ioc[.]one - OSINT Cyber Threat Intelligence Database

Hacktivist Group DragonForce Actively Targeting Indian Entities, Shares an Exploit for a Critical Confluence Server Vulnerability CVE-2022-26134 | Threat Intelligence | CloudSEK

Tags

country:	Malaysia India
attack-pattern:	Data Confluence - T1213.001 Python - T1059.006 Server - T1583.004 Server - T1584.004 Social Media - T1593.001 Vulnerabilities - T1588.006

Show in Graph

Common Information

Type	Value
UUID	37243941-1c5a-4132-9a21-83e9262922bc
Fingerprint	b889ad579ef3cc83
Analysis status	DONE
Considered CTI value	0
Text language
Published	July 15, 2022, midnight
Added to db	Aug. 31, 2024, 2:30 a.m.
Last updated	Nov. 17, 2024, 5:57 p.m.
Headline	Hacktivist Group DragonForce Actively Targeting Indian Entities, Shares an Exploit for a Critical Confluence Server Vulnerability CVE-2022-26134
Title	Hacktivist Group DragonForce Actively Targeting Indian Entities, Shares an Exploit for a Critical Confluence Server Vulnerability CVE-2022-26134 \| Threat Intelligence \| CloudSEK
Detected Hints/Tags/Attributes	41/2/22

Source URLs

	Redirection	Url
Details	Source	https://cloudsek.com/threatintelligence/hacktivist-group-dragonforce-actively-targeting-indian-entities-shares-an-exploit-for-a-critical-confluence-server-vulnerability-cve-2022-26134
Details	Source	https://www.cloudsek.com/threatintelligence/hacktivist-group-dragonforce-actively-targeting-indian-entities-shares-an-exploit-for-a-critical-confluence-server-vulnerability-cve-2022-26134

URL Provider

Details	Provider	Source level domain
Details	cloudsek.com	www.cloudsek.com
Details	cloudsek.com	cloudsek.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	89	✔	CloudSEK Threat Intelligence	https://cloudsek.com/threatintelligence/rss.xml	2024-08-30 22:08

Attributes

Details	Type	#Events	Value
Details	CVE	122	cve-2022-26134
Details	Domain	3	cve-2022-26134.py
Details	Domain	2	targets.com
Details	Domain	18	site.com
Details	Domain	2	dragonforce.io
Details	Domain	2	radio.dragonforce.io
Details	Domain	2	fb.me
Details	Domain	1373	twitter.com
Details	Domain	91	instagram.com
Details	Domain	768	www.youtube.com
Details	File	3	cve-2022-26134.py
Details	File	10	shell.txt
Details	File	2	dfm.php
Details	Url	2	http://targets.com
Details	Url	2	https://site.com/shell.txt
Details	Url	2	https://dragonforce.io
Details	Url	2	https://radio.dragonforce.io
Details	Url	2	https://fb.me/dragonforcedotio
Details	Url	2	https://t.me/dragonforceio
Details	Url	2	https://twitter.com/dragonforceio
Details	Url	2	https://instagram.com/dragonforceio
Details	Url	2	https://www.youtube.com/channel/uc9gycrxuy7-wmulpbkbp4bw