ioc[.]one - OSINT Cyber Threat Intelligence Database

Neutrino EK: fingerprinting in a Flash | Malwarebytes Labs

Tags

maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Exploits - T1587.004 Exploits - T1588.005 Javascript - T1059.007 Malvertising - T1583.008 Malware - T1587.001 Malware - T1588.001 Software - T1592.002 Tool - T1588.002

Show in Graph

Common Information

Type	Value
UUID	c081bbc6-c014-4a94-a097-b1b44568561d
Fingerprint	f7b314fca9dd61d0
Analysis status	DONE
Considered CTI value	2
Text language
Published	June 28, 2016, midnight
Added to db	Jan. 18, 2023, 8:34 p.m.
Last updated	Oct. 22, 2024, 8:45 p.m.
Headline	Neutrino EK: fingerprinting in a Flash
Title	Neutrino EK: fingerprinting in a Flash \| Malwarebytes Labs
Detected Hints/Tags/Attributes	28/2/20

Source URLs

	Redirection	Url
Details	Source	https://blog.malwarebytes.com/cybercrime/exploits/2016/06/neutrino-ek-fingerprinting-in-a-flash/

URL Provider

Details	Provider	Source level domain
Details	malwarebytes.com	blog.malwarebytes.com

Attributes

Details	Type	#Events	Value
Details	CVE	11	cve-2013-7331
Details	CVE	57	cve-2016-4117
Details	Domain	1	umwlyov.inconfirmug.top
Details	Domain	10	externalinterface.call
Details	File	1	umwlyov.inc
Details	File	1	slide-bounce-attach-shaft-bomb-herself-bosom.swf
Details	File	1	c:\\program files\\oracle\\virtualbox guest additions\\difxapi.dll
Details	File	1	c:\\program files\\vmware\\vmware tools\\vmtoolshook.dll
Details	File	6	uninst.exe
Details	File	71	wireshark.exe
Details	File	14	uninstall.exe
Details	File	1	c:\\program files\\eset\\eset nod32 antivirus\\egui.exe
Details	File	1	c:\\program files\\bitdefender agent\\productagentservice.exe
Details	sha256	1	ad7873f7e241a51090d70b95cdc0c2646884cb61c3a564bd1062848b7a860f25
Details	sha256	1	68f10d5e1054002775b73967c28f1c043cd77f55152ee9ecd3c00f0727adcb6f
Details	sha256	1	6b9be2361f19070198b3bdc9372c8cb436ddc2d344ee77f10d27f597b68679a7
Details	sha256	1	e716b1f5c5598d6d1bb89c7dcfa46017d0416b0da5b4c9c952b2ec5d383792c1
Details	sha256	1	8627d6ac05e868557a3ef796ae91c85648a3348f7a8428760e6771966d871fc9
Details	sha256	1	a7c238b0c1984703aacea4582975104e3254b7d01b017bd4b07258d4b1ab0d40
Details	IPv4	5	21.0.0.213