Repellent Scorpius
· Published 21/12/2025 07:03 · Modified 21/12/2025 07:03
· Source: AlienVault
Essential information
- Confidence
- 100/100
- Published
- 21/12/2025 07:03
- Modified
- 21/12/2025 07:03
- Updated at
- 21/12/2025 07:03
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 1 reports, 8 attack patterns (mitre), 1 malware, 6 indicators, 2 vulnerabilities (cve)
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Reports (1)
-
2 CVEs 8 MITREs 1 Malware 8 Observables 1 APT
Attack patterns (MITRE) (8)
-
T1105 usesIngress Tool Transfer MITRE
-
T1562 usesImpair Defenses MITRE
-
T1059 usesCommand and Scripting Interpreter MITRE
-
T1071 usesApplication Layer Protocol MITRE
-
T1213 usesData from Information Repositories MITRE
-
T1489 usesService Stop MITRE
-
T1486 usesData Encrypted for Impact MITRE
-
T1563 usesRemote Service Session Hijacking MITRE
Malware (1)
-
Cicada3301 usesFamily
Indicators (6)
-
0260258f6f083aff71c7549a6364cb05d54dd27f40ca1145e064353dd2a9e983indicates -
2d73b3aefcfbb47c1a187ddee7a48a21af7c85eb49cbdcb665db07375e36dc33indicates -
3969e1a88a063155a6f61b0ca1ac33114c1a39151f3c7dd019084abd30553eabindicates -
56e1d092c07322d9dad7d85d773953573cc3294b9e428b3bbbaf935ca4d2f7e7indicates -
http://cicadabv7vicyvgz5khl7v2x5yygcgow7ryy6yppwmxii4eoobdaztqd.onion/indicates -
8ec114b29c7f2406809337b6c68ab30b0b7f0d1647829d56125e84662b84ea74indicates
Vulnerabilities (CVE) (2)
8.4
High
ConnectWise ScreenConnect contains a path traversal vulnerability which could allow an attacker to execute remote code or directly impact confidential data and …
- Attack vector
- Network
- Complexity
- Low
- Published
- 21/02/2024
- Modified
- 29/04/2026
10.0
Critical
ConnectWise ScreenConnect contains an authentication bypass vulnerability that allows an attacker with network access to the management interface to create a new, …
- Attack vector
- Network
- Published
- 22/02/2024
- Modified
- 28/02/2026