GitHub - scottlundgren/w32time
Tags
| attack-pattern: | Rundll32 - T1218.011 Time Providers - T1547.003 Connection Proxy - T1090 Rundll32 - T1085 Time Providers - T1209 |
Common Information
| Type | Value |
|---|---|
| UUID | ca6027be-a282-4eb1-ad6a-e565286d8a7e |
| Fingerprint | 1cff8128b5ae2850 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Jan. 1, 2022, midnight |
| Added to db | Sept. 26, 2022, 9:31 a.m. |
| Last updated | Nov. 17, 2024, 6:54 p.m. |
| Headline | scottlundgren/w32time |
| Title | GitHub - scottlundgren/w32time |
| Detected Hints/Tags/Attributes | 13/1/5 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://github.com/scottlundgren/w32time |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 201 | msdn.microsoft.com |
|
| Details | File | 1018 | rundll32.exe |
|
| Details | File | 1 | gametime.dll |
|
| Details | Url | 1 | https://msdn.microsoft.com/en-us/library/windows/desktop/ms725475(v=vs.85).aspx |
|
| Details | Windows Registry Key | 1 | HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\W32Time\TimeProviders |