← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
AA23-347A Russian Foreign Intelligence Service (SVR) Exploiting JetBrains TeamCity CVE Globally
he Federal Bureau of Investigation (FBI), US Cybersecurity & Infrastructure Security Agency (CISA), National Security Agency (NSA), Polish Military Counterintelligence Service (SKW), CERT Polska (CERT.PL), and the UK's National Cyber Security Centre (NCSC) assess Russian Foreign Intelligence Service (SVR) cyber actors—also known as Advanced Persistent Threat 29 (APT 29), the Dukes, CozyBear, and NOBELIUM/Midnight Blizzard—are exploiting CVE-2023-42793 at a large scale, targeting servers hosting JetBrains TeamCity software since September 2023.
The information is derived from collaborative ongoing mitigation efforts by the authoring agencies of this CSA
MITRE ATT&CK & Malware Families
Indicators of Compromise (73)
| TYPE | INDICATOR | DESCRIPTION | CREATED | |
|---|---|---|---|---|
| CVE | CVE-2023-42793 | — | 2023-12-19 | |
| FileHash-MD5 | 00c912fd20e1a0f79884377a29a9624e | MD5 of 19f1ef66e449cf2a2b0283dbb756850cca396114286e1485e35e6c672c9c3641 | 2023-12-19 | |
| FileHash-MD5 | 0d1cd6a6b7279c8c30554718858545a4 | MD5 of d724728344fcf3812a0664a80270f7b4980b82342449a8c5a2fa510e10600443 | 2023-12-19 | |
| FileHash-MD5 | 23448eba3f5f7267b810080bcb04110f | MD5 of ebe231c90fad02590fc56d5840acc63b90312b0e2fee7da3c7606027ed92600e | 2023-12-19 | |
| FileHash-MD5 | 2d8e4f38b36c334d0a32a7324832501d | MD5 of f6f11ad2cd2b0cf95ed42324876bee1d83e01775 | 2023-12-19 | |
| FileHash-MD5 | 347b4f985414ca9f78bbbbff002e3ec6 | MD5 of a4b03f1e981ccdd7e08e786c72283d5551671edf | 2023-12-19 | |
| FileHash-MD5 | 46125424b4982c6ae17af821dedb9bfb | MD5 of 18192bb4aaa1b72104be4d26460b55f31ca65baf | 2023-12-19 | |
| FileHash-MD5 | 462076d3998d6a9acc170245808dac4f | MD5 of b53e27c79eed8531b1e05827ace2362603fb9f77f53cee2e34940d570217cbf7 | 2023-12-19 | |
| FileHash-MD5 | 484617c0e2a1d6f7e95f121717e11768 | MD5 of c7b01242d2e15c3da0f45b8adec4e6913e534849cde16a2a6c480045e03fbee4 | 2023-12-19 | |
| FileHash-MD5 | 5a782bc5f0d63540b666f6a07e116d81 | MD5 of 281bb0dadc789b89f7ae30d5f4bdeae57c66b0e1 | 2023-12-19 | |
| FileHash-MD5 | 5ba4f88f92415a420b61d8fbe5205db2 | MD5 of 219fb90d2e88a2197a9e08b0e7811e2e0bd23d59233287587ccc4642c2cf3d67 | 2023-12-19 | |
| FileHash-MD5 | 69538d033ae3309f0652ae815506fcec | MD5 of 2df317b8a408d2ad5c94b9de6f20bbef03e46066 | 2023-12-19 | |
| FileHash-MD5 | 73494d133b528b19c8f1888697115d59 | MD5 of f6194121e1540c3553273709127dfa1daab96b0acfab6e92548bfb4059913c69 | 2023-12-19 | |
