Ankura CTIX FLASH Update - August 26, 2022 - Security - United States
Tags
country: Canada India Sweden Russia United States Of America
maec-delivery-vectors: Watering Hole
attack-pattern: Data Code Signing - T1553.002 Credentials - T1589.001 Domains - T1583.001 Domains - T1584.001 Exploits - T1587.004 Exploits - T1588.005 Ip Addresses - T1590.005 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Server - T1583.004 Server - T1584.004 Software - T1592.002 Virtual Private Server - T1583.003 Virtual Private Server - T1584.003 Vulnerabilities - T1588.006 Code Signing - T1116 Default Credentials
Show in Graph
Common Information
Type Value
UUID b0d12bd6-bd1f-46b3-9b4d-94593afd773a
Fingerprint 24a12c598bb6eee8
Analysis status DONE
Considered CTI value 2
Text language
Published Aug. 29, 2022, midnight
Added to db Sept. 11, 2022, 12:46 p.m.
Last updated Nov. 18, 2024, 7:31 a.m.
Headline United States: Ankura CTIX FLASH Update - August 26, 2022
Title Ankura CTIX FLASH Update - August 26, 2022 - Security - United States
Detected Hints/Tags/Attributes 88/3/11
Source URLs
Redirection Url
Details Source https://www.mondaq.com:443/Article/1225238
URL Provider
Details Provider Source level domain
Details mondaq.com www.mondaq.com:443
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 163 https://media.cert.europa.eu/rss?type=category&id=Malware&language=en&duplicates=false 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 6 
cve-2022-0028
Details CVE 14 
cve-2021-36260
Details Domain 3 
resellerclub.com
Details File 14 
mhyprot2.sys
Details File 4 
kill_svc.exe
Details File 4 
avg.msi
Details File 8 
logon.bat
Details File 11 
helppane.exe
Details File 1122 
svchost.exe
Details File 7 
diagnostics.dll
Details Threat Actor Identifier - APT 666 
APT29