216.73.217.22

SHADOW-EARTH-066, Earth Dahu

· Published 09/06/2026 11:00 · Modified 09/06/2026 11:00 · Source: AlienVault

Essential information

Confidence
100/100
Published
09/06/2026 11:00
Modified
09/06/2026 11:00
Updated at
09/06/2026 11:00
Revoked
No
Author / Source
AlienVault
Resource level
Primary motivation
Related entities
1 reports, 16 attack patterns (mitre), 2 malware, 2 sectors, 1 countries, 53 indicators, 3 vulnerabilities (cve)

Description

No description.

Marking (TLP)

TLP:CLEAR

Related entities

Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.

Reports (1)

Attack patterns (MITRE) (16)

Malware (2)

  • GammaSteel uses
    Family
    Published 08/06/2026 10:30 · Modified 08/06/2026 10:30
  • GIFTEDCROOK uses
    Family
    Published 08/06/2026 10:30 · Modified 08/06/2026 10:30

Sectors (2)

  • Government targets
  • Defense targets

Countries (1)

  • Ukraine targets

Indicators (53)

Vulnerabilities (CVE) (3)

CVE-2025-6218 KEV

RARLAB WinRAR contains a path traversal vulnerability allowing an attacker to execute code in the context of the current user.

Published
09/12/2025
Modified
21/12/2025
CVE-2018-20250 KEV

WinRAR Absolute Path Traversal vulnerability leads to Remote Code Execution

Published
15/02/2022
Modified
02/06/2026
CVE-2025-8088 KEV
8.8 High

RARLAB WinRAR contains a path traversal vulnerability affecting the Windows version of WinRAR. This vulnerability could allow an attacker to execute arbitrary …

Attack vector
Network
Published
12/08/2025
Modified
27/05/2026