← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Dark Halo Leverages SolarWinds Compromise to Breach Organizations
WHITE Dark Halo AlienVault 2020-12-15 Modified: 2021-01-13
20
IOCs
MEDIUM VOLUME
Volexity is releasing additional research and indicators associated with a series of incidents involving malware, backdoors, and a software update that was distributed through an update to SolarWinds Orion software.
volexitydark halosolarwindsowa serverexchangepowershelladfind
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
Indicators of Compromise (20)
All domain CVE
TYPEINDICATORDESCRIPTIONCREATED
domain avsvmcloud.com 2020-12-15
domain deftsecurity.com 2020-12-15
domain digitalcollege.org 2020-12-15
domain freescanonline.com 2020-12-15
domain globalnetworkissues.com 2020-12-15
domain kubecloud.com 2020-12-15
domain lcomputers.com 2020-12-15
domain seobundlekit.com 2020-12-15
domain solartrackingsystem.net 2020-12-15
domain thedoccloud.com 2020-12-15
domain virtualwebdata.com 2020-12-15
domain webcodez.com 2020-12-15
CVE CVE-2020-0688 2020-12-15
domain databasegalore.com 2020-12-15
domain highdatabase.com 2020-12-15
domain incomeupdate.com 2020-12-15
domain panhardware.com 2020-12-15
domain virtualdataserver.com 2020-12-15
domain websitetheme.com 2020-12-15
domain zupertech.com 2020-12-15
References (1)
↗ https://www.volexity.com/blog/2020/12/14/dark-halo-leverages-solarwinds-compromise-to-breach-organizations/