백신프로그램 탐지 회피 하기 위해서 워드 파일을 PDF 포함하는 MalDoc in PDF
Tags
attack-pattern: Python - T1059.006
Common Information
Type Value
UUID f50326ba-1633-4a15-8183-ad548b1c7ec8
Fingerprint a6b4d2e6fb6b7e7c
Analysis status DONE
Considered CTI value 2
Text language
Published July 12, 2024, midnight
Added to db Aug. 31, 2024, 11:14 a.m.
Last updated Sept. 29, 2024, 10:03 p.m.
Headline 꿈을꾸는 파랑새
Title 백신프로그램 탐지 회피 하기 위해서 워드 파일을 PDF 포함하는 MalDoc in PDF
Detected Hints/Tags/Attributes 4/1/14
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 478 꿈을꾸는 파랑새 https://wezard4u.tistory.com/feed 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 1
0723request.doc.zip
Details File 1
0723request.doc
Details File 9
-ud123.bat
Details File 10
건.docx
Details md5 1
3c90b82156211c30cb2db8c7d569f3ad
Details md5 1
d537f8b812a3902b90aa16281aa1314b
Details sha1 1
7dc6ea6c156186b57d422038a37d633d3a605379
Details sha1 1
2bfd1175e777e6df26b151071ec24376086a5c51
Details sha256 1
75385dfea84ed375f6f5d0cfe93c603ea0fbf6f7a1c7e9b867253ed6f8bb5b38
Details sha256 4
ef59d7038cfd565fd65bae12588810d5361df938244ebad33b71882dcf683058
Details Microsoft Patch Numbers 20
KB5034440
Details Microsoft Patch Numbers 20
KB5034441
Details Microsoft Patch Numbers 9
KB5040427
Details Microsoft Patch Numbers 14
KB5040442