Stories from the SOC: Registry Clues to PDF Blues: A Tale of…
Tags
Common Information
| Type | Value |
|---|---|
| UUID | 844be43f-fe64-40d8-a3d2-3473f2459238 |
| Fingerprint | ff56938a84bb84ad |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Jan. 21, 2024, midnight |
| Added to db | Nov. 21, 2024, 8:17 a.m. |
| Last updated | Nov. 23, 2024, 5:18 p.m. |
| Headline | Stories from the SOC: Registry Clues to PDF Blues: A Tale of PUA Persistence |
| Title | Stories from the SOC: Registry Clues to PDF Blues: A Tale of… |
| Detected Hints/Tags/Attributes | 38/1/10 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 93 | ✔ | LevelBlue Blogs | https://cybersecurity.att.com/site/blog-all-rss | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 2 | pdfflex.io |
|
| Details | Domain | 957 | any.run |
|
| Details | File | 29 | node.exe |
|
| Details | File | 1 | ode.exe |
|
| Details | File | 24 | update.js |
|
| Details | File | 2 | freepdf_49402039.msi |
|
| Details | sha256 | 2 | 9c5d756045fd479a742b81241ccf439d02fc668581a3002913811a341278de43 |
|
| Details | MITRE ATT&CK Techniques | 209 | T1547 |
|
| Details | MITRE ATT&CK Techniques | 485 | T1053 |
|
| Details | MITRE ATT&CK Techniques | 32 | T1176 |