ioc[.]one - OSINT Cyber Threat Intelligence Database

Shellcode: A Windows PIC using RSA-2048 key exchange, AES-256, SHA-3

Tags

country:	Spain
attack-pattern:	Data Hardware - T1592.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Scripting - T1064 Man In The Middle Scripting

Show in Graph

Common Information

Type	Value
UUID	da94df1e-9ddf-4033-afb8-1af9fce376d2
Fingerprint	aec11139b06290d0
Analysis status	DONE
Considered CTI value	0
Text language
Published	Dec. 26, 2016, 6 a.m.
Added to db	Jan. 18, 2023, 10 p.m.
Last updated	Nov. 18, 2024, 1:38 a.m.
Headline	UNKNOWN
Title	Shellcode: A Windows PIC using RSA-2048 key exchange, AES-256, SHA-3
Detected Hints/Tags/Attributes	66/2/17

Source URLs

	Redirection	Url
Details	Source	https://modexp.wordpress.com/2016/12/26/windows-pic/

URL Provider

Details	Provider	Source level domain
Details	wordpress.com	modexp.wordpress.com

Attributes

Details	Type	#Events	CTI	Value
Details	File	1		cs32.asm
Details	File	1		cs64.asm
Details	File	2127		cmd.exe
Details	File	15		optionalheader.dat
Details	File	1		f.ps
Details	File	130		ws2_32.dll
Details	File	229		advapi32.dll
Details	File	1		-ocs32.obj
Details	File	24		cl.exe
Details	File	2		order.txt
Details	File	1		spz.obj
Details	File	1		sha3.obj
Details	File	1		aes.obj
Details	File	1		modexp.obj
Details	File	1		cs32.obj
Details	File	1		spz.exe
Details	IPv4	1441		127.0.0.1