【供应链攻击】恶意 npm 包通过名字劫持植入 SSH 后门-安全客 - 安全资讯平台
Tags
Common Information
| Type | Value |
|---|---|
| UUID | c0b9436c-ebc2-431b-9a62-0f9c10bbc315 |
| Fingerprint | ea01966279c91788 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Nov. 27, 2024, midnight |
| Added to db | Nov. 27, 2024, 3:51 a.m. |
| Last updated | Dec. 25, 2024, 5:34 a.m. |
| Headline | 【供应链攻击】恶意 npm 包通过名字劫持植入 SSH 后门 |
| Title | 【供应链攻击】恶意 npm 包通过名字劫持植入 SSH 后门-安全客 - 安全资讯平台 |
| Detected Hints/Tags/Attributes | 18/1/15 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://www.anquanke.com/post/id/302211 |
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 15 | ✔ | 安全客-有思想的安全新媒体 | https://api.anquanke.com/data/v1/rss | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 136 | ipinfo.io |
|
| Details | Domain | 2 | webhook-test.com |
|
| Details | File | 69 | app.js |
|
| Details | File | 12 | os.pl |
|
| Details | md5 | 1 | 8caf20007640ce1a4d2843af7b479eb1 |
|
| Details | MITRE ATT&CK Techniques | 43 | T1195.002 |
|
| Details | MITRE ATT&CK Techniques | 192 | T1036.005 |
|
| Details | MITRE ATT&CK Techniques | 109 | T1059.007 |
|
| Details | MITRE ATT&CK Techniques | 64 | T1021.004 |
|
| Details | MITRE ATT&CK Techniques | 593 | T1190 |
|
| Details | MITRE ATT&CK Techniques | 562 | T1005 |
|
| Details | MITRE ATT&CK Techniques | 3 | T1567.004 |
|
| Details | Url | 6 | https://ipinfo.io/ip |
|
| Details | Url | 1 | https://webhook-test.com/8caf20007640ce1a4d2843af7b479eb1?data=i: |
|
| Details | Url | 1 | https://webhook-test.com/8caf20007640ce1a4d2843af7b479eb1 |