Weekly Detection Rule (YARA and Snort) Information - Week 2, December 2024 - ASEC
Tags
maec-delivery-vectors: | Watering Hole |
attack-pattern: | Data Phishing - T1660 Phishing - T1566 Powershell - T1059.001 Server - T1583.004 Server - T1584.004 Powershell - T1086 |
Common Information
Type | Value |
---|---|
UUID | 7785fcd8-7cb4-42a8-834c-bba6f5710edd |
Fingerprint | ddd4cbf2e9cd1be4 |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | Dec. 10, 2024, 3 p.m. |
Added to db | Dec. 11, 2024, 11:10 a.m. |
Last updated | Dec. 11, 2024, 11:11 a.m. |
Headline | Weekly Detection Rule (YARA and Snort) Information – Week 2, December 2024 |
Title | Weekly Detection Rule (YARA and Snort) Information - Week 2, December 2024 - ASEC |
Detected Hints/Tags/Attributes | 15/2/14 |
Source URLs
Redirection | Url | |
---|---|---|
Details | Source | https://asec.ahnlab.com/en/85075/ |
URL Provider
RSS Feed
Details | Id | Enabled | Feed title | Url | Added to db |
---|---|---|---|---|---|
Details | 17 | ✔ | ASEC | https://asec.ahnlab.com/en/feed/ | 2024-08-30 22:08 |
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | CVE | 9 | cve-2024-35286 |
|
Details | CVE | 12 | cve-2024-41713 |
|
Details | CVE | 16 | cve-2024-42327 |
|
Details | CVE | 4 | cve-2024-8877 |
|
Details | Domain | 4285 | github.com |
|
Details | Domain | 34 | rules.emergingthreatspro.com |
|
Details | File | 3 | veeamhax.exe |
|
Details | Github username | 22 | the-dfir-report |
|
Details | Github username | 23 | t4d |
|
Details | Github username | 38 | neo23x0 |
|
Details | Url | 7 | https://github.com/the-dfir-report/yara-rules |
|
Details | Url | 23 | https://github.com/t4d/phishingkit-yara-rules |
|
Details | Url | 11 | https://github.com/neo23x0/signature-base |
|
Details | Url | 31 | https://rules.emergingthreatspro.com/open |