ioc[.]one - OSINT Cyber Threat Intelligence Database

Owning Unix and Windows systems with a (somewhat) limited vulnerability

Tags

attack-pattern:

Data Cron - T1053.003 Javascript - T1059.007 Mshta - T1218.005 Scheduled Task - T1053.005 Software - T1592.002 Tool - T1588.002 Vulnerabilities - T1588.006 Mshta - T1170 Scheduled Task - T1053 Scripting - T1064 Scripting

Show in Graph

Common Information

Type	Value
UUID	e0b1c517-59b5-4770-9da8-f2adc4da4eb8
Fingerprint	b580991a27a79fe5
Analysis status	DONE
Considered CTI value	0
Text language
Published	July 9, 2013, 7:34 a.m.
Added to db	Jan. 18, 2023, 7:55 p.m.
Last updated	Nov. 17, 2024, 6:31 p.m.
Headline	Owning Unix and Windows systems with a (somewhat) limited vulnerability
Title	Owning Unix and Windows systems with a (somewhat) limited vulnerability
Detected Hints/Tags/Attributes	54/1/13

Source URLs

	Redirection	Url
Details	Source	http://joxeankoret.com/blog/2013/07/09/owning-unix-and-windows-systems-with-a-somewhat-limited-vulnerability/

URL Provider

Details	Provider	Source level domain
Details	joxeankoret.com	joxeankoret.com

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	1		something.sh
Details	Domain	1		xml.open
Details	Domain	74		adodb.stream
Details	Domain	1		ostream.open
Details	Domain	372		wscript.shell
Details	Domain	15		objshell.run
Details	File	46		microsoft.xml
Details	File	2		script.vbs
Details	File	3		binary.exe
Details	File	1		gatherwirelessinfo.vbs
Details	File	1		gatherwiredinfo.vbs
Details	Url	1		http://remote_url/app.hta
Details	Url	1		http://url/binary.exe