Threat Advisory: Zero-day vulnerability in Microsoft diagnostic tool MSDT could lead to code execution
Tags
attack-pattern: Data Direct Domains - T1583.001 Domains - T1584.001 Malware - T1587.001 Malware - T1588.001 Multi-Factor Authentication - T1556.006 Tool - T1588.002
Show in Graph
Common Information
Type Value
UUID 23445dda-26c8-4981-9c34-44b5f6f79e2e
Fingerprint adea0995c976e209
Analysis status DONE
Considered CTI value 2
Text language
Published June 1, 2022, 10:19 a.m.
Added to db Oct. 9, 2022, 4:09 p.m.
Last updated Nov. 17, 2024, 5:56 p.m.
Headline Vulnerability Information
Title Threat Advisory: Zero-day vulnerability in Microsoft diagnostic tool MSDT could lead to code execution
Detected Hints/Tags/Attributes 27/1/14
Source URLs
Redirection Url
Details Source https://blog.talosintelligence.com/2022/06/msdt-follina-coverage.html
URL Provider
Details Provider Source level domain
Details talosintelligence.com blog.talosintelligence.com
Attributes
Details Type #Events CTI Value
Details CVE 172 
cve-2022-30190
Details Domain 904 
snort.org
Details Domain 7 
www.xmlformats.com
Details Domain 2 
www.sputnikradio.net
Details Domain 3 
exchange.oufca.com.au
Details sha256 7 
4a24048f81afbe9fb62e7a6a49adbd1faf41f266b5f9feecdceb567aec096784
Details sha256 4 
8e986c906d0c6213f80d0224833913fa14bc4c15c047766a62f6329bfc0639bd
Details sha256 3 
fe300467c2714f4962d814a34f8ee631a51e8255b9c07106d44c6a1f1eda7a45
Details sha256 4 
710370f6142d945e142890eb427a368bfc6c5fe13a963f952fb884c38ef06bfa
Details sha256 3 
d61d70a4d4c417560652542e54486beb37edce014e34a94b8fd0020796ff1ef7
Details Url 5 
https://www.xmlformats.com/office/word/2022/wordprocessingdrawing/rdf842l.html
Details Url 2 
https://www.sputnikradio.net/radio/news/3134.html
Details Url 2 
https://exchange.oufca.com.au/owa/auth/15.1.2375/themes/p3azx.html
Details Windows Registry Key 8 
HKEY_CLASSES_ROOT\ms-msdt