VBShower - S0442
AlienVault
· Published 20/12/2025 19:49 · Modified 21/12/2025 08:33
Essential information
- Confidence
- 100/100
- Is family
- No
- Published
- 20/12/2025 19:49
- Modified
- 21/12/2025 08:33
- Revoked
- No
- Author / Source
- AlienVault
- Related entities
- 56 attack patterns (mitre), 1 intrusion sets (apt), 4 sectors, 6 countries, 49 indicators, 1 vulnerabilities (cve), 4 reports
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators, intrusion sets and other entities linked to this malware.
Attack patterns (MITRE) (56)
-
T1049 usesSystem Network Connections Discovery MITRE
-
T1543.003 usesWindows Service MITRE
-
T1082 usesSystem Information Discovery MITRE
-
T1071.004 usesDNS MITRE
-
T1021.002 usesSMB/Windows Admin Shares MITRE
-
T1074 usesData Staged MITRE
-
T1059.005 usesVisual Basic MITRE
-
T1070 usesIndicator Removal MITRE
-
T1036 usesMasquerading MITRE
-
T1053.005 usesScheduled Task MITRE
-
T1027.002 usesSoftware Packing MITRE
-
T1003.001 usesLSASS Memory MITRE
Intrusion sets (APT) (1)
-
The MITRE Corporation Confidence 100
[Inception](https://attack.mitre.org/groups/G0100) is a cyber espionage group active since at least 2014. The group has targeted multiple industries and governmental entities primarily in Russia, but has also been active…
First seen 01/01/1970 · Last seen 16/11/5138 ·
Sectors (4)
-
Manufacturing targets
-
Government targets
-
Telecommunications targets
-
Construction targets
Countries (6)
-
Moldova, Republic of targets
-
Belarus targets
-
Israel targets
-
Canada targets
-
Kyrgyzstan targets
-
Russian Federation targets
Indicators (49)
-
stix 100/100· Valid until 19/02/2027 · Source: AlienVault
-
stix 100/100· Valid until 19/02/2027 · Source: AlienVault
-
stix 100/100· Valid until 19/02/2027 · Source: AlienVault
-
stix 100/100· Valid until 19/02/2027 · Source: AlienVault
Vulnerabilities (CVE) (1)
Microsoft Office contains a memory corruption vulnerability due to the way objects are handled in memory. Successful exploitation allows for remote code …
- Published
- 03/11/2021
- Modified
- 20/12/2025
Reports (4)
-
20 MITREs 8 Malwares
-
1 CVE 14 MITREs 2 Malwares 10 Observables 1 APT
-
13 MITREs 4 Malwares 1 APT
-
1 CVE 21 MITREs 3 Malwares 16 Observables 1 APT