HyperBro
Essential information
- Confidence
- 100/100
- Is family
- Yes
- Published
- 09/07/2019 19:42
- Modified
- 27/03/2026 01:05
- Revoked
- No
- Author / Source
- The MITRE Corporation
- Related entities
- 74 attack patterns (mitre), 2 intrusion sets (apt), 13 sectors, 10 countries, 98 indicators, 3 vulnerabilities (cve)
Description
Marking (TLP)
TLP:CLEAR Copyright 2015-2025, The MITRE Corporation. MITRE ATT&CK and ATT&CK are registered trademarks of The MITRE Corporation.
External references
Related entities
Attack patterns, malware, vulnerabilities, indicators, intrusion sets and other entities linked to this malware.
Attack patterns (MITRE) (74)
Intrusion sets (APT) (2)
-
Budworm usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
The MITRE Corporation Confidence 100
[Threat Group-3390](https://attack.mitre.org/groups/G0027) is a Chinese threat group that has extensively used strategic Web compromises to target victims.(Citation: Dell TG-3390) The group has been active since at least 2010…
First seen 01/01/1970 · Last seen 16/11/5138 ·
Sectors (13)
-
Finance targets
Countries (10)
-
United States of America targets
-
Kazakhstan targets
-
Taiwan targets
-
Kyrgyzstan targets
-
France targets
-
Mongolia targets
-
Georgia targets
-
Germany targets
-
Philippines targets
-
Russian Federation targets
Indicators (98)
-
stix 100/100 Revoked· Valid until 19/11/2023 · Source: AlienVault
-
stix 100/100 Revoked· Valid until 21/08/2023 · Source: AlienVault
-
stix 100/100 Revoked· Valid until 21/08/2023 · Source: AlienVault
-
http://139.180.216.65/dlpprem32.dllindicatesstix 100/100 Revoked· Valid until 02/10/2022 · Source: AlienVault -
stix 100/100 Revoked
TEL:ConnectIPPort SHA256 of 90ff670baddb8bce0444a8a422096461e78fb287 SHA256 of 90ff670baddb8bce0444a8a422096461e78fb287
· Valid until 21/08/2023 · Source: AlienVault -
stix 100/100 Revoked· Valid until 16/01/2024 · Source: AlienVault
-
stix 100/100 Revoked· Valid until 16/01/2024 · Source: AlienVault
-
stix 100/100 Revoked· Valid until 16/01/2024 · Source: AlienVault
-
stix 100/100 Revoked· Valid until 21/08/2023 · Source: AlienVault
Vulnerabilities (CVE) (3)
Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3 and 2.3.1) did not protect from uncontrolled recursion from self-referential lookups. This allows an …
- Attack vector
- Network
- Complexity
- High
- Published
- 18/12/2021
- Modified
- 29/05/2026
Apache Log4j2 contains a vulnerability where JNDI features do not protect against attacker-controlled JNDI-related endpoints, allowing for remote code execution.
- Attack vector
- Network
- Published
- 10/12/2021
- Modified
- 27/05/2026
Microsoft Windows COM Aggregate Marshaler allows for privilege escalation when an attacker runs a specially crafted application.
- Attack vector
- LOCAL
- Complexity
- LOW
- Published
- 12/05/2017
- Modified
- 22/04/2026