ioc[.]one - OSINT Cyber Threat Intelligence Database

Cerber新变种L0CK3D勒索软件分析

Tags

attack-pattern:

Data Confluence - T1213.001 Server - T1583.004 Server - T1584.004

Show in Graph

Common Information

Type	Value
UUID	c0b4fb88-a88a-412c-95f2-69862080c864
Fingerprint	a87d18b7d4a7eddf
Analysis status	DONE
Considered CTI value	2
Text language
Published	Nov. 9, 2023, midnight
Added to db	Nov. 20, 2023, 12:33 a.m.
Last updated	Oct. 29, 2024, 3:31 p.m.
Headline	Cerber新变种L0CK3D勒索软件分析
Title	Cerber新变种L0CK3D勒索软件分析
Detected Hints/Tags/Attributes	9/1/16

Source URLs

	Redirection	Url
Details	Source	https://mp.weixin.qq.com/s?__biz=MzU5MjEzOTM3NA==&mid=2247498415&idx=1&sn=b2a1c6f61d71ff20786f6dce53659749&chksm=fe26ffaec95176b8884931a55749274d5f92f1d038b7bc7df0a1a2f0d44de0b96ec86790eb1d&scene=58&subscene=0#rd

URL Provider

Details	Provider	Source level domain
Details	qq.com	mp.weixin.qq.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	263	✔	三六零CERT	https://wechat2rss.xlab.app/feed/2dbce2e5f7b49dc8415db7a0ab325929e0f5d8c3.xml	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	CERT 360 CN	1		CERT-R-2023-515
Details	CVE	70		cve-2023-22518
Details	Domain	5		j3qxmk6g5sk3zw62i2yhjnwmhm55rfz47fdyfkhaithlpelfjdokdxad.onion
Details	Domain	100		cert.360.cn
Details	File	5		cve-2023-22518-improper-authorization-vulnerability-in-confluence-data-center-and-server-1311473907.html
Details	File	3		进而命名为svcprvinit.exe
Details	File	2		48.txt
Details	File	4		svcprvinit.exe
Details	File	6		read-me3.txt
Details	md5	2		7415347d5ea5f0db29ec95a4a61aba90
Details	IPv4	14		193.176.179.41
Details	IPv4	8		193.43.72.11
Details	IPv4	5		45.145.6.112
Details	Url	5		https://confluence.atlassian.com/security/cve-2023-22518-improper-authorization-vulnerability-in-confluence-data-center-and-server-1311473907.html
Details	Url	2		http://j3qxmk6g5sk3zw62i2yhjnwmhm55rfz47fdyfkhaithlpelfjdokdxad.onion
Details	Url	93		https://cert.360.cn