Microsoft Azure Synapse Pwnalytics
Tags
attack-pattern: Data Credentials - T1589.001 File Deletion - T1070.004 File Deletion - T1630.002 Ip Addresses - T1590.005 Software - T1592.002 Vulnerabilities - T1588.006 File Deletion - T1107 Sudo - T1169
Show in Graph
Common Information
Type Value
UUID 7118967f-23df-4b99-a55b-7cf15eddee5a
Fingerprint 321399113ce7e34d
Analysis status DONE
Considered CTI value 0
Text language
Published June 13, 2022, 12:42 p.m.
Added to db Jan. 18, 2023, 10 p.m.
Last updated Nov. 17, 2024, 10:40 p.m.
Headline Microsoft Azure Synapse Pwnalytics
Title Microsoft Azure Synapse Pwnalytics
Detected Hints/Tags/Attributes 54/1/19
Source URLs
Redirection Url
Details Source https://medium.com/tenable-techblog/microsoft-azure-synapse-pwnalytics-87c99c036291
URL Provider
Details Provider Source level domain
Details medium.com medium.com
Attributes
Details Type #Events CTI Value
Details Domain 3 
positive.security
Details Domain 144 
www.fortinet.com
Details Domain 11 
www.netspi.com
Details Domain 1373 
twitter.com
Details Domain 1 
filesharemount.sh
Details Domain 369 
microsoft.com
Details Domain 1 
functions.sh
Details Domain 4 
file.core.windows.net
Details Domain 1 
gfieristorage.file.core.windows.net
Details Domain 1 
microsoft.analytics.clusters.services
Details Email 1 
spark-service-dev@microsoft.com
Details Email 1 
testshare@gfieristorage.file.core.windows.net
Details File 5 
file.core
Details File 1 
hostresolver.dll
Details Url 2 
https://positive.security/blog/ms-officecmd-rce
Details Url 1 
https://www.fortinet.com/blog/threat-research/analysis-of-follina-zero-day
Details Url 1 
https://www.netspi.com/blog/technical/cloud-penetration-testing/attacking-azure-cloud-shell
Details Url 1 
https://twitter.com/j00sean/status/1534124426874261504
Details Url 1 
https://testshare@gfieristorage.file.core.windows.net