| FileHash-MD5 | 760ada04a2b937dd81684807597b27c0 | MD5 of 92c7693e82a90d08249edeafbca6533fed81b62e9e056dec34c24756e0a130a6 | 2023-12-19 | |
| FileHash-MD5 | 88357c8115dcb7e7cfb8fe30c99fe4a2 | MD5 of c832462c15c8041191f190f7a88d25089d57f78e97161c3003d68d0cc2c4baa3 | 2023-12-19 | |
| FileHash-MD5 | 98a082e95628b51307343581cfb7eac7 | MD5 of d4411f70e0dcc2f88d74ae7251d51c6676075f6f | 2023-12-19 | |
| FileHash-MD5 | 9e181ace0d294148fbff5b2b45c0f3f4 | MD5 of 1e74cf0223d57fd846e171f4a58790280d4593df1f23132044076560a5455ff8 | 2023-12-19 | |
| FileHash-MD5 | a26349d2f6d4aeb629ceabd13eef6385 | MD5 of c40a8006a7b1f10b1b42fdd8d6d0f434be503fb3400fb948ac9ab8ddfa5b78a0 | 2023-12-19 | |
| FileHash-MD5 | b1cc96c1533d901d248d65289a127ea2 | MD5 of 18101518eae3eec6ebe453de4c4c380160774d7c3ed5c79e1813013ac1bb0b93 | 2023-12-19 | |
| FileHash-MD5 | c996d7971c49252c582171d9380360f2 | MD5 of c948ae14761095e4d76b55d9de86412258be7afd | 2023-12-19 | |
| FileHash-MD5 | cd6f6b6a05cd94839beaae7f59b4d6dd | MD5 of 4bf1915785d7c6e0987eb9c15857f7ac67dc365177a1707b14822131d43a6166 | 2023-12-19 | |
| FileHash-MD5 | df6da9b86835eacbda212e5ab9d77c68 | MD5 of c37c109171f32456bbe57b8676cc533091e387e6ba733fbaa01175c43cfb6ebd | 2023-12-19 | |
| FileHash-SHA1 | 18192bb4aaa1b72104be4d26460b55f31ca65baf | — | 2023-12-19 | |
| FileHash-SHA1 | 2127cb774c3516840db15de1304e1ed498fece36 | SHA1 of c7b01242d2e15c3da0f45b8adec4e6913e534849cde16a2a6c480045e03fbee4 | 2023-12-19 | |
| FileHash-SHA1 | 23761328b0f584fb872548be90c8ab4f605f2712 | SHA1 of c832462c15c8041191f190f7a88d25089d57f78e97161c3003d68d0cc2c4baa3 | 2023-12-19 | |
| FileHash-SHA1 | 281bb0dadc789b89f7ae30d5f4bdeae57c66b0e1 | — | 2023-12-19 | |
| FileHash-SHA1 | 2df317b8a408d2ad5c94b9de6f20bbef03e46066 | — | 2023-12-19 | |
| FileHash-SHA1 | 3f74bd82b078af12112d2e42270e10a870ad0ce8 | SHA1 of 1e74cf0223d57fd846e171f4a58790280d4593df1f23132044076560a5455ff8 | 2023-12-19 | |
| FileHash-SHA1 | 5310270aeeeca3fdb38beee7021f3cda591b70d8 | SHA1 of 4bf1915785d7c6e0987eb9c15857f7ac67dc365177a1707b14822131d43a6166 | 2023-12-19 | |
| FileHash-SHA1 | 5ce062f210e1a5026cb53e9949865312ee477e3c | SHA1 of ebe231c90fad02590fc56d5840acc63b90312b0e2fee7da3c7606027ed92600e | 2023-12-19 | |
| FileHash-SHA1 | 66e3f470129dbcf3a7da958405f12abea73b8a69 | SHA1 of 92c7693e82a90d08249edeafbca6533fed81b62e9e056dec34c24756e0a130a6 | 2023-12-19 | |
| FileHash-SHA1 | 67c4cb66cae506aecfb7f9fb819305f11d036fa3 | SHA1 of d724728344fcf3812a0664a80270f7b4980b82342449a8c5a2fa510e10600443 | 2023-12-19 | |
