WorstFit: Unveiling Hidden Transformers in Windows ANSI! | DEVCORE 戴夫寇爾
Common Information
Type Value
UUID f5714886-aaa6-43c7-9efe-c2dc028ae338
Fingerprint 3699b95aac2776d5
Analysis status DONE
Considered CTI value 2
Text language
Published Jan. 9, 2025, midnight
Added to db Jan. 9, 2025, 2:16 p.m.
Last updated Jan. 19, 2025, 7:23 a.m.
Headline BLOG
Title WorstFit: Unveiling Hidden Transformers in Windows ANSI! | DEVCORE 戴夫寇爾
Detected Hints/Tags/Attributes 102/2/52
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 102 DEVCORE 戴夫寇爾 https://devco.re/rss 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details CVE 66
cve-2024-4577
Details CVE 15
cve-2024-49026
Details CVE 7
cve-2024-45720
Details CVE 2
cve-2024-8067
Details Domain 1
worst.fit
Details Domain 2
unicode.org
Details Domain 45
subprocess.run
Details Domain 1
cgi.pl
Details File 338
calc.exe
Details File 14
wget.exe
Details File 1396
powershell.exe
Details File 1
d8.exe
Details File 63
win.ini
Details File 1065
node.js
Details File 10
openssl.exe
Details File 10
tar.exe
Details File 100
java.exe
Details File 65
test.exe
Details File 17
ucrtbase.dll
Details File 1
'vuln.exe
Details File 1
vuln.exe
Details File 33
class.php
Details File 1
foobar.tar
Details File 12
foo.txt
Details File 2
bar.txt
Details File 1
bbb.tar
Details File 32
plink.exe
Details File 1
pwn.xlsx
Details File 209
excel.exe
Details File 1
cgi.pl
Details File 1362
index.php
Details File 1
c:\inetpub\wwwroot\index.php
Details File 15
php-cgi.exe
Details File 51
secret.txt
Details File 10
c:\windows\win.ini
Details File 100
curl.exe
Details File 5
malicious.dll
Details File 1
'openssl.exe
Details File 6
in.txt
Details File 34
out.txt
Details File 4
rasphone.exe
Details File 4
svn.exe
Details File 2
psql.exe
Details File 1
p4.exe
Details File 9
perl.exe
Details File 1
wkhtmltopdf.exe
Details Url 1
https://worst.fit
Details Url 1
https://example.tld
Details Url 1
https://example.tld/{path}.txt
Details Url 1
http://victim.tld/index.php/foo/bar
Details Url 1
http://victim.tld/index.php/../../../secret.txt
Details Windows Registry Key 1
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Nls\CodePage