Yet Another MS CVE: Don’t Get Caught In The Storm! - Cynet
Tags
country: Russia
attack-pattern: Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Vulnerabilities - T1588.006
Show in Graph
Common Information
Type Value
UUID 438c3539-0504-450b-9ae1-b9b9505322f5
Fingerprint b411197b6130f709
Analysis status DONE
Considered CTI value 2
Text language
Published July 12, 2023, 7:05 p.m.
Added to db July 24, 2023, 9:10 p.m.
Last updated Nov. 17, 2024, 6:54 p.m.
Headline Yet Another MS CVE: Don’t Get Caught In The Storm!
Title Yet Another MS CVE: Don’t Get Caught In The Storm! - Cynet
Detected Hints/Tags/Attributes 42/2/21
Source URLs
Redirection Url
Details Source https://www.cynet.com/blog/yet-another-ms-cve-dont-get-caught-in-the-storm/
URL Provider
Details Provider Source level domain
Details cynet.com www.cynet.com
Attributes
Details Type #Events CTI Value
Details CVE 119 
cve-2023-36884
Details File 58 
document.xml
Details File 5 
file001.url
Details File 199 
excel.exe
Details File 18 
graph.exe
Details File 91 
msaccess.exe
Details File 102 
mspub.exe
Details File 14 
powerpoint.exe
Details File 86 
visio.exe
Details File 15 
winproj.exe
Details File 323 
winword.exe
Details File 90 
wordpad.exe
Details sha256 9 
a61b2eafcf39715031357df6b01e85e0d1ea2e8ee1dfec241b114e18f7a1163f
Details sha256 8 
e7cfeb023c3160a7366f209a16a6f6ea5a0bc9a3ddc16c6cba758114dfe6b539
Details sha256 2 
d3263cc3eff826431c2016aee674c7e3e5329bebfb7a145907de39a279859f4a
Details sha256 8 
3a3138c5add59d2172ad33bc6761f2f82ba344f3d03a2269c623f22c1a35df97
Details sha256 7 
07377209fe68a98e9bca310d9749daa4eb79558e9fc419cf0b02a9e37679038d
Details Deprecated Microsoft Threat Actor Naming Taxonomy (Groups in development) 17 
DEV-0978
Details Microsoft Threat Actor Naming Taxonomy (Groups in development) 79 
Storm-0978
Details Windows Registry Key 11 
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Internet
Details Windows Registry Key 8 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet