VMDetector
AlienVault
· Published 20/12/2025 19:57 · Modified 21/12/2025 15:32
Essential information
- Confidence
- 100/100
- Is family
- No
- Published
- 20/12/2025 19:57
- Modified
- 21/12/2025 15:32
- Revoked
- No
- Author / Source
- AlienVault
- Related entities
- 10 attack patterns (mitre), 2 sectors, 1 countries, 16 indicators, 1 vulnerabilities (cve)
Description
No description.
Marking (TLP)
TLP:CLEAR
Related entities
Attack patterns, malware, vulnerabilities, indicators, intrusion sets and other entities linked to this malware.
Attack patterns (MITRE) (10)
-
T1552.001 usesCredentials In Files MITRE
-
T1055 usesProcess Injection MITRE
-
T1105 usesIngress Tool Transfer MITRE
-
T1571 usesNon-Standard Port MITRE
-
T1027 usesObfuscated Files or Information MITRE
-
T1036.004 usesMasquerade Task or Service MITRE
-
T1204.002 usesMalicious File MITRE
-
T1102.002 usesBidirectional Communication MITRE
-
T1059.001 usesPowerShell MITRE
-
T1056.001 usesKeylogging MITRE
Sectors (2)
-
Finance targets
-
Technology targets
Countries (1)
-
Russian Federation targets
Indicators (16)
-
stix 100/100 Revoked· Valid until 27/08/2025 · Source: AlienVault
-
https://angelic.su/files/1.txtindicatesstix 100/100 Revoked· Valid until 27/08/2025 · Source: AlienVault -
https://angelic.su/files/2.txtindicatesstix 100/100 Revoked· Valid until 27/08/2025 · Source: AlienVault -
https://staketree.net/1.txtindicatesstix 100/100 Revoked· Valid until 27/08/2025 · Source: AlienVault -
https://staketree.net/2.txtindicatesstix 100/100 Revoked· Valid until 27/08/2025 · Source: AlienVault -
stix 100/100· Valid until 07/07/2026 · Source: AlienVault
-
stix 100/100· Valid until 07/07/2026 · Source: AlienVault
-
stix 100/100· Valid until 07/07/2026 · Source: AlienVault
Vulnerabilities (CVE) (1)
CVE-2024-3721
targets
6.3
Medium
A vulnerability was found in TBK DVR-4104 and DVR-4216 up to 20240412 and classified as critical. This issue affects some unknown processing …
- Attack vector
- NETWORK
- Published
- 13/04/2024
- Modified
- 21/12/2025