Extracting RAW pictures from memory dumps
Tags
attack-pattern: Data Python - T1059.006 Server - T1583.004 Server - T1584.004 Tool - T1588.002
Show in Graph
Common Information
Type Value
UUID b990ad8a-3808-4f7c-a4a6-3a198b344d91
Fingerprint 349a4d3a3e2e4cb3
Analysis status DONE
Considered CTI value 0
Text language
Published Feb. 26, 2015, 11:11 a.m.
Added to db Jan. 18, 2023, 10:44 p.m.
Last updated Nov. 17, 2024, 6:54 p.m.
Headline w00tsec
Title Extracting RAW pictures from memory dumps
Detected Hints/Tags/Attributes 20/1/8
Source URLs
Redirection Url
Details Source https://w00tsec.blogspot.com/2015/02/extracting-raw-pictures-from-memory.html
URL Provider
Details Provider Source level domain
Details blogspot.com w00tsec.blogspot.com
Attributes
Details Type #Events CTI Value
Details Domain 1 
yodawg.9447.plumbing
Details Domain 89 
vol.py
Details Domain 45 
hack.lu
Details File 74 
mstsc.exe
Details File 20 
mspaint.exe
Details File 4 
virtualbox.exe
Details File 1 
9447.pl
Details File 85 
vol.py