HrServ
AlienVault
· Published 20/12/2025 19:41 · Modified 21/12/2025 01:41
Essential information
- Confidence
- 100/100
- Is family
- No
- Published
- 20/12/2025 19:41
- Modified
- 21/12/2025 01:41
- Revoked
- No
- Author / Source
- AlienVault
- Related entities
- 13 attack patterns (mitre), 8 indicators, 1 vulnerabilities (cve)
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators, intrusion sets and other entities linked to this malware.
Attack patterns (MITRE) (13)
-
T1053 usesScheduled Task/Job MITRE
-
T1001 usesData Obfuscation MITRE
-
T1027 usesObfuscated Files or Information MITRE
-
T1547 usesBoot or Logon Autostart Execution MITRE
-
T1199 usesTrusted Relationship MITRE
-
T1574.002 uses
-
T1557 usesAdversary-in-the-Middle MITRE
-
T1548 usesAbuse Elevation Control Mechanism MITRE
-
T1109 uses
-
T1573 usesEncrypted Channel MITRE
-
T1195 usesSupply Chain Compromise MITRE
-
T1564 usesHide Artifacts MITRE
Indicators (8)
-
stix 100/100 Revoked· Valid until 24/02/2025 · Source: AlienVault
-
stix 100/100 Revoked
SHA256 of d0fe27865ab271963e27973e81b77bae
· Valid until 24/02/2025 · Source: AlienVault -
stix 100/100 Revoked· Valid until 19/07/2025 · Source: AlienVault
-
stix 100/100 Revoked· Valid until 19/07/2025 · Source: AlienVault
-
stix 100/100 Revoked· Valid until 19/07/2025 · Source: AlienVault
-
stix 100/100 Revoked· Valid until 19/07/2025 · Source: AlienVault
-
stix 100/100 Revoked· Valid until 19/07/2025 · Source: AlienVault
-
stix 100/100 Revoked· Valid until 19/07/2025 · Source: AlienVault
Vulnerabilities (CVE) (1)
CVE-2024-3094
targets
10.0
Critical
Malicious code was discovered in the upstream tarballs of xz, starting with version 5.6.0. Through a series of complex obfuscations, the liblzma …
- Attack vector
- NETWORK
- Published
- 29/03/2024
- Modified
- 21/12/2025