Stories from the SOC: Registry Clues to PDF Blues: A Tale of PUA Persistence
Tags
attack-pattern: Data Boot Or Logon Autostart Execution - T1547 Javascript - T1059.007 Malicious File - T1204.002 Scheduled Task - T1053.005 Tool - T1588.002 Whois - T1596.002 Browser Extensions - T1176 Scheduled Task - T1053
Show in Graph
Common Information
Type Value
UUID 37596e24-ce40-4b68-9b09-6462d7ea3c27
Fingerprint ff56928a80bbc4ad
Analysis status DONE
Considered CTI value 2
Text language
Published Nov. 21, 2024, 7:05 a.m.
Added to db Nov. 21, 2024, 8:15 a.m.
Last updated Nov. 21, 2024, 12:16 p.m.
Headline Stories from the SOC: Registry Clues to PDF Blues: A Tale of PUA Persistence
Title Stories from the SOC: Registry Clues to PDF Blues: A Tale of PUA Persistence
Detected Hints/Tags/Attributes 38/1/9
Source URLs
Redirection Url
Details Source https://malware.news/t/stories-from-the-soc-registry-clues-to-pdf-blues-a-tale-of-pua-persistence/88624
URL Provider
Details Provider Source level domain
Details malware.news malware.news
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 158 Malware Analysis, News and Indicators - Latest topics https://malware.news/latest.rss 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 2 
pdfflex.io
Details Domain 942 
any.run
Details File 29 
node.exe
Details File 24 
update.js
Details File 2 
freepdf_49402039.msi
Details sha256 2 
9c5d756045fd479a742b81241ccf439d02fc668581a3002913811a341278de43
Details MITRE ATT&CK Techniques 209 
T1547
Details MITRE ATT&CK Techniques 483 
T1053
Details MITRE ATT&CK Techniques 32 
T1176