Threat Intelligence Report 3rd September – 9th September 2024
Tags
cmtmf-attack-pattern: Process Injection
maec-delivery-vectors: Watering Hole
attack-pattern: Data Abuse Elevation Control Mechanism - T1626 Abuse Elevation Control Mechanism - T1548 Software Discovery - T1418 Archive Collected Data - T1560 Archive Collected Data - T1532 As-Rep Roasting - T1558.004 Credentials - T1589.001 Data Encrypted For Impact - T1471 Data Encrypted For Impact - T1486 Domain Groups - T1069.002 Domain Trust Discovery - T1482 Inhibit System Recovery - T1490 Keylogging - T1056.001 Keylogging - T1417.001 Lsass Memory - T1003.001 Malware - T1587.001 Malware - T1588.001 System Information Discovery - T1426 Phishing - T1660 Phishing - T1566 Powershell - T1059.001 Process Injection - T1631 Registry Run Keys / Startup Folder - T1547.001 Remote Desktop Protocol - T1021.001 Security Software Discovery - T1418.001 Security Software Discovery - T1518.001 Service Execution - T1569.002 Software - T1592.002 Software Discovery - T1518 Tool - T1588.002 Vulnerabilities - T1588.006 Brute Force - T1110 Connection Proxy - T1090 Modify Registry - T1112 Powershell - T1086 Process Injection - T1055 Registry Run Keys / Start Folder - T1060 Remote Desktop Protocol - T1076 Remote System Discovery - T1018 Security Software Discovery - T1063 Service Execution - T1035 System Information Discovery - T1082 Remote System Discovery
Show in Graph
Common Information
Type Value
UUID ac03cf3f-9461-47e9-98a4-a825459941cf
Fingerprint 963488718c7faebf
Analysis status DONE
Considered CTI value 2
Text language
Published Sept. 9, 2024, midnight
Added to db Sept. 10, 2024, 4:03 a.m.
Last updated Nov. 17, 2024, 6:56 p.m.
Headline Threat Intelligence Report September 3 - September 9 2024
Title Threat Intelligence Report 3rd September – 9th September 2024
Detected Hints/Tags/Attributes 152/3/33
Source URLs
Redirection Url
Details Source https://redpiranha.net/news/threat-intelligence-report-september-3-september-9-2024
URL Provider
Details Provider Source level domain
Details redpiranha.net redpiranha.net
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 482 Red Piranha https://redpiranha.net/rss.xml 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 32 
cve-2024-7262
Details CVE 12 
cve-2021-20124
Details CVE 12 
cve-2021-20123
Details Domain 2 
mblogci3rudehaagbryjznltdp33ojwzkq6hn2pckvjq33rycmzczpid.onion
Details File 4 
bidon_readme.txt
Details File 367 
readme.txt
Details sha1 4 
f1c0054bc76e8753d4331a881cdf9156dd8b812a
Details sha1 4 
a0c9dd3f3e3d0e2cd5d1da06b3aac019cdbc74ef
Details sha256 6 
9aa1f37517458d635eae4f9b43cb4770880ea0ee171e7e4ad155bbdee0cbe732
Details sha256 4 
df492b4cc7f644ad3e795155926d1fc8ece7327c0c5c8ea45561f24f5110ce54
Details sha256 4 
78517fb07ee5292da627c234b26b555413a459f8d7a9641e4a9fcc1099f06a3d
Details sha256 2 
b45fe91d2e2340939781d39daf606622e6d0b9ddacd8425cb8e49c56124c1d56
Details sha256 2 
158dcb26239a5db7a0eb67826178f1eaa0852d9d86e59afb86f04e88096a19bc
Details sha256 2 
702099b63cb2384e11f088d6bc33afbd43a4c91848f393581242a6a17f1b30a0
Details MITRE ATT&CK Techniques 460 
T1059.001
Details MITRE ATT&CK Techniques 174 
T1569.002
Details MITRE ATT&CK Techniques 380 
T1547.001
Details MITRE ATT&CK Techniques 78 
T1548
Details MITRE ATT&CK Techniques 550 
T1112
Details MITRE ATT&CK Techniques 440 
T1055
Details MITRE ATT&CK Techniques 4 
T1558.004
Details MITRE ATT&CK Techniques 74 
T1069.002
Details MITRE ATT&CK Techniques 124 
T1482
Details MITRE ATT&CK Techniques 243 
T1018
Details MITRE ATT&CK Techniques 141 
T1518.001
Details MITRE ATT&CK Techniques 185 
T1518
Details MITRE ATT&CK Techniques 1006 
T1082
Details MITRE ATT&CK Techniques 157 
T1560
Details MITRE ATT&CK Techniques 152 
T1090
Details MITRE ATT&CK Techniques 472 
T1486
Details MITRE ATT&CK Techniques 276 
T1490
Details Url 1 
https://forum.redpiranha.net/t/known-exploited-vulnerabilities-catalog-1st-week-of-september-2024/502
Details Url 2 
http://mblogci3rudehaagbryjznltdp33ojwzkq6hn2pckvjq33rycmzczpid.onion