Lucene search
HiveForce LabsHIVEPRO:E2AE2F008814FBD91737F743C0CD959EHistoryNov 09, 2023 - 5:00 a.m.
SideCopy Leverages Multi-platform RAT, Assaults Indian Government Entities
2023-11-0905:00:36
HiveForce Labs
www.hivepro.com
25
sidecopy
winrar
vulnerability
indian government
multi-platform
rat
ares rat
trojans
remote access
security
threat advisory
hiveforce labs
linkedin
Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary A threat actor linked to Pakistan named SideCopy is capitalizing on WinRAR's CVE-2023-38831 vulnerability to target Indian government agencies. This security vulnerability facilitates distribution of various trojans, enabling attackers to gain remote access to compromised systems. The latest campaign is multi-platform and includes attacks designed to use an Ares RAT to infiltrate Linux computers. To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.
Related
cve
cve
attackerkb
attackerkb
CVE-2023-38831
2023-08-23 00:00:00
hivepro
hivepro
WinRAR Zero-Day Exploit Targeting Traders Since April
2023-08-25 08:16:29
The Rise of DarkCasino APT Group Exploiting WinRAR 0-Day
2023-11-27 12:47:11
githubexploit
githubexploit
Exploit for CVE-2023-38831
2023-08-27 14:08:36
Exploit for CVE-2023-38831
2023-08-28 14:48:35
Exploit for CVE-2023-38831
2023-09-03 21:14:05
cnvd
cnvd
WinRAR Code Execution Vulnerability
2023-08-25 00:00:00
zdt
zdt
WinRAR Remote Code Execution Exploit
2023-09-11 00:00:00
WinRAR version 6.22 - Remote Code Execution via ZIP archive Exploit
2024-03-29 00:00:00
thn
thn
Konni Group Using Russian-Language Malicious Word Docs in Latest Attacks
2023-11-23 14:46:00
Experts Uncover DarkCasino: New Emerging APT Threat Exploiting WinRAR Flaw
2023-11-16 13:51:00
debiancve
debiancve
CVE-2023-38831
2023-08-23 17:15:00
prion
prion
Design/Logic Flaw
2023-08-23 17:15:00
metasploit
metasploit
WinRAR CVE-2023-38831 Exploit
2023-09-04 16:56:22
exploitdb
exploitdb
WinRAR version 6.22 - Remote Code Execution via ZIP archive
2024-03-28 00:00:00
openvas
openvas
RARLabs WinRAR Code Execution Vulnerability - Windows
2023-08-31 00:00:00
cisa_kev
cisa_kev
RARLAB WinRAR Code Execution Vulnerability
2023-08-24 00:00:00
Microsoft SmartScreen Prompt Security Feature Bypass Vulnerability
2024-04-30 00:00:00
packetstorm
packetstorm
WinRAR Remote Code Execution
2023-09-08 00:00:00
WinRAR 6.22 Remote Code Execution
2024-03-28 00:00:00
nvd
nvd
cvelist
cvelist
CVE-2023-38831
2023-08-23 00:00:00
kaspersky
kaspersky
KLA52366 Multiple vulnerabilities in WinRAR
2023-08-17 00:00:00
nessus
nessus
WinRAR < 6.23 RCE
2023-08-24 00:00:00
trellix
trellix
CVE-2023-38831: Navigating the Threat Landscape of the Latest Security Vulnerability
2023-11-09 00:00:00
CVE-2023-38831: Navigating the Threat Landscape of the Latest Security Vulnerability
2023-11-09 00:00:00
The Bug Report – August 2023 Edition
2023-09-06 00:00:00
securelist
securelist
Exploits and vulnerabilities in Q1 2024
2024-05-07 10:00:39
IT threat evolution in Q3 2023. Non-mobile statistics
2023-12-01 10:00:03
rapid7blog
rapid7blog
Metasploit Weekly Wrap-Up
2023-09-15 18:54:45
7.5 High
AI Score
Confidence
Low
0.192 Low
EPSS
Percentile
96.3%
Related for HIVEPRO:E2AE2F008814FBD91737F743C0CD959E