Multiple attempts to exploit Realtek vulnerabilities discovered by our researchers - SAM Seamless Network
Tags
attack-pattern: Data Botnet - T1583.005 Botnet - T1584.005 Exploits - T1587.004 Exploits - T1588.005 Ip Addresses - T1590.005 Malware - T1587.001 Malware - T1588.001 Software - T1592.002 Vulnerabilities - T1588.006
Show in Graph
Common Information
Type Value
UUID 7c4c562f-a6d8-45f6-b773-bf76f9305874
Fingerprint 117128c4f9b36182
Analysis status DONE
Considered CTI value 2
Text language
Published Aug. 19, 2021, 5:31 p.m.
Added to db Feb. 18, 2023, 2:16 a.m.
Last updated Nov. 18, 2024, 8:30 a.m.
Headline Multiple attempts to exploit Realtek vulnerabilities discovered by our researchers
Title Multiple attempts to exploit Realtek vulnerabilities discovered by our researchers - SAM Seamless Network
Detected Hints/Tags/Attributes 27/1/20
Source URLs
Redirection Url
Details Source https://securingsam.com/realtek-vulnerabilities-weaponized/
URL Provider
Details Provider Source level domain
Details securingsam.com securingsam.com
Attributes
Details Type #Events CTI Value
Details CVE 11 
cve-2021-35395
Details Domain 6 
lolol.sh
Details Domain 2 
www.iot-inspector.com
Details Domain 644 
nvd.nist.gov
Details Domain 224 
unit42.paloaltonetworks.com
Details File 3 
wlwps.asp
Details sha256 1 
a3ee4bd2f330bf6939cb9121f36261e42f54ffc45676120216fd8da4cb52036a
Details sha256 1 
9dfaa2e60027427c9f1ff377ad3cd3bc800b914c4b9ea5e408442d25f475dab9
Details sha256 1 
24d6cd113c9ddf49cb6140d2cc185f2cc033170ac27e2c352d94848cc449c312
Details sha256 1 
caa8b10057fb699d463f309913d0557462e8b37afdaf4d0c3cff63f9b9605f0d
Details sha256 1 
fd7da924fe743d2e09b10f4e8a01230f7bc884ae14ef0e6133e553de118a457e
Details sha256 1 
0c734c8c0f8e575a08672d01fc5a729605b3e9dbb4d0c62bd94ad86d2c3d6aeb
Details sha256 1 
85b07054472bbaa06d0611dfb28632ffa351d3b13e37b447914f49a1dfe07dc4
Details sha256 1 
a5478d51a809aed51d633611371c105e3ec82490f9516d186e7013dabcf8c77f
Details sha256 1 
bf9d92666d3b25cf6e49234472a2fa515107eb6df07f4aee6deb6a42eed4fa92
Details sha256 1 
16787be5e8d7de5816d590efb4916c7415f458bc7059d2d287715fb3ef8e0783
Details sha256 1 
67a655d4360cfe0ca5db17c6486f3dfbca1c82c2af4bc1f2019cee68199108c7
Details IPv4 4 
31.210.20.100
Details IPv4 4 
212.192.241.87
Details Url 2 
http://212.192.241.87/lolol.sh