Threat Advisory: Zero-day vulnerability in Microsoft diagnostic tool MSDT could lead to code execution
Tags
attack-pattern: | Data Direct Domains - T1583.001 Domains - T1584.001 Malware - T1587.001 Malware - T1588.001 Multi-Factor Authentication - T1556.006 Tool - T1588.002 |
Common Information
Type | Value |
---|---|
UUID | e9334c41-d2d4-45dc-82d7-11e2c7c7812a |
Fingerprint | 8de80915c976e209 |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | June 1, 2022, 10:06 a.m. |
Added to db | Oct. 24, 2023, 1:45 p.m. |
Last updated | Nov. 17, 2024, 5:56 p.m. |
Headline | Cisco Talos Intelligence Blog |
Title | Threat Advisory: Zero-day vulnerability in Microsoft diagnostic tool MSDT could lead to code execution |
Detected Hints/Tags/Attributes | 25/1/14 |
Source URLs
Redirection | Url | |
---|---|---|
Details | Redirection | https://blog.talosintelligence.com/msdt-follina-coverage |
Details | Source | https://blog.talosintelligence.com/msdt-follina-coverage/ |
URL Provider
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | CVE | 172 | cve-2022-30190 |
|
Details | Domain | 904 | snort.org |
|
Details | Domain | 7 | www.xmlformats.com |
|
Details | Domain | 2 | www.sputnikradio.net |
|
Details | Domain | 3 | exchange.oufca.com.au |
|
Details | sha256 | 7 | 4a24048f81afbe9fb62e7a6a49adbd1faf41f266b5f9feecdceb567aec096784 |
|
Details | sha256 | 4 | 8e986c906d0c6213f80d0224833913fa14bc4c15c047766a62f6329bfc0639bd |
|
Details | sha256 | 3 | fe300467c2714f4962d814a34f8ee631a51e8255b9c07106d44c6a1f1eda7a45 |
|
Details | sha256 | 4 | 710370f6142d945e142890eb427a368bfc6c5fe13a963f952fb884c38ef06bfa |
|
Details | sha256 | 3 | d61d70a4d4c417560652542e54486beb37edce014e34a94b8fd0020796ff1ef7 |
|
Details | Url | 5 | https://www.xmlformats.com/office/word/2022/wordprocessingdrawing/rdf842l.html |
|
Details | Url | 2 | https://www.sputnikradio.net/radio/news/3134.html |
|
Details | Url | 2 | https://exchange.oufca.com.au/owa/auth/15.1.2375/themes/p3azx.html |
|
Details | Windows Registry Key | 8 | HKEY_CLASSES_ROOT\ms-msdt |