CVE-2012-1889 Microsoft XML vulnerability - Samples and Analysis by Brian Mariani and Frédéric Bourla
Tags
country: Switzerland
attack-pattern: Data Web Services - T1583.006 Web Services - T1584.006 Scripting - T1064 Scripting
Show in Graph
Common Information
Type Value
UUID 3ecc43e7-ec9b-422a-a964-a70e59d67bfb
Fingerprint 82197f11ade51368
Analysis status DONE
Considered CTI value 2
Text language
Published July 4, 2012, 11:11 p.m.
Added to db Jan. 18, 2023, 7:46 p.m.
Last updated Nov. 17, 2024, 5:58 p.m.
Headline UNKNOWN
Title CVE-2012-1889 Microsoft XML vulnerability - Samples and Analysis by Brian Mariani and Frédéric Bourla
Detected Hints/Tags/Attributes 31/2/11
Source URLs
Redirection Url
Details Source http://contagiodump.blogspot.com/2012/07/brian-mariani-high-tech-bridge-htbridge.html
URL Provider
Details Provider Source level domain
Details blogspot.com contagiodump.blogspot.com
Attributes
Details Type #Events CTI Value
Details CVE 17 
cve-2012-1889
Details Domain 2 
htbridge.com
Details Domain 6 
www.htbridge.com
Details File 1 
enkorean.htm
Details File 8 
poc.txt
Details File 7 
msxml3.dll
Details File 47 
oleaut32.dll
Details File 1 
msxml4.dll
Details File 5 
msxml6.dll
Details md5 1 
DF531CFF54C3E16B9EF3D4C8C8AAB449
Details md5 1 
b0574ef27f05cc1bebb94b85dcd8ba88