Satori Adds Known Exploit Chain to Enslave Wireless IP Cameras
Tags
maec-delivery-vectors: Watering Hole
attack-pattern: Botnet - T1583.005 Botnet - T1584.005 Credentials - T1589.001 Exploits - T1587.004 Exploits - T1588.005 Ip Addresses - T1590.005 Server - T1583.004 Server - T1584.004 Software - T1592.002 Vulnerabilities - T1588.006
Show in Graph
Common Information
Type Value
UUID a40e51f9-a379-496e-93ba-0000b9431f62
Fingerprint 36a99d528d4ff3a4
Analysis status DONE
Considered CTI value 2
Text language
Published Feb. 2, 2018, midnight
Added to db Jan. 18, 2023, 8:28 p.m.
Last updated Nov. 17, 2024, 5:55 p.m.
Headline Satori Adds Known Exploit Chain to Enslave Wireless IP Cameras
Title Satori Adds Known Exploit Chain to Enslave Wireless IP Cameras
Detected Hints/Tags/Attributes 39/2/13
Source URLs
Redirection Url
Details Source https://blog.fortinet.com/2018/02/02/satori-adds-known-exploit-chain-to-slave-wireless-ip-cameras
Details Source https://www.fortinet.com/blog/threat-research/satori-adds-known-exploit-chain-to-slave-wireless-ip-cameras.html
URL Provider
Details Provider Source level domain
Details fortinet.com blog.fortinet.com
Details fortinet.com www.fortinet.com
Attributes
Details Type #Events CTI Value
Details CVE 73 
cve-2014-8361
Details CVE 72 
cve-2017-17215
Details Domain 2 
eth-us2.dwarfpool.com
Details Domain 1 
mirai.ad
Details Domain 2 
sunnyjuly.gq
Details File 14 
command.exe
Details File 41 
code.exe
Details sha256 1 
a96f8ad62c01b243178ab68c01144063c5e849474343edaf574efb8924595dcb
Details sha256 1 
34b007f26ebb844579d712bd5020af4bf7fd9e401bdfa81d957f8de7f6ea3a2b
Details sha256 1 
38430a093f10e833816881394b9a42cfca7459b277454d38155839d0b81b9f5c
Details sha256 1 
09eb5bdd87d3289d5e83cfc7cd76750811cf39c6addc559c90e70f2772dcfa99
Details sha256 1 
f943dedb573abb4540d97a4d366e34047b91acf848291a5aab955d8274561950
Details IPv4 3 
185.62.188.88