ioc[.]one - OSINT Cyber Threat Intelligence Database

Simulating and Preventing CVE-2021-44228 Apache Log4j RCE Exploits

Tags

attack-pattern:

Data Dns - T1071.004 Dns - T1590.002 Exploits - T1587.004 Exploits - T1588.005 Ip Addresses - T1590.005 Server - T1583.004 Server - T1584.004 Software - T1592.002 Unix Shell - T1059.004 Vulnerabilities - T1588.006 Unix Shell - T1623.001 Sudo - T1169 Denial Of Service

Show in Graph

Common Information

Type	Value
UUID	e1acaf51-1e6f-4188-864f-7563c14248d1
Fingerprint	9e812490e962d701
Analysis status	DONE
Considered CTI value	2
Text language
Published	Dec. 10, 2021, 4:58 p.m.
Added to db	Dec. 18, 2024, 9:56 p.m.
Last updated	Dec. 25, 2024, 4:23 p.m.
Headline	Simulating and Preventing CVE-2021-44228 Apache Log4j RCE Exploits
Title	Simulating and Preventing CVE-2021-44228 Apache Log4j RCE Exploits
Detected Hints/Tags/Attributes	49/1/222

Source URLs

	Redirection	Url
Details	Source	https://www.picussecurity.com/resource/blog/simulating-and-preventing-cve-2021-44228-apache-log4j-rce-exploits

URL Provider

Details	Provider	Source level domain
Details	picussecurity.com	www.picussecurity.com

