Embargo Ransomware Actors Abuses Safe Mode To Disable Security Solutions
Tags
attack-pattern: Exploits - T1587.004 Exploits - T1588.005 Malware - T1587.001 Malware - T1588.001 Scheduled Task - T1053.005 Software - T1592.002 Tool - T1588.002 Scheduled Task - T1053
Show in Graph
Common Information
Type Value
UUID cc9e7a47-9864-41c9-a4ea-7f7732df7f8c
Fingerprint 1714b0d496b49644
Analysis status DONE
Considered CTI value 0
Text language
Published Nov. 4, 2024, 11:50 a.m.
Added to db Nov. 4, 2024, 1:06 p.m.
Last updated Nov. 15, 2024, 4:38 p.m.
Headline Embargo Ransomware Actors Abuses Safe Mode To Disable Security Solutions
Title Embargo Ransomware Actors Abuses Safe Mode To Disable Security Solutions
Detected Hints/Tags/Attributes 31/1/4
Source URLs
Redirection Url
Details Source https://gbhackers.com/embargo-ransomware-safe-mode-exploit/
URL Provider
Details Provider Source level domain
Details gbhackers.com gbhackers.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 125 GBHackers Security | #1 Globally Trusted Cyber Security News Platform https://gbhackers.com/feed/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 911 
any.run
Details File 3 
fail.txt
Details File 3 
stop.exe
Details File 5 
probmon.sys