These hackers used Microsoft-signed malicious drivers to further their ransomware attacks | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomware - National Cyber Security
Tags
country: Cuba
attack-pattern: Code Signing Certificates - T1587.002 Code Signing Certificates - T1588.003 Credentials - T1589.001 Hardware - T1592.001 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Vulnerabilities - T1588.006
Show in Graph
Common Information
Type Value
UUID e8161f2b-bf47-4af5-89b2-4e240710abb7
Fingerprint 2d58881530ee3495
Analysis status DONE
Considered CTI value 1
Text language
Published Jan. 13, 2023, 5:54 p.m.
Added to db Jan. 13, 2023, 7:43 p.m.
Last updated Nov. 13, 2024, 6:33 a.m.
Headline These hackers used Microsoft-signed malicious drivers to further their ransomware attacks | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomware
Title These hackers used Microsoft-signed malicious drivers to further their ransomware attacks | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomware - National Cyber Security
Detected Hints/Tags/Attributes 44/2/1
Source URLs
Redirection Url
Details Source https://nationalcybersecurity.com/these-hackers-used-microsoft-signed-malicious-drivers-to-further-their-ransomware-attacks-hacking-cybersecurity-infosec-comptia-pentest-ransomware/
URL Provider
Details Provider Source level domain
Details nationalcybersecurity.com nationalcybersecurity.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 163 https://media.cert.europa.eu/rss?type=category&id=Malware&language=en&duplicates=false 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Mandiant Uncategorized Groups 111 
UNC3944