HyperBro
Essential information
- Confidence
- 100/100
- Is family
- Yes
- Published
- 09/07/2019 19:42
- Modified
- 27/03/2026 01:05
- Revoked
- No
- Author / Source
- The MITRE Corporation
- Related entities
- 74 attack patterns (mitre), 2 intrusion sets (apt), 13 sectors, 10 countries, 98 indicators, 3 vulnerabilities (cve)
Description
Marking (TLP)
TLP:CLEAR Copyright 2015-2025, The MITRE Corporation. MITRE ATT&CK and ATT&CK are registered trademarks of The MITRE Corporation.
External references
Related entities
Attack patterns, malware, vulnerabilities, indicators, intrusion sets and other entities linked to this malware.
Attack patterns (MITRE) (74)
Intrusion sets (APT) (2)
-
Budworm usesAlienVault Confidence 100First seen 01/01/1970 · Last seen 16/11/5138 ·
-
The MITRE Corporation Confidence 100
[Threat Group-3390](https://attack.mitre.org/groups/G0027) is a Chinese threat group that has extensively used strategic Web compromises to target victims.(Citation: Dell TG-3390) The group has been active since at least 2010…
First seen 01/01/1970 · Last seen 16/11/5138 ·
Sectors (13)
-
Energy targets
-
Retail targets
-
Entertainment industry targets
-
Construction targets
-
Air transport targets
-
Banking institutions targets
-
Healthcare targets
-
Manufacturing targets
-
Defense targets
-
Media targets
-
Government targets
-
Technology targets
Countries (10)
-
United States of America targets
-
Kazakhstan targets
-
Taiwan targets
-
Kyrgyzstan targets
-
France targets
-
Mongolia targets
-
Georgia targets
-
Germany targets
-
Philippines targets
-
Russian Federation targets
Indicators (98)
-
stix 100/100 Revoked
SHA256 of 36a6eb414c9b8a7c2cdf12eb46e490d288e7a47a
· Valid until 21/08/2023 · Source: AlienVault -
stix 100/100 Revoked· Valid until 21/08/2023 · Source: AlienVault
-
stix 100/100 Revoked
GoLandBuildPE
· Valid until 16/01/2024 · Source: AlienVault -
stix 100/100 Revoked· Valid until 16/01/2024 · Source: AlienVault
-
stix 100/100 Revoked· Valid until 21/08/2023 · Source: AlienVault
-
stix 100/100 Revoked· Valid until 03/06/2024 · Source: AlienVault
-
http://139.180.216.65/dlpprem32.binindicatesstix 100/100 Revoked· Valid until 02/10/2022 · Source: AlienVault -
stix 100/100 Revoked· Valid until 21/08/2023 · Source: AlienVault
-
stix 100/100 Revoked· Valid until 16/01/2024 · Source: AlienVault
Vulnerabilities (CVE) (3)
Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3 and 2.3.1) did not protect from uncontrolled recursion from self-referential lookups. This allows an …
- Attack vector
- Network
- Complexity
- High
- Published
- 18/12/2021
- Modified
- 29/05/2026
Apache Log4j2 contains a vulnerability where JNDI features do not protect against attacker-controlled JNDI-related endpoints, allowing for remote code execution.
- Attack vector
- Network
- Published
- 10/12/2021
- Modified
- 27/05/2026
Microsoft Windows COM Aggregate Marshaler allows for privilege escalation when an attacker runs a specially crafted application.
- Attack vector
- LOCAL
- Complexity
- LOW
- Published
- 12/05/2017
- Modified
- 22/04/2026