Follow-up: Threat Campaign Targeting Cleo MFT Products - Arctic Wolf
Tags
attack-pattern: Powershell - T1059.001 Software - T1592.002 Powershell - T1086
Show in Graph
Common Information
Type Value
UUID e8e31d4b-3703-49f1-8167-63e1f7f84ff9
Fingerprint 126f3b178a674e4a
Analysis status DONE
Considered CTI value 0
Text language
Published Dec. 12, 2024, 2:13 a.m.
Added to db Dec. 13, 2024, 5:08 p.m.
Last updated Dec. 18, 2024, 8:24 p.m.
Headline Follow-up: Threat Campaign Targeting Cleo MFT Products
Title Follow-up: Threat Campaign Targeting Cleo MFT Products - Arctic Wolf
Detected Hints/Tags/Attributes 16/1/10
Source URLs
Redirection Url
Details Source https://arcticwolf.com/resources/blog/follow-up-threat-campaign-targeting-cleo-mft-products/
URL Provider
Details Provider Source level domain
Details arcticwolf.com arcticwolf.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 16 Arctic Wolf https://arcticwolf.com/feed/ 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 48 
cve-2024-50623
Details File 1 
hosts.xml
Details File 2 
5264.jar
Details File 1 
6597.jar
Details File 10 
healthchecktemplate.txt
Details File 1 
harmony235462786353.tmp
Details File 12 
main.xml
Details File 4 
60282967-dc91-40ef-a34c-38e992509c2c.xml
Details IPv4 3 
5.8.0.23
Details IPv4 29 
5.8.0.21