ioc[.]one - OSINT Cyber Threat Intelligence Database

Persistent Threats: Abusing BITS Jobs and Modifying LSASS Drivers

Tags

attack-pattern:

Component Object Model - T1559.001 Credentials - T1589.001 Lsass Driver - T1547.008 Malware - T1587.001 Malware - T1588.001 Software - T1592.002 Vulnerabilities - T1588.006 Bits Jobs - T1197 Lsass Driver - T1177 Rootkit - T1014 Rootkit

Show in Graph

Common Information

Type	Value
UUID	d855aa87-30b4-4bab-901d-54f0ac14affc
Fingerprint	bcbc5319336555cd
Analysis status	DONE
Considered CTI value	0
Text language
Published	March 7, 2023, 8:08 a.m.
Added to db	March 7, 2023, 10:23 a.m.
Last updated	Nov. 17, 2024, 6:55 p.m.
Headline	Persistent Threats: Abusing BITS Jobs and Modifying LSASS Drivers
Title	Persistent Threats: Abusing BITS Jobs and Modifying LSASS Drivers
Detected Hints/Tags/Attributes	24/1/1

Source URLs

	Redirection	Url
Details	Source	https://reza-adineh.medium.com/persistent-threats-abusing-bits-jobs-and-modifying-lsass-drivers-d12b13ad8b55?source=rss------cybersecurity-5

URL Provider

Details	Provider	Source level domain
Details	medium.com	reza-adineh.medium.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	167	✔	Cybersecurity on Medium	https://medium.com/feed/tag/cybersecurity	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	File	478		lsass.exe