ioc[.]one - OSINT Cyber Threat Intelligence Database

ZeroDay in Microsoft Office exploited in NATO Summit

Tags

maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Phishing - T1660 Phishing - T1566 Software - T1592.002 Vulnerabilities - T1588.006

Show in Graph

Common Information

Type	Value
UUID	f1861452-7731-420f-ac81-913d58f8377d
Fingerprint	2ad02c07228e83d7
Analysis status	DONE
Considered CTI value	2
Text language
Published	July 17, 2023, 9:50 a.m.
Added to db	July 17, 2023, 12:02 p.m.
Last updated	Nov. 17, 2024, 6:54 p.m.
Headline	ZeroDay in Microsoft Office exploited in NATO Summit
Title	ZeroDay in Microsoft Office exploited in NATO Summit
Detected Hints/Tags/Attributes	27/2/32

Source URLs

	Redirection	Url
Details	Source	https://siddharth-hingol.medium.com/zeroday-in-microsoft-office-exploited-in-nato-summit-bf15f6168a59?source=rss------malware-5

URL Provider

Details	Provider	Source level domain
Details	medium.com	siddharth-hingol.medium.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	171	✔	Malware on Medium	https://medium.com/feed/tag/malware	2024-08-30 22:08

Attributes

Details	Type	#Events	Value
Details	CVE	119	cve-2023-36884
Details	Domain	4	finformservice.com
Details	Domain	4	altimata.org
Details	Domain	4	penofach.com
Details	Domain	4	bentaxworld.com
Details	Domain	3	wexonlake.com
Details	Domain	5	ukrainianworldcongress.info
Details	File	199	excel.exe
Details	File	18	graph.exe
Details	File	91	msaccess.exe
Details	File	102	mspub.exe
Details	File	14	powerpoint.exe
Details	File	86	visio.exe
Details	File	15	winproj.exe
Details	File	323	winword.exe
Details	File	90	wordpad.exe
Details	sha256	9	a61b2eafcf39715031357df6b01e85e0d1ea2e8ee1dfec241b114e18f7a1163f
Details	sha256	8	e7cfeb023c3160a7366f209a16a6f6ea5a0bc9a3ddc16c6cba758114dfe6b539
Details	sha256	8	3a3138c5add59d2172ad33bc6761f2f82ba344f3d03a2269c623f22c1a35df97
Details	sha256	2	48142dc7fe28a5d8a849fff11cb8206912e8382314a2f05e72abad0978b27e90
Details	sha256	7	07377209fe68a98e9bca310d9749daa4eb79558e9fc419cf0b02a9e37679038d
Details	sha256	2	5f40cb4852ec50ee24f3cd951a172c725d02012d17dd645b6ce22d324aa140ad
Details	sha256	5	1a7bb878c826fe0ca9a0677ed072ee9a57a228a09ee02b3c5bd00f54f354930f
Details	sha256	5	0501d09a219131657c54dba71faf2b9d793e466f2c7fdf6b0b3c50ec5b866b2a
Details	IPv4	7	74.50.94.156
Details	IPv4	4	94.232.40.34
Details	IPv4	5	66.23.226.102
Details	IPv4	7	104.234.239.26
Details	IPv4	4	65.21.27.250
Details	Deprecated Microsoft Threat Actor Naming Taxonomy (Groups in development)	17	DEV-0978
Details	Microsoft Threat Actor Naming Taxonomy (Groups in development)	79	Storm-0978
Details	Windows Registry Key	11	HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Internet