RomCom Exploits Zero-Day Firefox and Windows Flaws in Sophisticated Cyberattacks - CyberSRC
Tags
Common Information
Type | Value |
---|---|
UUID | deb60e77-b277-40a9-a75d-4805fc626bba |
Fingerprint | b4b09910fa2fbee1 |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | Nov. 27, 2024, 4:39 a.m. |
Added to db | Nov. 27, 2024, 5:53 a.m. |
Last updated | Dec. 4, 2024, 11:52 a.m. |
Headline | RomCom Exploits Zero-Day Firefox and Windows Flaws in Sophisticated Cyberattacks |
Title | RomCom Exploits Zero-Day Firefox and Windows Flaws in Sophisticated Cyberattacks - CyberSRC |
Detected Hints/Tags/Attributes | 105/3/11 |
Source URLs
URL Provider
RSS Feed
Details | Id | Enabled | Feed title | Url | Added to db |
---|---|---|---|---|---|
Details | 94 | ✔ | CyberSRC | https://cybersrcc.com/feed/ | 2024-08-30 22:08 |
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | CERT Ukraine | 10 | UAC-0180 |
|
Details | CVE | 87 | cve-2024-9680 |
|
Details | CVE | 77 | cve-2024-49039 |
|
Details | CVE | 130 | cve-2023-36884 |
|
Details | Domain | 6 | economistjournal.cloud |
|
Details | Domain | 6 | redjournal.cloud |
|
Details | File | 4 | poclowil.dll |
|
Details | Mandiant Uncategorized Groups | 40 | UNC2596 |
|
Details | Microsoft Threat Actor Naming Taxonomy (Groups in development) | 96 | Storm-0978 |
|
Details | Windows Registry Key | 587 | HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run |
|
Details | Windows Registry Key | 40 | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run |