Weekly Detection Rule (YARA and Snort) Information - Week 2, December 2024 - ASEC
Tags
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Data Phishing - T1660 Phishing - T1566 Powershell - T1059.001 Server - T1583.004 Server - T1584.004 Powershell - T1086 |
Common Information
| Type | Value |
|---|---|
| UUID | 7785fcd8-7cb4-42a8-834c-bba6f5710edd |
| Fingerprint | ddd4cbf2e9cd1be4 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Dec. 10, 2024, 3 p.m. |
| Added to db | Dec. 11, 2024, 11:10 a.m. |
| Last updated | Dec. 18, 2024, 9:38 p.m. |
| Headline | Weekly Detection Rule (YARA and Snort) Information – Week 2, December 2024 |
| Title | Weekly Detection Rule (YARA and Snort) Information - Week 2, December 2024 - ASEC |
| Detected Hints/Tags/Attributes | 15/2/14 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://asec.ahnlab.com/en/85075/ |
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 17 | ✔ | ASEC | https://asec.ahnlab.com/en/feed/ | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 12 | cve-2024-35286 |
|
| Details | CVE | 15 | cve-2024-41713 |
|
| Details | CVE | 20 | cve-2024-42327 |
|
| Details | CVE | 4 | cve-2024-8877 |
|
| Details | Domain | 4359 | github.com |
|
| Details | Domain | 36 | rules.emergingthreatspro.com |
|
| Details | File | 3 | veeamhax.exe |
|
| Details | Github username | 22 | the-dfir-report |
|
| Details | Github username | 23 | t4d |
|
| Details | Github username | 40 | neo23x0 |
|
| Details | Url | 7 | https://github.com/the-dfir-report/yara-rules |
|
| Details | Url | 23 | https://github.com/t4d/phishingkit-yara-rules |
|
| Details | Url | 13 | https://github.com/neo23x0/signature-base |
|
| Details | Url | 33 | https://rules.emergingthreatspro.com/open |