SHADOW-VOID-044
· Published 27/01/2026 08:33 · Modified 27/01/2026 08:33
· Source: AlienVault
Essential information
- Confidence
- 100/100
- Published
- 27/01/2026 08:33
- Modified
- 27/01/2026 08:33
- Updated at
- 27/01/2026 08:33
- Revoked
- No
- Author / Source
- AlienVault
- Resource level
- —
- Primary motivation
- —
- Related entities
- 1 reports, 21 attack patterns (mitre), 7 malware, 2 sectors, 2 countries, 50 indicators, 1 vulnerabilities (cve)
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators and other entities linked to this intrusion set.
Reports (1)
-
1 CVE 19 MITREs 7 Malwares 21 Observables 1 APT
Attack patterns (MITRE) (21)
-
T1059.001 usesPowerShell MITRE
-
T1059 usesCommand and Scripting Interpreter MITRE
-
T1071.001 usesWeb Protocols MITRE
-
T1553.002 usesCode Signing MITRE
-
T1218.011 usesRundll32 MITRE
-
T1190 usesExploit Public-Facing Application MITRE
-
T1059.005 usesVisual Basic MITRE
-
T1573.001 usesSymmetric Cryptography MITRE
-
T1204.001 usesMalicious Link MITRE
-
T1095 usesNon-Application Layer Protocol MITRE
-
T1027 usesObfuscated Files or Information MITRE
-
T1132.001 usesStandard Encoding MITRE
Malware (7)
-
PeckBirdy usesFamily
-
MKDOOR usesFamily
-
WizardNet usesFamily
-
BIOPASS RAT usesFamily
-
GRAYRABBIT usesFamily
-
HOLODONUT usesFamily
-
DarkNimbus usesFamily
Sectors (2)
-
Government targets
-
Gambling targets
Countries (2)
-
Philippines targets
-
China targets
Indicators (50)
-
cdn.js-cdn.xyzindicates -
fb69135d10c087f72c7cf82a1441e6de3e3d2abfde8546c9012b15c63d5c50e5indicates -
8.218.124.102indicates -
0a0b25e9565bd41bdadcaab88f0c8c425582c248bdbc4d981ee3ad57a58c6476indicates -
cloudflare.hcaphcha.comindicates -
7e989948c2b9bb4cd9f7031882e5400171d574610f0dfd06a8d60b860f6e984aindicates -
691d3a5ea614b5bf371001941635788e680ad938f06ee4dfd25768422eaedd6findicates -
ecafb4ad14c96007f2873e5e4d0e173d27340427f512448515f64e4f58268741indicates -
m.as-cdn.orgindicates -
7e396dda39d3497097b82d98920fa174f883b04d03295493dd3b13676d5ac321indicates -
app.css-alicdn.comindicates -
336a0be2dfa60e6beee133cff185bc258b480fb231d5d7eacaca6dfde0db3f81indicates
Vulnerabilities (CVE) (1)
CVE-2020-16040
targets
6.5
Medium
Insufficient data validation in V8 in Google Chrome prior to 87.0.4280.88 allowed a remote attacker to potentially exploit heap corruption via a …
- Attack vector
- NETWORK
- Published
- 08/01/2021
- Modified
- 27/01/2026