Earth Minotaur
Essential information
- Confidence
- 100/100
- Published
- 21/12/2025 08:39
- Modified
- 21/12/2025 08:39
- Updated at
- 21/12/2025 08:39
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 1 reports, 18 attack patterns (mitre), 4 malware, 1 countries, 87 indicators, 9 vulnerabilities (cve)
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Reports (1)
-
18 MITREs 4 Malwares 1 APT
Attack patterns (MITRE) (18)
-
T1189 usesDrive-by Compromise MITRE
-
T1057 usesProcess Discovery MITRE
-
T1123 usesAudio Capture MITRE
-
T1552.001 usesCredentials In Files MITRE
-
T1518 usesSoftware Discovery MITRE
-
T1204.001 usesMalicious Link MITRE
-
T1005 usesData from Local System MITRE
-
T1555 usesCredentials from Password Stores MITRE
-
T1083 usesFile and Directory Discovery MITRE
-
T1539 usesSteal Web Session Cookie MITRE
-
T1059.004 usesUnix Shell MITRE
-
T1113 usesScreen Capture MITRE
Malware (4)
-
POISONPLUG.SHADOW usesFamily
-
MOONSHINE usesFamily
-
ShadowPad - S0596 usesFamily
-
DarkNimbus usesFamily
Countries (1)
-
China targets
Indicators (87)
-
f0b7f4a0e37708e4c767d529cbe35834ee3cff2b00a0c70d080d7f82924ad7edindicates -
server.img-bing.comindicates -
www.nortonet.comindicates -
1defb8f7166f604640da5f2a913d69dd8c6ae14ea0bfe3cdfc1f1afcf96837cbindicates -
11d760f84bea10155cf16b8f3620914a818307f9ece614069509494914a8f8a2indicates -
7ee53cc01e039e7c7584ea3fe4274292a58957acce61227394889e84b1f7879eindicates -
5af767c90035a88d9a4d329c24631de21ba0a9481e0e540e058c9cfa4709a7a2indicates -
95da35098d6167c23bdb1901024614d3658fa78b34ae11612ec7abdfd92c92a0indicates -
www.wetransfering.comindicates -
bstram.comindicates -
www.mcofea.comindicates -
61b24ff38bfdeb7b9f1716ee22535dccf1add5b19095a8f8b227a67270b279b2indicates
Vulnerabilities (CVE) (9)
Type Confusion in V8 in Google Chrome prior to 114.0.5735.198 allowed a remote attacker to potentially exploit heap corruption via a crafted …
- Attack vector
- NETWORK
- Published
- 26/06/2023
- Modified
- 21/12/2025
Google Chromium V8 Engine contains an out-of-bounds read vulnerability that allows a remote attacker to cause a denial of service or possibly …
- Attack vector
- NETWORK
- Complexity
- LOW
- Published
- 29/03/2016
- Modified
- 22/04/2026
Google Chromium V8 Engine contains an integer overflow vulnerability that allows a remote attacker to potentially exploit heap corruption via a crafted …
- Published
- 08/06/2022
- Modified
- 21/12/2025
Google Chromium V8 Engine contains an out-of-bounds memory access vulnerability that allows a remote attacker to perform read/write operations, leading to code …
- Attack vector
- NETWORK
- Complexity
- LOW
- Published
- 19/01/2017
- Modified
- 22/04/2026
Google Chromium V8 Engine contains out-of-bounds write vulnerability that allows a remote attacker to execute code inside a sandbox via a crafted …
- Published
- 08/06/2022
- Modified
- 21/12/2025
Google Chromium V8 Engine contains an unspecified vulnerability that allows a remote attacker to execute code inside a sandbox via a crafted …
- Published
- 08/06/2022
- Modified
- 21/12/2025
Google Chromium V8 Engine contains a type confusion vulnerability allows a remote attacker to potentially exploit heap corruption via a crafted HTML …
- Published
- 03/11/2021
- Modified
- 21/12/2025
Google Chromium V8 Engine contains a memory corruption vulnerability that allows a remote attacker to execute code via a crafted HTML page. …
- Attack vector
- NETWORK
- Complexity
- LOW
- Published
- 25/04/2017
- Modified
- 22/04/2026
Google Chromium V8 Engine contains a type confusion vulnerability that allows a remote attacker to execute code inside a sandbox via a …
- Attack vector
- NETWORK
- Complexity
- LOW
- Published
- 27/10/2017
- Modified
- 22/04/2026