Apache Struts 2 Vulnerability (CVE-2018-11776) Exploited in CroniX Crypto-Mining Campaign
Tags
country: Palau Russia
attack-pattern: Cron - T1053.003 Dns - T1071.004 Dns - T1590.002 Exploits - T1587.004 Exploits - T1588.005 Malicious File - T1204.002 Malware - T1587.001 Malware - T1588.001 Powershell - T1059.001 Server - T1583.004 Server - T1584.004 Visual Basic - T1059.005 Tool - T1588.002 Vulnerabilities - T1588.006 Powershell - T1086
Show in Graph
Common Information
Type Value
UUID 08a9cae0-d17c-4226-bccc-a79fdd40bc79
Fingerprint a4058d9b24372685
Analysis status DONE
Considered CTI value 2
Text language
Published Sept. 4, 2018, 4 a.m.
Added to db Aug. 12, 2023, 3:04 a.m.
Last updated Nov. 17, 2024, 6:53 p.m.
Headline Apache Struts 2 Vulnerability (CVE-2018-11776) Exploited in CroniX Crypto-Mining Campaign
Title Apache Struts 2 Vulnerability (CVE-2018-11776) Exploited in CroniX Crypto-Mining Campaign
Detected Hints/Tags/Attributes 44/2/8
Attributes
Details Type #Events CTI Value
Details CVE 26 
cve-2018-11776
Details CVE 122 
cve-2017-5638
Details CVE 11 
cve-2017-1000353
Details Domain 18 
update.sh
Details Domain 358 
pastebin.com
Details Domain 11 
eu.minerpool.pw
Details Domain 51 
reg.ru
Details Url 2 
https://pastebin.com/jrergp1u