CVE-2022-22965 Analyzing the Exploitation of Spring4Shell Vulnerability in Weaponizing and Executing the Mirai Botnet Malware
Tags
Common Information
Type | Value |
---|---|
UUID | 0465956a-cbdd-4032-8fc1-244ef9185033 |
Fingerprint | 96281d15ed12d58b |
Analysis status | DONE |
Considered CTI value | 0 |
Text language | |
Published | April 8, 2022, midnight |
Added to db | Oct. 15, 2024, 3:57 p.m. |
Last updated | Dec. 23, 2024, 12:08 p.m. |
Headline | CVE-2022-22965: Analyzing the Exploitation of Spring4Shell Vulnerability in Weaponizing and Executing the Mirai Botnet Malware |
Title | CVE-2022-22965 Analyzing the Exploitation of Spring4Shell Vulnerability in Weaponizing and Executing the Mirai Botnet Malware |
Detected Hints/Tags/Attributes | 62/2/13 |
Source URLs
URL Provider
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 13 | wget.sh |
|
Details | File | 11 | tomcatwar.jsp |
|
Details | File | 1 | is.jsp |
|
Details | File | 20 | shell.jsp |
|
Details | IPv4 | 4 | 45.95.169.143 |
|
Details | IPv4 | 2 | 10.10.10.176 |
|
Details | Url | 2 | http://45.95.169.143/the420smokeplace.dns/kkvettgaaasecnn |
|
Details | Url | 2 | http://45.95.169.143/the420smokeplace.dns/kkvettgaaasecnnaaaa.x86 |
|
Details | CVE | 99 | cve-2022-22965 |
|
Details | CVE | 54 | cve-2022-22963 |
|
Details | Domain | 147 | java.io |
|
Details | Domain | 16 | in.read |
|
Details | Domain | 5 | class.module.classloader.resources.context.parent.pipeline.first.directory |