Attributes

Details	Type	#Events	Value
Details	CVE	459	cve-2021-44228
Details	CVE	31	cve-2021-44832
Details	CVE	56	cve-2021-45105
Details	CVE	85	cve-2021-45046
Details	Domain	947	example.com
Details	File	5	rmi.obj
Details	File	2	cosnaming.obj
Details	File	17	apache.log
Details	File	55	error.log
Details	File	54	code.exe
Details	File	1	0-alpha1.jar
Details	File	1	0-alpha2.jar
Details	File	1	0-beta1.jar
Details	File	1	0-beta2.jar
Details	File	1	0-beta3.jar
Details	File	1	0-beta4.jar
Details	File	2	0-beta5.jar
Details	File	1	0-beta6.jar
Details	File	1	0-beta7.jar
Details	File	1	0-beta8.jar
Details	File	2	0-beta9.jar
Details	File	18	0.jar
Details	File	2	0-rc1.jar
Details	File	2	0-rc2.jar
Details	File	18	1.jar
Details	File	9	2.jar
Details	File	6	3.jar
Details	File	3	4.jar
Details	File	3	5.jar
Details	File	7	6.jar
Details	File	6	7.jar
Details	File	2	8.jar
Details	sha256	3	006fc6623fbb961084243cfc327c885f3c57f2eba8ee05fbc4e93e5358778c85
Details	sha256	2	bf4f41403280c1b115650d470f9b260a5c9042c04d9bcc2a6ca504a66379b2d6
Details	sha256	2	58e9f72081efff9bdaabd82e3b3efe5b1b9f1666cefe28f429ad7176a6d770ae
Details	sha256	2	ed285ad5ac6a8cf13461d6c2874fdcd3bf67002844831f66e21c2d0adda43fa4
Details	sha256	2	dbf88c623cc2ad99d82fa4c575fb105e2083465a47b84d64e2e1a63e183c274e
Details	sha256	2	a38ddff1e797adb39a08876932bc2538d771ff7db23885fb883fec526aff4fc8
Details	sha256	2	7d86841489afd1097576a649094ae1efb79b3147cd162ba019861dfad4e9573b
Details	sha256	2	4bfb0d5022dc499908da4597f3e19f9f64d3cc98ce756a2249c72179d3d75c47
Details	sha256	2	473f15c04122dad810c919b2f3484d46560fd2dd4573f6695d387195816b02a6
Details	sha256	2	b3fae4f84d4303cdbad4696554b4e8d2381ad3faf6e0c3c8d2ce60a4388caa02
Details	sha256	2	dcde6033b205433d6e9855c93740f798951fa3a3f252035a768d9f356fde806d
Details	sha256	2	85338f694c844c8b66d8a1b981bcf38627f95579209b2662182a009d849e1a4c
Details	sha256	2	db3906edad6009d1886ec1e2a198249b6d99820a3575f8ec80c6ce57f08d521a
Details	sha256	2	ec411a34fee49692f196e4dc0a905b25d0667825904862fdba153df5e53183e0
Details	sha256	2	a00a54e3fb8cb83fab38f8714f240ecc13ab9c492584aa571aec5fc71b48732d
Details	sha256	2	c584d1000591efa391386264e0d43ec35f4dbb146cad9390f73358d9c84ee78d
Details	sha256	2	8bdb662843c1f4b120fb4c25a5636008085900cdf9947b1dadb9b672ea6134dc
Details	sha256	2	c830cde8f929c35dad42cbdb6b28447df69ceffe99937bf420d32424df4d076a
Details	sha256	2	6ae3b0cb657e051f97835a6432c2b0f50a651b36b6d4af395bbe9060bb4ef4b2
Details	sha256	2	535e19bf14d8c76ec00a7e8490287ca2e2597cae2de5b8f1f65eb81ef1c2a4c6
Details	sha256	2	42de36e61d454afff5e50e6930961c85b55d681e23931efd248fd9b9b9297239
Details	sha256	2	4f53e4d52efcccdc446017426c15001bb0fe444c7a6cdc9966f8741cf210d997
Details	sha256	2	df00277045338ceaa6f70a7b8eee178710b3ba51eac28c1142ec802157492de6
Details	sha256	2	28433734bd9e3121e0a0b78238d5131837b9dbe26f1a930bc872bad44e68e44e
Details	sha256	2	cf65f0d33640f2cd0a0b06dd86a5c6353938ccb25f4ffd14116b4884181e0392
Details	sha256	2	5bb84e110d5f18cee47021a024d358227612dd6dac7b97fa781f85c6ad3ccee4
Details	sha256	2	ccf02bb919e1a44b13b366ea1b203f98772650475f2a06e9fac4b3c957a7c3fa
Details	sha256	2	815a73e20e90a413662eefe8594414684df3d5723edcd76070e1a5aee864616e
Details	sha256	2	10ef331115cbbd18b5be3f3761e046523f9c95c103484082b18e67a7c36e570c
Details	sha256	2	dc815be299f81c180aa8d2924f1b015f2c46686e866bc410e72de75f7cd41aae
Details	sha256	2	9275f5d57709e2204900d3dae2727f5932f85d3813ad31c9d351def03dd3d03d
Details	sha256	2	f35ccc9978797a895e5bee58fa8c3b7ad6d5ee55386e9e532f141ee8ed2e937d
Details	sha256	2	5256517e6237b888c65c8691f29219b6658d800c23e81d5167c4a8bbd2a0daa3
Details	sha256	2	d4485176aea67cc85f5ccc45bb66166f8bfc715ae4a695f0d870a1f8d848cc3d
Details	sha256	2	3fcc4c1f2f806acfc395144c98b8ba2a80fe1bf5e3ad3397588bbd2610a37100
Details	sha256	2	057a48fe378586b6913d29b4b10162b4b5045277f1be66b7a01fb7e30bd05ef3
Details	sha256	2	5dbd6bb2381bf54563ea15bc9fbb6d7094eaf7184e6975c50f8996f77bfc3f2c
Details	sha256	2	c39b0ea14e7766440c59e5ae5f48adee038d9b1c7a1375b376e966ca12c22cd3
Details	sha256	2	6f38a25482d82cd118c4255f25b9d78d96821d22bab498cdce9cda7a563ca992
Details	sha256	2	54962835992e303928aa909730ce3a50e311068c0960c708e82ab76701db5e6b
Details	sha256	3	e5e9b0f8d72f4e7b9022b7a83c673334d7967981191d2d98f9c57dc97b4caae1
Details	sha256	3	68d793940c28ddff6670be703690dfdf9e77315970c42c4af40ca7261a8570fa
Details	sha256	3	9da0f5ca7c8eab693d090ae759275b9db4ca5acdbcfe4a63d3871e0b17367463
