Deathstalker
· Published 20/12/2025 21:52 · Modified 20/12/2025 23:05
· Source: AlienVault
Essential information
- Confidence
- 100/100
- Published
- 20/12/2025 21:52
- Modified
- 20/12/2025 23:05
- Updated at
- 20/12/2025 23:05
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 16 attack patterns (mitre), 4 malware, 4 sectors, 7 countries, 168 indicators, 1 vulnerabilities (cve)
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Attack patterns (MITRE) (16)
-
T1059 usesCommand and Scripting Interpreter MITRE
-
Taint Shared Content usesT1080 MITRE
-
T1021 usesRemote Services MITRE
-
T1496 usesResource Hijacking MITRE
-
T1056.001 usesKeylogging MITRE
-
T1564 usesHide Artifacts MITRE
-
T1113 usesScreen Capture MITRE
-
T1056 usesInput Capture MITRE
-
T1102 usesWeb Service MITRE
-
T1547 usesBoot or Logon Autostart Execution MITRE
-
Multi-Stage Channels usesT1104 MITRE
-
T1105 usesIngress Tool Transfer MITRE
Malware (4)
-
Janicab uses
-
EVILNUM uses
-
VileLoader uses
-
Stonefly usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
Sectors (4)
-
Culture targets
-
Manufacturing targets
-
Finance targets
-
Legal targets
Countries (7)
-
Malta targets
-
Kuwait targets
-
United Arab Emirates targets
-
Germany targets
-
Cyprus targets
-
Afghanistan targets
-
Bulgaria targets
Indicators (168)
Vulnerabilities (CVE) (1)
9.8
Critical
Synacor Zimbra Collaboration Suite (ZCS) allows an attacker to upload arbitrary files using cpio package to gain incorrect access to any other …
- Attack vector
- Network
- Published
- 20/10/2022
- Modified
- 20/12/2025