Russian TAG-110 Hacked 60+ Users With HTML Loaded & Python Backdoor
Tags
country: Kazakhstan Kyrgyzstan Uzbekistan Russia
maec-delivery-vectors: Watering Hole
attack-pattern: Data Malware - T1587.001 Malware - T1588.001 Mshta - T1218.005 Multi-Factor Authentication - T1556.006 Phishing - T1660 Phishing - T1566 Python - T1059.006 Web Services - T1583.006 Web Services - T1584.006 Vulnerabilities - T1588.006 Mshta - T1170
Show in Graph
Common Information
Type Value
UUID da343f8f-16d1-454f-9688-8287418c6e98
Fingerprint eddd0d15137be791
Analysis status DONE
Considered CTI value 2
Text language
Published Nov. 22, 2024, 2:56 p.m.
Added to db Nov. 22, 2024, 4:48 p.m.
Last updated Dec. 17, 2024, 7:36 p.m.
Headline Russian TAG-110 Hacked 60+ Users With HTML Loaded & Python Backdoor
Title Russian TAG-110 Hacked 60+ Users With HTML Loaded & Python Backdoor
Detected Hints/Tags/Attributes 47/3/4
Source URLs
Redirection Url
Details Source https://gbhackers.com/russian-tag-110-hacked-60-users/
URL Provider
Details Provider Source level domain
Details gbhackers.com gbhackers.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 125 GBHackers Security | #1 Globally Trusted Cyber Security News Platform https://gbhackers.com/feed/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 12 
cve-2024-23692
Details File 496 
mshta.exe
Details Threat Actor Identifier - APT 837 
APT28
Details Threat Actor Identifier by Recorded Future 16 
TAG-110