Unit 29155 Attacks Detection: russia-Affiliated Military Intelligence Division Targets Critical Infrastructure Globally - SOC Prime
Tags
| country: | France Laos Russia Ukraine |
| attack-pattern: | Data Malware - T1587.001 Malware - T1588.001 Vulnerabilities - T1588.006 |
Common Information
| Type | Value |
|---|---|
| UUID | bfdd1156-1b53-4227-80fb-8e240841f04c |
| Fingerprint | f2b021b99b8887a1 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Sept. 6, 2024, 11:54 a.m. |
| Added to db | Sept. 6, 2024, 2:30 p.m. |
| Last updated | Nov. 17, 2024, 6:54 p.m. |
| Headline | Unit 29155 Attacks Detection: russia-Affiliated Military Intelligence Division Targets Critical Infrastructure Globally |
| Title | Unit 29155 Attacks Detection: russia-Affiliated Military Intelligence Division Targets Critical Infrastructure Globally - SOC Prime |
| Detected Hints/Tags/Attributes | 67/2/10 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://socprime.com/blog/unit-29155-attacks-detection/ |
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 237 | ✔ | SOC Prime | https://socprime.com/feed/ | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CERT Ukraine | 49 | UAC-0056 |
|
| Details | CVE | 217 | cve-2020-1472 |
|
| Details | CVE | 80 | cve-2021-26084 |
|
| Details | CVE | 21 | cve-2021-3156 |
|
| Details | CVE | 60 | cve-2021-4034 |
|
| Details | CVE | 20 | cve-2022-26138 |
|
| Details | CVE | 122 | cve-2022-26134 |
|
| Details | Mandiant Uncategorized Groups | 37 | UNC2589 |
|
| Details | Deprecated Microsoft Threat Actor Naming Taxonomy (Groups in development) | 51 | DEV-0586 |
|
| Details | Threat Actor Identifier - APT | 783 | APT28 |