UAT-8616
Reports
9
First seen
Mar 12
Last seen
Jun 18
Motivation
exploitation, espionage, Initial access, persistence, privilege e
Targeting
Sectors
other ×1
Top ATT&CK techniques
T1190 Exploit Public-Facing Application ×7T1078 Valid Accounts ×4T1003 OS Credential Dumping ×3T1566 Phishing ×3T1505.003 Web Shell ×3T1555 Credentials from Password Stores ×3T1566.002 Phishing: Spearphishing Link ×2T1195 Supply Chain Compromise ×2T1110 Brute Force ×2T1059.004 Unix Shell ×2T1041 Exfiltration Over C2 Channel ×2T1496 Resource Hijacking ×2
Indicators
cve ×109ip_v4 ×33hash_sha256 ×14filename ×12domain ×9url ×6hash_md5 ×1
Indicator values are available on Pro and via the API.
Associated CVEs
CVE-2026-20127 (exploited)CVE-2026-20182 (exploited)CVE-2026-20133 (exploited)CVE-2026-20128 (exploited)CVE-2026-20122 (exploited)CVE-2022-20775 (exploited)CVE-2026-20245 (exploited)CVE-2026-21533 (exploited)CVE-2026-22769 (exploited)CVE-2026-23760 (exploited)CVE-2026-33825CVE-2026-35616 (exploited)CVE-2026-42897 (exploited)CVE-2026-43284 (exploited)CVE-2026-45585 (exploited)CVE-2026-49975 (exploited)CVE-2026-8181 (exploited)CVE-2025-15556 (exploited)CVE-2026-0300 (exploited)CVE-2026-1731 (exploited)
Recent reports
High