Details	IPv4	3	18.27.197.252
Details	IPv4	8	171.25.193.25
Details	IPv4	8	185.220.101.34
Details	IPv4	2	185.220.101.158
Details	IPv4	5	204.8.156.142
Details	IPv4	1	164.90.199.216
Details	IPv4	5	23.129.64.131
Details	IPv4	6	171.25.193.77
Details	IPv4	5	185.220.101.35
Details	IPv4	2	185.220.101.161
Details	IPv4	3	205.185.117.149
Details	IPv4	2	167.99.164.201
Details	IPv4	3	23.129.64.141
Details	IPv4	10	171.25.193.78
Details	IPv4	4	185.220.101.36
Details	IPv4	1	185.220.101.163
Details	IPv4	2	209.127.17.242
Details	IPv4	1	167.99.172.58
Details	IPv4	3	23.129.64.146
Details	IPv4	1	178.62.79.49
Details	IPv4	4	185.220.101.42
Details	IPv4	2	185.220.101.168
Details	IPv4	4	209.141.41.103
Details	IPv4	1	167.99.172.213
Details	IPv4	5	23.129.64.148
Details	IPv4	1	181.214.39.2
Details	IPv4	4	185.220.101.43
Details	IPv4	1	185.220.101.169
Details	IPv4	1	45.153.160.131
Details	IPv4	8	185.220.100.241
Details	IPv4	1	45.12.134.108
Details	IPv4	1	185.38.175.132
Details	IPv4	6	185.220.101.45
Details	IPv4	2	185.220.101.172
Details	IPv4	1	45.153.160.138
Details	IPv4	4	185.220.101.37
Details	IPv4	12	45.155.205.233
Details	IPv4	6	185.83.214.69
Details	IPv4	4	185.220.101.46
Details	IPv4	1	185.220.101.175
Details	IPv4	2	62.76.41.46
Details	IPv4	3	185.220.101.41
Details	IPv4	4	46.166.139.111
Details	IPv4	5	185.100.87.41
Details	IPv4	3	185.220.101.49
Details	IPv4	1	185.220.101.177
Details	IPv4	1	68.183.44.143
Details	IPv4	4	185.220.101.57
Details	IPv4	2	46.182.21.248
Details	IPv4	7	185.100.87.202
Details	IPv4	4	185.220.101.54
Details	IPv4	1	185.220.101.179
Details	IPv4	1	68.183.198.247
Details	IPv4	2	185.220.101.134
Details	IPv4	4	51.15.43.205
Details	IPv4	3	185.107.47.171
Details	IPv4	3	185.220.101.55
Details	IPv4	1	185.220.101.180
Details	IPv4	1	88.80.20.86
Details	IPv4	2	185.220.101.144
Details	IPv4	1	51.255.106.85
Details	IPv4	1	185.129.61.1
Details	IPv4	4	185.220.101.56
Details	IPv4	2	185.220.101.181
Details	IPv4	1	109.70.100.34
Details	IPv4	1	185.220.101.154
Details	IPv4	1	54.173.99.121
Details	IPv4	8	185.220.100.240
Details	IPv4	4	185.220.101.61
Details	IPv4	5	185.220.101.182
Details	IPv4	8	109.237.96.124
Details	IPv4	1	185.220.101.160
Details	IPv4	4	62.102.148.69
Details	IPv4	9	185.220.100.242
Details	IPv4	1	185.220.101.129
Details	IPv4	2	185.220.101.185
Details	IPv4	1	116.24.67.213
Details	IPv4	2	185.220.101.171
Details	IPv4	1	72.223.168.73
Details	IPv4	7	185.220.100.243
Details	IPv4	1	185.220.101.138
Details	IPv4	1	185.220.101.189
Details	IPv4	1	134.122.34.28
Details	IPv4	1	185.220.101.186
Details	IPv4	1	81.17.18.60
Details	IPv4	7	185.220.100.244
Details	IPv4	1	185.220.101.139
Details	IPv4	2	185.220.101.191
Details	IPv4	1	137.184.102.82
Details	IPv4	3	185.220.102.249
Details	IPv4	3	104.244.72.115
Details	IPv4	3	185.220.100.245
Details	IPv4	1	185.220.101.141
Details	IPv4	2	185.220.102.8
Details	IPv4	1	137.184.106.119
Details	IPv4	1	188.166.48.55
Details	IPv4	1	104.244.74.57
Details	IPv4	4	185.220.100.246
Details	IPv4	1	185.220.101.142
Details	IPv4	7	185.220.102.242
Details	IPv4	1	142.93.34.250
Details	IPv4	1	188.166.92.228
Details	IPv4	1	104.244.74.211
Details	IPv4	4	185.220.100.247
Details	IPv4	2	185.220.101.143
Details	IPv4	3	193.31.24.154
Details	IPv4	1	143.198.32.72
Details	IPv4	1	188.166.122.43
Details	IPv4	3	104.244.76.170
Details	IPv4	5	185.220.100.248
Details	IPv4	1	185.220.101.145
Details	IPv4	2	193.189.100.203
Details	IPv4	1	143.198.45.117
Details	IPv4	1	193.189.100.195
Details	IPv4	1	107.189.1.160
Details	IPv4	4	185.220.100.249
Details	IPv4	1	185.220.101.147
Details	IPv4	3	193.218.118.231
Details	IPv4	1	147.182.167.165
Details	IPv4	3	193.218.118.183
Details	IPv4	1	107.189.1.178
Details	IPv4	7	185.220.100.252
Details	IPv4	1	185.220.101.148
Details	IPv4	2	194.48.199.78
Details	IPv4	1	147.182.169.254
Details	IPv4	2	195.19.192.26
Details	IPv4	1	107.189.12.135
Details	IPv4	3	185.220.100.253
Details	IPv4	3	185.220.101.149
Details	IPv4	2	195.176.3.24
Details	IPv4	1	147.182.219.9
Details	IPv4	2	212.193.57.225
Details	IPv4	1	107.189.14.98
Details	IPv4	4	185.220.100.254
Details	IPv4	1	185.220.101.153
Details	IPv4	2	195.254.135.76
Details	IPv4	1	151.115.60.113
Details	IPv4	1	122.161.50.23
Details	IPv4	6	185.220.100.255
Details	IPv4	1	185.220.101.156
Details	IPv4	3	198.98.51.189
Details	IPv4	1	159.65.58.66
Details	IPv4	6	171.25.193.20
Details	IPv4	3	185.220.101.33
Details	IPv4	1	185.220.101.157
Details	IPv4	2	199.195.250.77
Details	IPv4	1	159.65.155.208