OWASSRF, a new exploit for Exchange vulnerabilities | Wiz Blog
Tags
country: Brazil Laos
attack-pattern: Data Powershell - T1059.001 Server - T1583.004 Server - T1584.004 Tool - T1588.002 Vulnerabilities - T1588.006 Powershell - T1086
Show in Graph
Common Information
Type Value
UUID 50fb97c6-16ad-4406-ac39-c907706dbb80
Fingerprint b5712cc7bea4e023
Analysis status DONE
Considered CTI value 2
Text language
Published Dec. 22, 2022, 1:10 p.m.
Added to db Aug. 31, 2024, 10:32 a.m.
Last updated Nov. 15, 2024, 12:41 p.m.
Headline OWASSRF, a new exploit for Exchange vulnerabilities, exploited in the wild: everything you need to know
Title OWASSRF, a new exploit for Exchange vulnerabilities | Wiz Blog
Detected Hints/Tags/Attributes 37/2/8
Attributes
Details Type #Events CTI Value
Details CVE 50 
cve-2022-41080
Details CVE 127 
cve-2022-41082
Details CVE 105 
cve-2022-41040
Details File 8 
'w3wp.exe
Details IPv4 3 
45.76.141.84
Details IPv4 3 
45.76.143.143
Details IPv4 3 
179.60.149.28
Details Microsoft Patch Numbers 6 
KB5019758