公众号新规只对常读和星标的公众号才能展示大图推送,建议大家把公众号“night安全”设为星标,否则可能就看不到啦!
免责声明
night安全致力于分享技术学习和工具掌握。然而请注意不得将此用于任何未经授权的非法行为,请您严格遵守国家信息安全法律法规。任何违反法律、法规的行为,均与本人无关。如有侵权烦请告知,我们会立即删除并致歉。谢谢!
风险情报
【0day】新华三s6800系列交换机存在内存泄露
【0day】广联达OA mobileAction.ashx/do.asmx 任意文件读取漏洞
【0day】锐明Crocus系统存在SQL注入漏洞
【0day】锐明Crocus系统存在SQL注入漏洞
【0day】锐明Crocus系统存在任意文件上传漏洞
【0day】锐明Crocus系统存在任意文件读取漏洞
【0day】锐明Crocus系统存在管理员用户添加漏洞
畅捷通CRM newleadset.php 存在SQL注入漏洞
Windows AFD.SYS驱动程序存在特权提升漏洞
统信UOS某服务进程存在本地越权漏洞
赛蓝企业管理系统 SystemModule 任意文件上传漏洞
Ivanti vTM 身份认证绕过漏洞(CVE-2024-7593)
【老洞】泛微OA E-Cology action.jsp 任意文件上传漏洞
样本情报
样本主题:【电脑版】车辆信息-12辆轿车购买车险.zip
SHA256:
03f06a02d09b92faa360eec8d937f2d87ea1abb06832ac315090dfc9dabf1ba4
MD5: f3c971d691cbf93e84be4010628662c4
相关IP和域名(非IOC,仅可用于排查参考,不可封禁):upgrade.k.sohu.com、adstatic.zhihu.com、huiyan.lenovo.com.cn、static.asus.com.cn、smartpc.lenovo.com.cn
攻击手法:域前置
分析结论:CobaltStrike木马
样本主题:2024重点保障安全意识培训参会人员名单.zip
SHA256:
9b2f6e6b2cf24e295bc22b125f643b954eec43effbae196dedc2deddf3faf645
MD5: 5f596ddc392395cfd14541a12a9d3157
C2:113.96.111.58:8888
分析结论:CobaltStrike木马
样本主题:直播系统异常信息.rar
SHA256:
0b028d56eef5b5dbdea36279397ec5d6c0c828ff92933ac37c5dfa86b64740cf
MD5: eae97ef0ba7c95ef97954b02169ca14b
恶意软件:yk4uljy7akvsc.oss-cn-heyuan.aliyuncs.com
分析结论:CobaltStrike木马
样本主题:***流量推广业务需求.zip
SHA256:
b6bf832d054331ab898bf66e2a82dcc70a37a5529816a0bbc24e55c2a644f93d
MD5: 1a31bfe2c0358e5418f4cce5c5c3505b
恶意软件:oss-alipay.oss-cn-shenzhen.aliyuncs.com
分析结论:CobaltStrike木马
ip情报
206.168.34.203
103.70.59.130
219.131.70.107
104.234.140.41
69.195.132.4
3.101.240.44
47.128.127.67
40.83.134.212
222.186.141.207
103.179.72.166
193.3.19.235
149.192.216.96
123.253.140.242
11.162.237.214
70.49.20.158
116.255.32.73
156.232.186.197
57.152.78.149
222.59.232.28
182.146.156.250
120.239.138.169
118.164.53.58
180.101.145.200
77.37.43.47
119.8.242.61
39.105.130.70
54.152.101.78
51.68.24.116
3.142.169.125
154.215.16.177
12.167.113.32
200.189.27.84
162.220.12.87
43.143.223.104
213.202.233.147
220.181.108.169
139.227.195.70
126.157.142.244
202.189.8.243
43.134.204.137
18.192.31.165
18.64.169.51
183.92.23.150
50.114.155.142
64.227.24.147
201.189.166.44
66.85.173.48
121.40.136.197
91.92.249.211
38.57.129.209
3.7.114.59
180.75.250.51
116.203.52.243
64.69.41.141
146.56.204.182
54.254.91.191
63.232.188.134
154.215.16.171
103.73.119.84
117.148.86.174
107.149.196.114
164.201.236.223
119.23.143.238
108.21.237.93
126.133.207.7
189.178.62.188
185.26.160.185
212.51.144.131
23.224.93.204
81.70.19.68
107.189.14.134
200.101.83.10
8.210.224.32
120.194.198.92
103.120.132.113
109.107.171.138
104.234.140.46
8.137.86.54
180.98.15.42
125.34.40.187
217.67.222.140
124.71.205.247
47.128.118.246
119.208.108.24
223.104.10.247
116.233.165.71
95.217.6.101
27.189.85.163
106.54.19.208
64.225.7.51
115.239.219.156
152.115.131.142
164.90.225.216
81.70.204.120
38.61.6.120
183.168.15.48
45.77.6.216
45.251.10.196
188.214.128.130
52.81.60.5
42.2.230.194
推荐站内搜索:最好用的开发软件、免费开源系统、渗透测试工具云盘下载、最新渗透测试资料、最新黑客工具下载……
还没有评论,来说两句吧...