Apache Commons Collections Under Attack
Tags
| attack-pattern: | Data Server - T1583.004 Server - T1584.004 Vulnerabilities - T1588.006 Vulnerability Scanning - T1595.002 New Service - T1050 Scripting - T1064 Scripting |
Common Information
| Type | Value |
|---|---|
| UUID | c05dbb4c-693b-4408-977e-dd7c8b907806 |
| Fingerprint | 95a929198803b742 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Feb. 4, 2016, midnight |
| Added to db | Jan. 18, 2023, 11:17 p.m. |
| Last updated | Nov. 14, 2024, 2:04 p.m. |
| Headline | Apache Commons Collections Under Attack |
| Title | Apache Commons Collections Under Attack |
| Detected Hints/Tags/Attributes | 38/1/20 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 8 | cve-2015-4852 |
|
| Details | Domain | 1 | www.xxxx.org |
|
| Details | Domain | 1 | objxmlhttpmain.open |
|
| Details | Domain | 1 | www.xxxxxxx.com |
|
| Details | Domain | 7 | xxx.xxx.xxx |
|
| Details | Domain | 1 | www.jweblogic.com |
|
| Details | Domain | 372 | wscript.shell |
|
| Details | Domain | 11 | ws.run |
|
| Details | File | 41 | code.exe |
|
| Details | File | 1 | mcaltlib.dll |
|
| Details | File | 1 | cpo.jsp |
|
| Details | File | 1 | new.cvs |
|
| Details | File | 1 | mc.vbs |
|
| Details | File | 1 | adconfig.dll |
|
| Details | File | 1 | runconf.vbs |
|
| Details | Url | 1 | http://1xx.xx.xx.xx/icons/small/.s/.j |
|
| Details | Url | 1 | http://www.xxxxxxx.com:8080/docs/doc/cpo.jsp?e=r |
|
| Details | Url | 1 | http://xxx.xxx.xxx.xx/example/new.cvs |
|
| Details | Url | 1 | http://www.jweblogic.com:8080/docs/doc/cpo.jsp?t=1 |
|
| Details | Url | 1 | http://www.jweblogic.com:8080/docs/doc/cpo.jsp?e=1 |