HyperBro
Essential information
- Confidence
- 100/100
- Is family
- Yes
- Published
- 09/07/2019 19:42
- Modified
- 27/03/2026 01:05
- Revoked
- No
- Author / Source
- The MITRE Corporation
- Related entities
- 74 attack patterns (mitre), 2 intrusion sets (apt), 13 sectors, 10 countries, 98 indicators, 3 vulnerabilities (cve)
Description
Marking (TLP)
TLP:CLEAR Copyright 2015-2025, The MITRE Corporation. MITRE ATT&CK and ATT&CK are registered trademarks of The MITRE Corporation.
External references
Related entities
Attack patterns, malware, vulnerabilities, indicators, intrusion sets and other entities linked to this malware.
Attack patterns (MITRE) (74)
Intrusion sets (APT) (2)
-
Budworm usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
The MITRE Corporation Confidence 100
[Threat Group-3390](https://attack.mitre.org/groups/G0027) is a Chinese threat group that has extensively used strategic Web compromises to target victims.(Citation: Dell TG-3390) The group has been active since at least 2010…
First seen 01/01/1970 · Last seen 16/11/5138 ·
Sectors (13)
-
Energy targets
-
Retail targets
-
Entertainment industry targets
-
Construction targets
-
Air transport targets
-
Banking institutions targets
-
Healthcare targets
-
Manufacturing targets
-
Defense targets
-
Media targets
-
Government targets
-
Technology targets
Countries (10)
-
United States of America targets
-
Kazakhstan targets
-
Taiwan targets
-
Kyrgyzstan targets
-
France targets
-
Mongolia targets
-
Georgia targets
-
Germany targets
-
Philippines targets
-
Russian Federation targets
Indicators (98)
-
stix 100/100 Revoked· Valid until 21/08/2023 · Source: AlienVault
-
stix 100/100 Revoked· Valid until 21/08/2023 · Source: AlienVault
-
stix 100/100 Revoked· Valid until 21/08/2023 · Source: AlienVault
-
stix 100/100 Revoked
SHA256 of ec928047d511286c4db2580045d02ced34b639ea
· Valid until 21/08/2023 · Source: AlienVault -
stix 100/100 Revoked· Valid until 21/08/2023 · Source: AlienVault
-
stix 100/100 Revoked
SHA256 of 6b0bebd54877e42f5082e674d07563f527fdd110
· Valid until 21/08/2023 · Source: AlienVault -
stix 100/100 Revoked
stack_string SHA256 of 74847db3abdb5b0fd3952bb76018f9346815035a
· Valid until 21/08/2023 · Source: AlienVault -
check.datacertsecure.infoindicatesstix 100/100 Revoked· Valid until 31/08/2023 · Source: AlienVault -
stix 100/100 Revoked· Valid until 16/01/2024 · Source: AlienVault
-
werwesf.dynamic-dns.netindicatesstix 100/100 Revoked· Valid until 31/08/2023 · Source: AlienVault -
stix 100/100 Revoked· Valid until 21/08/2023 · Source: AlienVault
-
stix 100/100 Revoked· Valid until 08/01/2024 · Source: AlienVault
Vulnerabilities (CVE) (3)
Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3 and 2.3.1) did not protect from uncontrolled recursion from self-referential lookups. This allows an …
- Attack vector
- Network
- Complexity
- High
- Published
- 18/12/2021
- Modified
- 29/05/2026
Apache Log4j2 contains a vulnerability where JNDI features do not protect against attacker-controlled JNDI-related endpoints, allowing for remote code execution.
- Attack vector
- Network
- Published
- 10/12/2021
- Modified
- 27/05/2026
Microsoft Windows COM Aggregate Marshaler allows for privilege escalation when an attacker runs a specially crafted application.
- Attack vector
- LOCAL
- Complexity
- LOW
- Published
- 12/05/2017
- Modified
- 22/04/2026