3CX confirms North Korean hackers behind supply chain attack - RedPacket Security
Tags
| country: | France |
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Dll Side-Loading - T1574.002 Malware - T1587.001 Malware - T1588.001 Software - T1592.002 Windows Service - T1543.003 Tool - T1588.002 Dll Side-Loading - T1073 |
Common Information
| Type | Value |
|---|---|
| UUID | 155ce743-7803-45ec-81b8-c2e189f47831 |
| Fingerprint | 91ac943d8c2ba6e2 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | April 12, 2023, 5:03 a.m. |
| Added to db | April 12, 2023, 6:16 a.m. |
| Last updated | Nov. 17, 2024, 6:55 p.m. |
| Headline | RedPacket Security |
| Title | 3CX confirms North Korean hackers behind supply chain attack - RedPacket Security |
| Detected Hints/Tags/Attributes | 51/3/8 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 361 | ✔ | RedPacket Security | https://www.redpacketsecurity.com/feed/ | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 24 | cve-2023-29059 |
|
| Details | CVE | 30 | cve-2013-3900 |
|
| Details | Domain | 32 | azureonlinecloud.com |
|
| Details | Domain | 33 | akamaicontainer.com |
|
| Details | Domain | 41 | journalide.org |
|
| Details | Domain | 4 | msboxonline.com |
|
| Details | File | 1122 | svchost.exe |
|
| Details | Mandiant Uncategorized Groups | 59 | UNC4736 |