Logs of Log4shell (CVE-2021-44228): log4j is ubiquitous [EN]
Tags
Common Information
| Type | Value |
|---|---|
| UUID | d75a8ee8-8b4c-427a-8486-1b6c193152fd |
| Fingerprint | 9da118ddcdd63681 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Dec. 23, 2021, 5:38 a.m. |
| Added to db | Sept. 26, 2022, 9:34 a.m. |
| Last updated | Nov. 17, 2024, 7:44 p.m. |
| Headline | Logs of Log4shell (CVE-2021-44228): log4j is ubiquitous [EN] |
| Title | Logs of Log4shell (CVE-2021-44228): log4j is ubiquitous [EN] |
| Detected Hints/Tags/Attributes | 72/1/46 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 397 | cve-2021-44228 |
|
| Details | CVE | 1 | cve-2021-40228 |
|
| Details | Domain | 23 | logging.apache.org |
|
| Details | Domain | 18 | issues.apache.org |
|
| Details | Domain | 4127 | github.com |
|
| Details | Domain | 641 | nvd.nist.gov |
|
| Details | Domain | 1373 | twitter.com |
|
| Details | Domain | 1 | blockzero.sh |
|
| Details | Domain | 9 | www.lunasec.io |
|
| Details | Domain | 1 | labrador.iotcube.com |
|
| Details | Domain | 1 | concretecms.com |
|
| Details | Domain | 1 | parse.ly |
|
| Details | Domain | 110 | www.reddit.com |
|
| Details | Domain | 38 | blog.netlab.360.com |
|
| Details | Domain | 261 | blog.talosintelligence.com |
|
| Details | Domain | 219 | gist.github.com |
|
| Details | Domain | 1 | hominido.medium.com |
|
| Details | Domain | 224 | unit42.paloaltonetworks.com |
|
| Details | File | 64 | security.html |
|
| Details | File | 76 | download.html |
|
| Details | File | 1 | log.gz |
|
| Details | File | 1 | labradorlog4shelldetector.jar |
|
| Details | File | 2 | apache-log4j-rce-vulnerability.html |
|
| Details | Github username | 40 | apache |
|
| Details | Github username | 1 | gnremy |
|
| Details | Github username | 3 | yfrytchsgd |
|
| Details | md5 | 1 | c546c7911d5f876f263309d7161a7217 |
|
| Details | IPv4 | 6 | 45.137.21.9 |
|
| Details | IPv4 | 2 | 45.83.193.150 |
|
| Details | Url | 15 | https://logging.apache.org/log4j/2.x/security.html |
|
| Details | Url | 1 | https://issues.apache.org/jira/browse/log4j2-3201 |
|
| Details | Url | 1 | https://github.com/apache/logging-log4j2/pull/608 |
|
| Details | Url | 12 | https://nvd.nist.gov/vuln/detail/cve-2021-44228 |
|
| Details | Url | 3 | https://twitter.com/p0rz9/status/1468949890571337731 |
|
| Details | Url | 4 | https://logging.apache.org/log4j/2.x/download.html |
|
| Details | Url | 5 | https://www.lunasec.io/docs/blog/log4j-zero-day |
|
| Details | Url | 1 | https://labrador.iotcube.com/scanner/labradorlog4shelldetector.jar |
|
| Details | Url | 2 | https://www.reddit.com/r/blueteamsec/comments/rd38z9/log4j_0day_being_exploited |
|
| Details | Url | 1 | https://www.linkedin.com/posts/chintangurjar_log4j-log4jrce-vulnerability-activity-6875020771563978752-39_c |
|
| Details | Url | 4 | https://blog.netlab.360.com/threat-alert-log4j-vulnerability-has-been-adopted-by-two-linux-botnets |
|
| Details | Url | 2 | https://blog.talosintelligence.com/2021/12/apache-log4j-rce-vulnerability.html |
|
| Details | Url | 1 | https://docs.google.com/spreadsheets/d/e/2pacx-1vt1hfu_vlzazvc_xsnvxk2gjbpbcdvhgjfctbnhjop6ysfu05sin09nev73tr-oym8lo42qi_y0whnb/pubhtml# |
|
| Details | Url | 1 | https://gist.github.com/gnremy/c546c7911d5f876f263309d7161a7217 |
|
| Details | Url | 1 | https://hominido.medium.com/iocs-para-log4shell-rce-0-day-cve-2021-44228-98019dd06f35 |
|
| Details | Url | 3 | https://github.com/yfrytchsgd/log4jattacksurface |
|
| Details | Url | 1 | https://unit42.paloaltonetworks.com/apache-log4j-vulnerability-cve-2021-44228 |