ioc[.]one - OSINT Cyber Threat Intelligence Database

Zero Day Initiative — CVE-2020-0729: Remote Code Execution Through .LNK Files

Tags

attack-pattern:

Data Clipboard Data - T1414 Control Panel - T1218.002 Exploits - T1587.004 Exploits - T1588.005 Malware - T1587.001 Malware - T1588.001 Vulnerabilities - T1588.006 Clipboard Data - T1115 Scripting - T1064 Scripting

Show in Graph

Common Information

Type	Value
UUID	67929db6-3d3e-4e40-bdf8-4596f2d2fe04
Fingerprint	be8bb8372627d620
Analysis status	DONE
Considered CTI value	0
Text language
Published	March 25, 2020, midnight
Added to db	Feb. 17, 2023, 9:35 p.m.
Last updated	Nov. 17, 2024, 6:49 p.m.
Headline	CVE-2020-0729: Remote Code Execution Through .LNK Files
Title	Zero Day Initiative — CVE-2020-0729: Remote Code Execution Through .LNK Files
Detected Hints/Tags/Attributes	32/1/11

Source URLs

	Redirection	Url
Details	Source	https://www.thezdi.com/blog/2020/3/25/cve-2020-0729-remote-code-execution-through-lnk-files

URL Provider

Details	Provider	Source level domain
Details	thezdi.com	www.thezdi.com

Attributes

Details	Type	#Events	CTI	Value
Details	CVE	6		cve-2020-0729
Details	CVE	3		cve-2018-0825
Details	Domain	10		windows.storage
Details	Domain	3		windows.storage.search
Details	Domain	13		go.trendmicro.com
Details	File	185		shell32.dll
Details	File	10		storage.dll
Details	File	1		structuredquery.dll
Details	File	6		search.dll
Details	File	1260		explorer.exe
Details	Url	11		http://go.trendmicro.com/tis/.