Volt Typhoon Explained: Living Off the Land Tactics for Cyber Espionage
Tags
Common Information
Type | Value |
---|---|
UUID | 33c6cde5-0074-45e8-9a23-42e8a8f24db7 |
Fingerprint | a55089110990f541 |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | Dec. 23, 2024, 12:13 p.m. |
Added to db | Dec. 23, 2024, 2:07 p.m. |
Last updated | Dec. 23, 2024, 2:09 p.m. |
Headline | Volt Typhoon Explained: Living Off the Land Tactics for Cyber Espionage |
Title | Volt Typhoon Explained: Living Off the Land Tactics for Cyber Espionage |
Detected Hints/Tags/Attributes | 152/4/19 |
Source URLs
URL Provider
RSS Feed
Details | Id | Enabled | Feed title | Url | Added to db |
---|---|---|---|---|---|
Details | 352 | ✔ | Resources-2 | https://www.picussecurity.com/resource/rss.xml | 2024-08-30 22:08 |
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 11 | www.cyber.nj.gov |
|
Details | File | 82 | mstsc.exe |
|
Details | MITRE ATT&CK Techniques | 343 | T1078 |
|
Details | MITRE ATT&CK Techniques | 743 | T1059 |
|
Details | MITRE ATT&CK Techniques | 502 | T1053 |
|
Details | MITRE ATT&CK Techniques | 221 | T1068 |
|
Details | MITRE ATT&CK Techniques | 680 | T1027 |
|
Details | MITRE ATT&CK Techniques | 323 | T1003 |
|
Details | MITRE ATT&CK Techniques | 178 | T1046 |
|
Details | MITRE ATT&CK Techniques | 179 | T1021 |
|
Details | MITRE ATT&CK Techniques | 561 | T1005 |
|
Details | MITRE ATT&CK Techniques | 458 | T1041 |
|
Details | MITRE ATT&CK Techniques | 480 | T1071 |
|
Details | MITRE ATT&CK Techniques | 102 | T1485 |
|
Details | Url | 1 | https://www.picussecurity.com/resource/blog/volt-typhoon-the-chinese-apt-group-abuse-lolbins-for-cyber-espionage |
|
Details | Url | 1 | https://www.bleepingcomputer.com/news/security/volt-typhoon-rebuilds-malware-botnet-following-fbi-disruption |
|
Details | Url | 4 | https://www.microsoft.com/en-us/security/blog/2023/05/24/volt-typhoon-targets-us-critical-infrastructure-with-living-off-the-land-techniques |
|
Details | Url | 1 | https://www.cyber.nj.gov/home/components/news/news/1510/214 |
|
Details | Windows Registry Key | 1 | HKLM\SYSTEM\CurrentControlSet\Services\Credential |