certutil
Associated Software Descriptions |
|
Name | Description |
---|
Groups That Use This Software |
||
ID | Name | References |
---|---|---|
G0045 | menuPass |
(Citation: Accenture Hogfish April 2018) (Citation: FireEye APT10 Sept 2018) (Citation: Symantec Cicada November 2020) |
G0007 | APT28 |
(Citation: Unit 42 Sofacy Feb 2018) (Citation: Cybersecurity Advisory GRU Brute Force Campaign July 2021) |
G0010 | Turla |
(Citation: Symantec Waterbug Jun 2019) |
G0049 | OilRig |
(Citation: FireEye APT34 Dec 2017) (Citation: Symantec Crambus OCT 2023) |
G0027 | Threat Group-3390 |
(Citation: Trend Micro DRBControl February 2020) |
G0126 | Higaisa |
(Citation: Malwarebytes Higaisa 2020) (Citation: PTSecurity Higaisa 2020) |
G1016 | FIN13 |
(Citation: Sygnia Elephant Beetle Jan 2022) |
G1006 | Earth Lusca |
(Citation: TrendMicro EarthLusca 2022) |
G0096 | APT41 |
(Citation: FireEye APT41 March 2020) |
G0075 | Rancor |
(Citation: Rancor Unit42 June 2018) |
G1017 | Volt Typhoon |
(Citation: CISA AA24-038A PRC Critical Infrastructure February 2024) (Citation: Secureworks BRONZE SILHOUETTE May 2023) |
G0030 | Lotus Blossom |
(Citation: Symantec Bilbug 2022) |
References
- Levene, B., Falcone, R., Grunzweig, J., Lee, B., Olson, R. (2015, August 20). Retefe Banking Trojan Targets Sweden, Switzerland and Japan. Retrieved July 3, 2017.
- Malwarebytes Labs. (2017, March 27). New targeted attack against Saudi Arabia Government. Retrieved July 3, 2017.
- Matsuda, A., Muhammad I. (2018, September 13). APT10 Targeting Japanese Corporations Using Updated TTPs. Retrieved September 17, 2018.
- Microsoft. (2012, November 14). Certutil. Retrieved July 3, 2017.
- Accenture Security. (2018, April 23). Hogfish Redleaves Campaign. Retrieved July 2, 2018.
- LOLBAS. (n.d.). Certutil.exe. Retrieved July 31, 2019.
- Symantec. (2020, November 17). Japan-Linked Organizations Targeted in Long-Running and Sophisticated Attack Campaign. Retrieved December 17, 2020.
Мы используем cookie-файлы, чтобы получить статистику, которая помогает нам улучшить сервис для вас с целью персонализации сервисов и предложений. Вы может прочитать подробнее о cookie-файлах или изменить настройки браузера. Продолжая пользоваться сайтом, вы даёте согласие на использование ваших cookie-файлов и соглашаетесь с Политикой обработки персональных данных.