백신프로그램 탐지 회피 하기 위해서 워드 파일을 PDF 포함하는 MalDoc in PDF
Tags
attack-pattern: | Python - T1059.006 |
Common Information
Type | Value |
---|---|
UUID | f50326ba-1633-4a15-8183-ad548b1c7ec8 |
Fingerprint | a6b4d2e6fb6b7e7c |
Analysis status | DONE |
Considered CTI value | 2 |
Text language | |
Published | July 12, 2024, midnight |
Added to db | Aug. 31, 2024, 11:14 a.m. |
Last updated | Sept. 29, 2024, 10:03 p.m. |
Headline | 꿈을꾸는 파랑새 |
Title | 백신프로그램 탐지 회피 하기 위해서 워드 파일을 PDF 포함하는 MalDoc in PDF |
Detected Hints/Tags/Attributes | 4/1/14 |
Source URLs
Redirection | Url | |
---|---|---|
Details | Source | https://wezard4u.tistory.com/429226 |
Details | Source | http://wezard4u.tistory.com/429226 |
URL Provider
RSS Feed
Details | Id | Enabled | Feed title | Url | Added to db |
---|---|---|---|---|---|
Details | 478 | ✔ | 꿈을꾸는 파랑새 | https://wezard4u.tistory.com/feed | 2024-08-30 22:08 |
Attributes
Details | Type | #Events | CTI | Value |
---|---|---|---|---|
Details | Domain | 1 | 0723request.doc.zip |
|
Details | File | 1 | 0723request.doc |
|
Details | File | 9 | -ud123.bat |
|
Details | File | 10 | 건.docx |
|
Details | md5 | 1 | 3c90b82156211c30cb2db8c7d569f3ad |
|
Details | md5 | 1 | d537f8b812a3902b90aa16281aa1314b |
|
Details | sha1 | 1 | 7dc6ea6c156186b57d422038a37d633d3a605379 |
|
Details | sha1 | 1 | 2bfd1175e777e6df26b151071ec24376086a5c51 |
|
Details | sha256 | 1 | 75385dfea84ed375f6f5d0cfe93c603ea0fbf6f7a1c7e9b867253ed6f8bb5b38 |
|
Details | sha256 | 4 | ef59d7038cfd565fd65bae12588810d5361df938244ebad33b71882dcf683058 |
|
Details | Microsoft Patch Numbers | 20 | KB5034440 |
|
Details | Microsoft Patch Numbers | 20 | KB5034441 |
|
Details | Microsoft Patch Numbers | 9 | KB5040427 |
|
Details | Microsoft Patch Numbers | 14 | KB5040442 |