ioc[.]one - OSINT Cyber Threat Intelligence Database

CVE-2022-31199: Truebot Malware Campaign Actively Exploiting Netwrix Auditor RCE Vulnerability - Arctic Wolf

Tags

country:	Canada Russia
attack-pattern:	Malware - T1587.001 Malware - T1588.001 Software - T1592.002

Show in Graph

Common Information

Type	Value
UUID	fe08edeb-6d07-4213-bb45-e6c81b635799
Fingerprint	97d649fbc831e7cf
Analysis status	DONE
Considered CTI value	2
Text language
Published	July 7, 2023, 9:45 p.m.
Added to db	July 8, 2023, 12:01 a.m.
Last updated	Nov. 17, 2024, 5:55 p.m.
Headline	CVE-2022-31199: Truebot Malware Campaign Actively Exploiting Netwrix Auditor RCE Vulnerability
Title	CVE-2022-31199: Truebot Malware Campaign Actively Exploiting Netwrix Auditor RCE Vulnerability - Arctic Wolf
Detected Hints/Tags/Attributes	30/2/4

Source URLs

	Redirection	Url
Details	Source	https://arcticwolf.com/resources/blog-uk/cve-2022-31199-truebot-malware-campaign-actively-exploiting-netwrix-auditor-rce-vulnerability/

URL Provider

Details	Provider	Source level domain
Details	arcticwolf.com	arcticwolf.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	16	✔	Arctic Wolf	https://arcticwolf.com/feed/	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	CVE	29		cve-2022-31199
Details	CVE	5		cve-2022-3199
Details	CVE	3		cve-2023-31199
Details	Threat Actor Identifier - FIN	127		FIN11