Nowa wersja Mallox ransomware atakuje podatne serwery MS SQL
Tags
attack-pattern: Malware - T1587.001 Malware - T1588.001 Powershell - T1059.001 Server - T1583.004 Server - T1584.004 Powershell - T1086
Show in Graph
Common Information
Type Value
UUID ab835444-5ca2-484f-8009-f3705d0c3c82
Fingerprint 1ef26f7c0e5dbe9e
Analysis status DONE
Considered CTI value 0
Text language
Published Sept. 30, 2022, 9:09 p.m.
Added to db Oct. 1, 2022, 2:30 a.m.
Last updated Nov. 18, 2024, 1:24 p.m.
Headline Nowa wersja Mallox ransomware atakuje podatne serwery MS SQL
Title Nowa wersja Mallox ransomware atakuje podatne serwery MS SQL
Detected Hints/Tags/Attributes 19/1/10
Source URLs
Redirection Url
Details Source https://sekurak.pl/nowa-wersja-mallox-ransomware-atakuje-podatne-serwery-ms-sql/
URL Provider
Details Provider Source level domain
Details sekurak.pl sekurak.pl
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 163 https://media.cert.europa.eu/rss?type=category&id=Malware&language=en&duplicates=false 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 190 
asec.ahnlab.com
Details Domain 96 
malpedia.caad.fkie.fraunhofer.de
Details File 1 
1atd4tiv.exe
Details File 2130 
cmd.exe
Details File 1212 
powershell.exe
Details File 1 
win.tar
Details Url 1 
https://asec.ahnlab.com/en/39152
Details Url 1 
https://www.bleepingcomputer.com/news/security/microsoft-sql-servers-hacked-in-targetcompany-ransomware-attacks
Details Url 1 
https://www.bleepingcomputer.com/news/security/vulnerable-microsoft-sql-servers-targeted-with-cobalt-strike
Details Url 1 
https://malpedia.caad.fkie.fraunhofer.de/details/win.targetcompany