12 Days of HaXmas: MS14-068, now in Metasploit! | Rapid7 Blog
Tags
attack-pattern: Data Credentials - T1589.001 Dns - T1071.004 Dns - T1590.002 Python - T1059.006 Server - T1583.004 Server - T1584.004
Show in Graph
Common Information
Type Value
UUID ccc9a65c-bb3c-4e8e-b7f3-76ff328b6258
Fingerprint b23d3351e4c0b1d7
Analysis status DONE
Considered CTI value 0
Text language
Published Dec. 25, 2014, 4:19 p.m.
Added to db Jan. 18, 2023, 8:46 p.m.
Last updated Oct. 1, 2024, 2:56 p.m.
Headline 12 Days of HaXmas: MS14-068, now in Metasploit!
Title 12 Days of HaXmas: MS14-068, now in Metasploit! | Rapid7 Blog
Detected Hints/Tags/Attributes 34/1/12
Source URLs
Redirection Url
Details Source https://blog.rapid7.com/2014/12/25/12-days-of-haxmas-ms14-068-now-in-metasploit/
URL Provider
Details Provider Source level domain
Details rapid7.com blog.rapid7.com
Attributes
Details Type #Events CTI Value
Details Domain 8 
gentilkiwi.com
Details Domain 16 
blog.gentilkiwi.com
Details Email 1 
0-00000000-juan@krbtgt-demo.local.kirbi
Details Email 5 
benjamin@gentilkiwi.com
Details Email 1 
tmp/0-00000000-juan@krbtgt-demo.local.kirbi
Details File 1 
os_194320.bin
Details File 1 
kerberos_194320.bin
Details md5 1 
1cf7188debe40565eb668b5fa0bf94fb
Details IPv4 1 
172.16.158.1
Details IPv4 1 
172.16.158.131
Details IPv4 1 
172.16.158.135
Details Url 8 
http://blog.gentilkiwi.com/mimikatz