South Korean Attackers Group Exploits WPS Office Vulnerability (CVE-2024-7262) – Qualys ThreatPROTECT
Tags
| country: | South Korea |
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Exploits - T1587.004 Exploits - T1588.005 Server - T1583.004 Server - T1584.004 Software - T1592.002 Vulnerabilities - T1588.006 |
Common Information
| Type | Value |
|---|---|
| UUID | a514469e-c6b0-4038-8f28-e18e3ed42316 |
| Fingerprint | 949d2d9cefbfdec3 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Sept. 3, 2024, 8:07 a.m. |
| Added to db | Sept. 3, 2024, 6:49 p.m. |
| Last updated | Nov. 17, 2024, 5:50 p.m. |
| Headline | South Korean Attackers Group Exploits WPS Office Vulnerability (CVE-2024-7262) |
| Title | South Korean Attackers Group Exploits WPS Office Vulnerability (CVE-2024-7262) – Qualys ThreatPROTECT |
| Detected Hints/Tags/Attributes | 29/3/9 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 254 | ✔ | Qualys ThreatPROTECT | https://threatprotect.qualys.com/feed/ | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 32 | cve-2024-7262 |
|
| Details | CVE | 17 | cve-2024-7263 |
|
| Details | Domain | 2 | www.wps.com |
|
| Details | File | 18 | promecefpluginhost.exe |
|
| Details | File | 6 | ksojscore.dll |
|
| Details | File | 12 | taskcontroler.dll |
|
| Details | File | 3 | www.wps |
|
| Details | Threat Actor Identifier - APT-C | 27 | APT-C-60 |
|
| Details | Url | 1 | https://www.wps.com/whatsnew/pc/20240422 |