events CTI Value
Details Domain 128 
www.bitdefender.com
Details Domain 4127 
github.com
Details Domain 1 
etc.2miners.com
Details Domain 1 
besteffortteam.it
Details Domain 1 
www.syxsense.com
Details Domain 1 
labs.redyops.com
Details Domain 622 
en.wikipedia.org
Details Domain 2 
businessresources.bitdefender.com
Details Domain 281 
docs.microsoft.com
Details Domain 2 
xmrig-6.17.0-msvc-win64.zip
Details File 9 
secure32.dll
Details File 49 
onedrive.exe
Details File 9 
onedrivestandaloneupdater.exe
Details File 39 
secur32.dll
Details File 208 
setup.exe
Details File 50 
3.exe
Details File 48 
applaunch.exe
Details File 185 
shell32.dll
Details File 229 
advapi32.dll
Details File 1 
wininet32.dll
Details File 165 
reg.exe
Details File 146 
wininet.dll
Details File 1122 
svchost.exe
Details File 137 
conhost.exe
Details File 117 
taskmgr.exe
Details File 64 
procexp.exe
Details File 40 
procexp64.exe
Details File 1 
48_win64.zip
Details File 1 
51a_win64.zip
Details File 15 
dropper.exe
Details File 82 
taskkill.exe
Details File 1260 
explorer.exe
Details File 92 
c:\windows\system32\svchost.exe
Details File 1205 
index.php
Details File 1 
en_en-web.pdf
Details File 1 
0-msvc-win64.zip
Details File 2 
%appdata%\local\microsoft\onedrive\secur32.dll
Details Github username 9 
xmrig
Details Github username 1 
lolliedieb
Details md5 2 
fed6517a5f84eecc29edee5586d7feeb
Details md5 2 
9b1c1fd2556275a985bb4ce4aba99975
Details md5 2 
9b0d09fd16c24a1691fa7e316351399d
Details md5 2 
ec36e1abbf75584a9d0bb4a15f8f2c33
Details md5 2 
f3af73070387fb75b19286826cc3126c
Details md5 2 
7de8b8015540bf923385c36f60b9d5ae
Details md5 2 
656a4c1fcc572e855ac2e512c04ae206
Details md5 2 
7bbeb20cfcabcfa69d668c24a235082e
Details md5 2 
7c64bb78b589054079a1048f9fc79708
Details md5 2 
73cef9a93e9572c148a5785434708c41
Details Url 1 
https://besteffortteam.it/onedrive-and-teams-dll-hijacking
Details Url 1 
https://www.syxsense.com/onedrive-vulnerability
Details Url 1 
https://labs.redyops.com/index.php/2020/04/27/onedrive-privilege-of-escalation
Details Url 2 
https://en.wikipedia.org/wiki/fowler%e2%80%93noll%e2%80%93vo_hash_function
Details Url 5 
https://github.com/xmrig/xmrig
Details Url 1 
https://github.com/lolliedieb/lolminer-releases
Details Url 1 
https://businessresources.bitdefender.com/hubfs/bitdefender-business-2015-solutionpaper-atc-93030-
Details Url 1 
https://docs.microsoft.com/en-us/onedrive/per-machine-installation
Details Url 15 
https://www.bitdefender.com
Details Windows Registry Key 188 
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
Details Windows Registry Key 1 
HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run
Details Windows Registry Key 31 
HKCU\Software\Microsoft\Windows