ioc[.]one - OSINT Cyber Threat Intelligence Database

BlackOasis APT and new targeted attacks leveraging zero-day exploit

Tags

cmtmf-attack-pattern:	Native Code
country:	Afghanistan Angola Bahrain Netherlands Nigeria Jordan Iran Iraq Saudi Arabia Libya Tunisia United Kingdom
attack-pattern:	Data Dll Search Order Hijacking - T1574.001 Exploits - T1587.004 Exploits - T1588.005 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Vulnerabilities - T1588.006 Dll Search Order Hijacking - T1038

Show in Graph

Common Information

Type	Value
UUID	85453572-71a5-4572-ab69-1112e71ae2a8
Fingerprint	941109d709a74583
Analysis status	DONE
Considered CTI value	2
Text language
Published	Oct. 16, 2017, 2:28 p.m.
Added to db	Sept. 26, 2022, 9:30 a.m.
Last updated	Oct. 22, 2024, 8:46 p.m.
Headline	BlackOasis APT and new targeted attacks leveraging zero-day exploit
Title	BlackOasis APT and new targeted attacks leveraging zero-day exploit
Detected Hints/Tags/Attributes	66/3/23

Source URLs

	Redirection	Url
Details	Source	https://securelist.com/blackoasis-apt-and-new-targeted-attacks-leveraging-zero-day-exploit/82732/

URL Provider

Details	Provider	Source level domain
Details	securelist.com	securelist.com

Attributes

Details	Type	#Events	Value
Details	CVE	15	cve-2017-11292
Details	CVE	57	cve-2017-8759
Details	CVE	57	cve-2016-4117
Details	CVE	59	cve-2015-5119
Details	CVE	4	cve-2016-0984
Details	Domain	338	kaspersky.com
Details	Domain	1	15b937.cab
Details	Domain	4	install.cab
Details	Email	147	intelreports@kaspersky.com
Details	File	1	mo.exe
Details	File	1	c:\programdata\managerapp\adaptertroubleshooter.exe
Details	File	1	c:\programdata\managerapp\15b937.cab
Details	File	1	c:\programdata\managerapp\install.cab
Details	File	1	c:\programdata\managerapp\msvcr90.dll
Details	File	1	c:\programdata\managerapp\d3d9.dll
Details	File	3	adaptertroubleshooter.exe
Details	File	8	d3d9.dll
Details	File	52	exploit.swf
Details	md5	1	4a49135d2ecc07085a8b7c5925a36c0a
Details	IPv4	4	21.0.0.226
Details	IPv4	1	89.45.67.107
Details	Url	1	http://89.45.67.107/rss/5uzosoff0u.iaf
Details	Url	1	http://89.45.67.107/rss/mo.exe