ioc[.]one - OSINT Cyber Threat Intelligence Database

Tốc kí một sample sử dụng CVE_2018_20250 (Target VN)

Tags

attack-pattern:

Data Powershell - T1059.001 Server - T1583.004 Server - T1584.004 Powershell - T1086

Show in Graph

Common Information

Type	Value
UUID	2922eb6b-5900-4ba0-9cdd-bf606fc1a63e
Fingerprint	351a11480f8c5ef6
Analysis status	DONE
Considered CTI value	0
Text language
Published	June 30, 2019, 7:02 a.m.
Added to db	Sept. 26, 2022, 9:34 a.m.
Last updated	Nov. 18, 2024, 1:38 a.m.
Headline	Tốc kí một sample sử dụng CVE_2018_20250 (Target VN)
Title	Tốc kí một sample sử dụng CVE_2018_20250 (Target VN)
Detected Hints/Tags/Attributes	23/1/17

Source URLs

	Redirection	Url
Details	Source	https://tradahacking.vn/t%E1%BB%91c-k%C3%AD-m%E1%BB%99t-sample-s%E1%BB%AD-d%E1%BB%A5ng-cve-2018-20250-target-vn-3ba306bf3d83

URL Provider

Details	Provider	Source level domain
Details	tradahacking.vn	tradahacking.vn

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	228		system.io
Details	Domain	339		system.net
Details	Domain	22		stream.read
Details	Domain	6		ms.seek
Details	Domain	4128		github.com
Details	File	1		bieumautt1.doc
Details	File	5		shell.ps1
Details	File	1209		powershell.exe
Details	File	2127		cmd.exe
Details	File	748		kernel32.dll
Details	Github username	2		vletoux
Details	sha256	1		8e13fdc73ad91cc70ee2114a71699005b993e76d56f704c38d887ee3ca3dd6c9
Details	IPv4	1		217.163.23.19
Details	Url	1		https://www.virustotal.com/gui/file/8e13fdc73ad91cc70ee2114a71699005b993e76d56f704c38d887ee3ca3dd6c9
Details	Url	1		http://217.163.23.19/file/shell.ps1
Details	Url	1		http://217.163.23.19/test
Details	Url	1		https://github.com/vletoux/ms17-010-scanner