From Exploit to Ransomware: Detecting CVE-2025-29824
Tags
country: Venezuela Saudi Arabia Spain United States Of America
attack-pattern: Data Exploits - T1587.004 Exploits - T1588.005 Malicious File - T1204.002 Malware - T1587.001 Malware - T1588.001 Msbuild - T1127.001 Server - T1583.004 Server - T1584.004 Software - T1592.002
Show in Graph
Common Information
Type Value
UUID 9ebc6ddd-dc22-4e40-9445-97512f1ba928
Fingerprint a2992371f93454cb
Analysis status DONE
Considered CTI value 2
Text language
Published April 11, 2025, 5:20 a.m.
Added to db April 11, 2025, 7:59 a.m.
Last updated April 25, 2025, 10:01 p.m.
Headline From Exploit to Ransomware: Detecting CVE-2025-29824
Title From Exploit to Ransomware: Detecting CVE-2025-29824
Detected Hints/Tags/Attributes 64/2/9
Source URLs
Redirection Url
Details Source https://malware.news/t/from-exploit-to-ransomware-detecting-cve-2025-29824/93085
URL Provider
Details Provider Source level domain
Details malware.news malware.news
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 158 Malware Analysis, News and Indicators - Latest topics https://malware.news/latest.rss 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 60 
cve-2025-29824
Details CVE 60 
cve-2025-24983
Details Domain 7 
aaaaabbbbbbb.eastus.cloudapp.azure.com
Details File 297 
certutil.exe
Details File 202 
msbuild.exe
Details File 372 
winword.exe
Details File 47 
procdump.exe
Details File 2 
toolbcdedit.exe
Details Microsoft Threat Actor Naming Taxonomy (Groups in development) 24 
Storm-2460