RustDuck
AlienVault
· Published 02/07/2026 12:13 · Modified 02/07/2026 12:13
Essential information
- Confidence
- 100/100
- Is family
- No
- Published
- 02/07/2026 12:13
- Modified
- 02/07/2026 12:13
- Revoked
- No
- Author / Source
- AlienVault
- Related entities
- 20 attack patterns (mitre), 13 indicators, 4 vulnerabilities (cve), 1 reports
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators, intrusion sets and other entities linked to this malware.
Attack patterns (MITRE) (20)
-
T1071 usesApplication Layer Protocol MITRE
-
T1036 usesMasquerading MITRE
-
T1105 usesIngress Tool Transfer MITRE
-
T1573 usesEncrypted Channel MITRE
-
T1498 usesNetwork Denial of Service MITRE
-
T1078 usesValid Accounts MITRE
-
T1090 usesProxy MITRE
-
T1027 usesObfuscated Files or Information MITRE
-
T1190 usesExploit Public-Facing Application MITRE
-
T1016 usesSystem Network Configuration Discovery MITRE
-
T1203 usesExploitation for Client Execution MITRE
-
T1057 usesProcess Discovery MITRE
Indicators (13)
-
stix 100/100· Valid until 28/06/2027 · Source: AlienVault
-
stix 100/100· Valid until 28/06/2027 · Source: AlienVault
Vulnerabilities (CVE) (4)
CVE-2017-17215
targets
- Published
- 20/12/2025
- Modified
- 20/12/2025
CVE-2024-1781
targets
6.3
Medium
A vulnerability was found in Totolink X6000R AX3000 9.4.0cu.852_20230719. It has been rated as critical. This issue affects the function setWizardCfg of …
- Attack vector
- ADJACENT_NETWORK
- Published
- 23/02/2024
- Modified
- 21/12/2025
CVE-2018-8007
targets
- EPSS
- 0.1168 (P95.5%)
- Published
- 02/07/2026
7.2
High
D-Link DIR-823X contains a command injection vulnerability that allows an authorized attacker to execute arbitrary commands on remote devices by sending a …
- Attack vector
- Network
- Complexity
- Low
- Published
- 25/03/2025
- Modified
- 02/07/2026
Reports (1)
-
AlienVault Confidence 100 4 CVEs 20 MITREs 1 Malware 13 IOCs 11 Observables