Microsoft Exchange exploits now used by cryptomining malware
Tags
country: Slovakia U.S. Virgin Islands
attack-pattern: Data Botnet - T1583.005 Botnet - T1584.005 Exploits - T1587.004 Exploits - T1588.005 Malware - T1587.001 Malware - T1588.001 Powershell - T1059.001 Server - T1583.004 Server - T1584.004 Powershell - T1086
Show in Graph
Common Information
Type Value
UUID b9f65634-3c2a-4b22-86d1-5815e14acaca
Fingerprint 878020d32cb0c45b
Analysis status DONE
Considered CTI value 0
Text language
Published March 12, 2021, midnight
Added to db Jan. 18, 2023, 10:53 p.m.
Last updated Oct. 15, 2024, 7:10 p.m.
Headline Microsoft Exchange exploits now used by cryptomining malware
Title Microsoft Exchange exploits now used by cryptomining malware
Detected Hints/Tags/Attributes 31/2/3
Source URLs
Redirection Url
Details Source https://www.bleepingcomputer.com/news/security/microsoft-exchange-exploits-now-used-by-cryptomining-malware/
URL Provider
Details Provider Source level domain
Details bleepingcomputer.com www.bleepingcomputer.com
Attributes
Details Type #Events CTI Value
Details CVE 63 
cve-2017-8570
Details Domain 6 
estonine.com
Details Domain 3 
cdn.chatcdn.net