ioc[.]one - OSINT Cyber Threat Intelligence Database

Speed of weaponization: From vulnerability disclosure to crypto-mining campaign in a week | Darktrace Blog

Tags

maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Direct Model Models Credentials - T1589.001 Domains - T1583.001 Domains - T1584.001 Exploits - T1587.004 Exploits - T1588.005 Phishing - T1660 Phishing - T1566 Server - T1583.004 Server - T1584.004 Software - T1592.002 Tool - T1588.002 Vulnerabilities - T1588.006 Vulnerability Scanning - T1595.002

Show in Graph

Common Information

Type	Value
UUID	998c77bd-2d4a-431b-9023-02900a36bdc4
Fingerprint	a7910953a933d68b
Analysis status	DONE
Considered CTI value	2
Text language
Published	July 7, 2020, midnight
Added to db	Aug. 13, 2023, 4:49 p.m.
Last updated	Oct. 16, 2024, 2:03 a.m.
Headline	Speed of weaponization: From vulnerability disclosure to crypto-mining campaign in a week
Title	Speed of weaponization: From vulnerability disclosure to crypto-mining campaign in a week \| Darktrace Blog
Detected Hints/Tags/Attributes	98/2/15

Source URLs

	Redirection	Url
Details	Source	https://darktrace.com/blog/speed-of-weaponization-from-vulnerability-disclosure-to-crypto-mining-campaign-in-a-week

URL Provider

Details	Provider	Source level domain
Details	darktrace.com	darktrace.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	101	✔	—	https://de.darktrace.com/blog/rss.xml	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	CVE	16		cve-2020-11651
Details	CVE	10		cve-2020-11652
Details	Domain	76		ipfs.io
Details	Domain	58		image.thum.io
Details	Domain	58		logo.clearbit.com
Details	Domain	58		mku.ipfs.dweb.link
Details	Domain	58		filebase.com
Details	File	58		ob.html
Details	File	58		atob.html
Details	File	58		cpmk.htm
Details	sha256	1		837d768875417578c0b1cab4bd0aa38146147799f643bb7b3c6c6d3d82d7aa2a
Details	Url	58		https://ipfs.io/ipfs/qmfddxlwoliqfurx6duzcshxvbp1znm21h5jxgs1ffnxtp?filename=at
Details	Url	58		https://ipfs.io/ipfs/qmfddxlwoli
Details	Url	58		https://filebase.com/blog/ipfs-content-addressing-explained
Details	Url	58		https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/the-attack-of-the-chameleon-phishing-page