Ransomware Attackers Use Microsoft-Signed Drivers to Gain Access to Systems | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomware - National Cyber Security
Tags
country: China Cuba
attack-pattern: Code Signing - T1553.002 Code Signing Certificates - T1587.002 Code Signing Certificates - T1588.003 Digital Certificates - T1596.003 Digital Certificates - T1587.003 Digital Certificates - T1588.004 Hardware - T1592.001 Malware - T1587.001 Malware - T1588.001 Software - T1592.002 Code Signing - T1116 Rootkit - T1014 Rootkit
Show in Graph
Common Information
Type Value
UUID ef1a7b9e-02b8-4c02-8727-dfafc2237cda
Fingerprint a554999559a69505
Analysis status DONE
Considered CTI value 1
Text language
Published Jan. 13, 2023, 4:18 p.m.
Added to db Jan. 13, 2023, 6:14 p.m.
Last updated Nov. 15, 2024, 9:30 p.m.
Headline Ransomware Attackers Use Microsoft-Signed Drivers to Gain Access to Systems | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomware
Title Ransomware Attackers Use Microsoft-Signed Drivers to Gain Access to Systems | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #ransomware - National Cyber Security
Detected Hints/Tags/Attributes 57/2/2
Source URLs
Redirection Url
Details Source https://nationalcybersecurity.com/ransomware-attackers-use-microsoft-signed-drivers-to-gain-access-to-systems-hacking-cybersecurity-infosec-comptia-pentest-ransomware/
URL Provider
Details Provider Source level domain
Details nationalcybersecurity.com nationalcybersecurity.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 163 https://media.cert.europa.eu/rss?type=category&id=Malware&language=en&duplicates=false 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details File 7 
driversipolicy.p7b
Details Mandiant Uncategorized Groups 111 
UNC3944