Attackers Exploit Fortinet Zero-Day CVE-2022-42475 with BoldMove Malware
Tags
| country: | China |
| attack-pattern: | Data Ip Addresses - T1590.005 Malicious File - T1204.002 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Vulnerabilities - T1588.006 |
Common Information
| Type | Value |
|---|---|
| UUID | 0fa04c4e-a587-44e9-ab48-8226d394fd37 |
| Fingerprint | a5383b17cd106e63 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Jan. 23, 2023, 9:20 a.m. |
| Added to db | Jan. 23, 2023, 8 p.m. |
| Last updated | Nov. 17, 2024, 12:57 p.m. |
| Headline | Attackers Exploit Fortinet Zero-Day CVE-2022-42475 with BoldMove Malware |
| Title | Attackers Exploit Fortinet Zero-Day CVE-2022-42475 with BoldMove Malware |
| Detected Hints/Tags/Attributes | 31/2/7 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 238 | ✔ | SOCRadar® Cyber Intelligence Inc. | https://socradar.io/feed/ | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 90 | cve-2022-42475 |
|
| Details | md5 | 3 | 12e28c14bb7f7b9513a02e5857592ad7 |
|
| Details | md5 | 3 | 3191cb2e06e9a30792309813793f78b6 |
|
| Details | md5 | 3 | 54bbea35b095ddfe9740df97b693627b |
|
| Details | sha256 | 2 | 3da407c1a30d810aaff9a04dfc1ef5861062ebdf0e6d0f6823ca682ca08c37da |
|
| Details | sha256 | 2 | 0184e3d3dd8f4778d192d07e2caf44211141a570d45bb47a87894c68ebebeabb |
|
| Details | sha256 | 2 | 61aae0e18c41ec4f610676680d26f6c6e1d4d5aa4e5092e40915fe806b679cd4 |