Careto APT’s recent attacks discovered
Tags
Common Information
Type | Value |
---|---|
UUID | b1ebf2fb-02da-4b04-9033-db4190f09878 |
Fingerprint | ada1109868a5a4a1 |
Analysis status | DONE |
Considered CTI value | 0 |
Text language | |
Published | Dec. 12, 2024, 10 a.m. |
Added to db | Dec. 12, 2024, 11:39 a.m. |
Last updated | Dec. 21, 2024, 4:49 a.m. |
Headline | Careto is back: what’s new after 10 years of silence? |
Title | Careto APT’s recent attacks discovered |
Detected Hints/Tags/Attributes | 46/2/15 |
Source URLs
Redirection | Url | |
---|---|---|
Details | Source | https://securelist.com/careto-is-back/114942/ |
URL Provider
RSS Feed
Details | Id | Enabled | Feed title | Url | Added to db |
---|---|---|---|---|---|
Details | 223 | ✔ | Securelist | https://securelist.com/feed/ | 2024-08-30 22:08 |
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | File | 3 | c:\mdaemon\worldclient\worldclient.ini |
|
Details | File | 3 | tpm-hascertretr.xml |
|
Details | File | 9 | hmpalert.sys |
|
Details | File | 3 | c:\windows\system32\hmpalert.dll |
|
Details | File | 224 | winlogon.exe |
|
Details | File | 62 | dwm.exe |
|
Details | File | 6 | hmpalert.dll |
|
Details | File | 4 | 2.db |
|
Details | File | 2 | %temp%\values.reg |
|
Details | File | 2 | configmgr.dll |
|
Details | File | 2 | filefilter.dll |
|
Details | File | 13 | storage.dll |
|
Details | File | 2 | kodak.dll |
|
Details | File | 2 | comm.dll |
|
Details | File | 3 | df01ac74d8be15ee01.tmp |