A Tale of Two Shells
Tags
| country: | China |
| attack-pattern: | Exploits - T1587.004 Exploits - T1588.005 Server - T1583.004 Server - T1584.004 Web Shell - T1505.003 Web Shell - T1100 |
Common Information
| Type | Value |
|---|---|
| UUID | fdb696d0-bf6a-43bd-a7ad-41dcdf0849bf |
| Fingerprint | 3da01010c1ba3ac1 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Feb. 18, 2022, 5:43 p.m. |
| Added to db | Sept. 26, 2022, 9:34 a.m. |
| Last updated | Nov. 17, 2024, 11:40 p.m. |
| Headline | Cyber&Ramen |
| Title | A Tale of Two Shells |
| Detected Hints/Tags/Attributes | 46/2/11 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://cyberandramen.net/2022/02/18/a-tale-of-two-shells/ |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 4128 | github.com |
|
| Details | Domain | 36 | decoded.avast.io |
|
| Details | Domain | 182 | www.mandiant.com |
|
| Details | Domain | 4 | www.sangfor.com |
|
| Details | Github username | 2 | rebeyond |
|
| Details | Github username | 1 | angels520 |
|
| Details | Url | 1 | https://github.com/rebeyond/behinder |
|
| Details | Url | 1 | https://github.com/angels520/rebeyond-mode |
|
| Details | Url | 1 | https://decoded.avast.io/janneduchal/analysis-of-attack-against-national-games-of-china-systems |
|
| Details | Url | 1 | https://www.mandiant.com/resources/zero-day-exploits-in-sonicwall-email-security-lead-to-compromise |
|
| Details | Url | 1 | https://www.sangfor.com/en/info-center/blog-center/cyber-security/behinder-v3-0-analysis |