Breaking the Rules: A Tough Outlook for Home Page Attacks (CVE-2017-11774) | Mandiant
Tags
Common Information
| Type | Value |
|---|---|
| UUID | c0e925db-e36a-438f-8678-4a98ab0cc1e2 |
| Fingerprint | f4392d1979b3ac09 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Dec. 4, 2019, midnight |
| Added to db | Nov. 6, 2023, 7:06 p.m. |
| Last updated | Nov. 17, 2024, 6:54 p.m. |
| Headline | Breaking the Rules: A Tough Outlook for Home Page Attacks (CVE-2017-11774) |
| Title | Breaking the Rules: A Tough Outlook for Home Page Attacks (CVE-2017-11774) | Mandiant |
| Detected Hints/Tags/Attributes | 75/2/17 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 330 | ✔ | Threat Intelligence | https://www.mandiant.com/resources/blog/rss.xml | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 16 | cve-2017-11774 |
|
| Details | Domain | 3 | web.core.windows.net |
|
| Details | File | 11 | ieframe.dll |
|
| Details | File | 1 | homepage-persist.html |
|
| Details | File | 1 | pipeline.xlsm |
|
| Details | File | 12 | web.core |
|
| Details | md5 | 1 | ddbc153e4e63f7b8b6f7aa10a8fad514 |
|
| Details | Mandiant Uncategorized Groups | 2 | UNC1194 |
|
| Details | Microsoft Patch Numbers | 1 | KB4011196 |
|
| Details | Microsoft Patch Numbers | 1 | KB4011178 |
|
| Details | Microsoft Patch Numbers | 2 | KB4011162 |
|
| Details | MITRE ATT&CK Techniques | 29 | T1137 |
|
| Details | Threat Actor Identifier - APT | 258 | APT34 |
|
| Details | Threat Actor Identifier - APT | 181 | APT33 |
|
| Details | Url | 1 | http://badsite/homepage-persist.html |
|
| Details | Windows Registry Key | 18 | HKEY_CURRENT_USER\Software\Microsoft\Office |
|
| Details | Windows Registry Key | 18 | HKCU\Software\Microsoft\Office |