Earth Minotaur
Essential information
- Confidence
- 100/100
- Published
- 21/12/2025 08:39
- Modified
- 21/12/2025 08:39
- Updated at
- 21/12/2025 08:39
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 1 reports, 18 attack patterns (mitre), 4 malware, 1 countries, 87 indicators, 9 vulnerabilities (cve)
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Reports (1)
-
18 MITREs 4 Malwares 1 APT
Attack patterns (MITRE) (18)
-
T1189 usesDrive-by Compromise MITRE
-
T1057 usesProcess Discovery MITRE
-
T1123 usesAudio Capture MITRE
-
T1552.001 usesCredentials In Files MITRE
-
T1518 usesSoftware Discovery MITRE
-
T1204.001 usesMalicious Link MITRE
-
T1005 usesData from Local System MITRE
-
T1555 usesCredentials from Password Stores MITRE
-
T1083 usesFile and Directory Discovery MITRE
-
T1539 usesSteal Web Session Cookie MITRE
-
T1059.004 usesUnix Shell MITRE
-
T1113 usesScreen Capture MITRE
Malware (4)
-
POISONPLUG.SHADOW usesFamily
-
MOONSHINE usesFamily
-
ShadowPad - S0596 usesFamily
-
DarkNimbus usesFamily
Countries (1)
-
China targets
Indicators (87)
-
www.onlineweixin.netindicates -
www.esetinc.comindicates -
73bb7e7d0743d40a1d967497a5fbb79c07132eb15a546fa25bbecaf43993a1d2indicates -
c5a06ffdf20b39c4555b37dec5e3075c16bd8ffb9bde4c87bd05243df53df064indicates -
1eaeb4558d5c4c67723c90f840b6f137517f4479e9fe8e1e874b18e9da754d4bindicates -
1b6345d855db824e594f28e86e5abb04e0478923e51a3718cff80c42190cff6cindicates -
532b3a47e15c45a113c3b219d0d66a18dcbf20c81de3b56f4bb71f7544de2699indicates -
dash.nortonet.comindicates -
www.lodepot.comindicates -
acd.1yxqwzx2.comindicates -
ansec.comindicates -
e9664ad0272bc1b5e0d271dc3a28ef32cbdd0a790a1f5fe26ba4e1904cccbfdcindicates
Vulnerabilities (CVE) (9)
Type Confusion in V8 in Google Chrome prior to 114.0.5735.198 allowed a remote attacker to potentially exploit heap corruption via a crafted …
- Attack vector
- NETWORK
- Published
- 26/06/2023
- Modified
- 21/12/2025
Google Chromium V8 Engine contains an out-of-bounds read vulnerability that allows a remote attacker to cause a denial of service or possibly …
- Attack vector
- NETWORK
- Complexity
- LOW
- Published
- 29/03/2016
- Modified
- 22/04/2026
Google Chromium V8 Engine contains an integer overflow vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted …
- Published
- 08/06/2022
- Modified
- 21/12/2025
Google Chromium V8 Engine contains an out-of-bounds memory access vulnerability that allows a remote attacker to perform read/write operations, leading to code …
- Attack vector
- NETWORK
- Complexity
- LOW
- Published
- 19/01/2017
- Modified
- 22/04/2026
Google Chromium V8 Engine contains out-of-bounds write vulnerability that allows a remote attacker to execute code inside a sandbox via a crafted …
- Published
- 08/06/2022
- Modified
- 21/12/2025
Google Chromium V8 Engine contains an unspecified vulnerability that allows a remote attacker to execute code inside a sandbox via a crafted …
- Published
- 08/06/2022
- Modified
- 21/12/2025
Google Chromium V8 Engine contains a type confusion vulnerability allows a remote attacker to potentially exploit heap corruption via a crafted HTML …
- Published
- 03/11/2021
- Modified
- 21/12/2025
Google Chromium V8 Engine contains a memory corruption vulnerability that allows a remote attacker to execute code via a crafted HTML page. …
- Attack vector
- NETWORK
- Complexity
- LOW
- Published
- 25/04/2017
- Modified
- 22/04/2026
Google Chromium V8 Engine contains a type confusion vulnerability that allows a remote attacker to execute code inside a sandbox via a …
- Attack vector
- NETWORK
- Complexity
- LOW
- Published
- 27/10/2017
- Modified
- 22/04/2026