| FileHash-SHA1 | 7288ff36f61f4643e247427eb6abc42d4b4ceb05 | SHA1 of 219fb90d2e88a2197a9e08b0e7811e2e0bd23d59233287587ccc4642c2cf3d67 | 2023-12-19 | |
| FileHash-SHA1 | 7c5d07d1026e0e5ca90dcacb4bd6de33efecdf19 | SHA1 of c40a8006a7b1f10b1b42fdd8d6d0f434be503fb3400fb948ac9ab8ddfa5b78a0 | 2023-12-19 | |
| FileHash-SHA1 | 84b615a770cd71de8e03237ec723c3666960b63d | SHA1 of 19f1ef66e449cf2a2b0283dbb756850cca396114286e1485e35e6c672c9c3641 | 2023-12-19 | |
| FileHash-SHA1 | a4b03f1e981ccdd7e08e786c72283d5551671edf | — | 2023-12-19 | |
| FileHash-SHA1 | a84c25bceac0f851a75c589e2d42479884ac4bc7 | SHA1 of b53e27c79eed8531b1e05827ace2362603fb9f77f53cee2e34940d570217cbf7 | 2023-12-19 | |
| FileHash-SHA1 | c4124809fc7f82a5184e4fcd81c95384bbd4e01d | SHA1 of 18101518eae3eec6ebe453de4c4c380160774d7c3ed5c79e1813013ac1bb0b93 | 2023-12-19 | |
| FileHash-SHA1 | c948ae14761095e4d76b55d9de86412258be7afd | — | 2023-12-19 | |
| FileHash-SHA1 | d4411f70e0dcc2f88d74ae7251d51c6676075f6f | — | 2023-12-19 | |
| FileHash-SHA1 | d8997bb0ce1c871bb5d152f4d6b134b21e72f810 | SHA1 of f6194121e1540c3553273709127dfa1daab96b0acfab6e92548bfb4059913c69 | 2023-12-19 | |
| FileHash-SHA1 | e6dbab1eff7245c555dff449081aa07119ca8159 | SHA1 of c37c109171f32456bbe57b8676cc533091e387e6ba733fbaa01175c43cfb6ebd | 2023-12-19 | |
| FileHash-SHA1 | f6f11ad2cd2b0cf95ed42324876bee1d83e01775 | — | 2023-12-19 | |
| FileHash-SHA256 | 01aa278b07b58dc46c84bd0b1b5c8e9ee4e62ea0bf7a695862444af32e87f1fd | SHA256 of f6f11ad2cd2b0cf95ed42324876bee1d83e01775 | 2023-12-19 | |
| FileHash-SHA256 | 01b5f7094de0b2c6f8e28aa9a2ded678c166d615530e595621e692a9c0240732 | — | 2023-12-19 | |
| FileHash-SHA256 | 0296e2ce999e67c76352613a718e11516fe1b0efc3ffdb8918fc999dd76a73a5 | SHA256 of c948ae14761095e4d76b55d9de86412258be7afd | 2023-12-19 | |
| FileHash-SHA256 | 18101518eae3eec6ebe453de4c4c380160774d7c3ed5c79e1813013ac1bb0b93 | — | 2023-12-19 | |
| FileHash-SHA256 | 19f1ef66e449cf2a2b0283dbb756850cca396114286e1485e35e6c672c9c3641 | — | 2023-12-19 | |
| FileHash-SHA256 | 1e74cf0223d57fd846e171f4a58790280d4593df1f23132044076560a5455ff8 | — | 2023-12-19 | |
| FileHash-SHA256 | 219fb90d2e88a2197a9e08b0e7811e2e0bd23d59233287587ccc4642c2cf3d67 | — | 2023-12-19 | |
| FileHash-SHA256 | 34c8f155601a3948ddb0d60b582cfe87de970d443cc0e05df48b1a1ad2e42b5e | — | 2023-12-19 | |
| FileHash-SHA256 | 4bf1915785d7c6e0987eb9c15857f7ac67dc365177a1707b14822131d43a6166 | — | 2023-12-19 | |
| FileHash-SHA256 | 4ee70128c70d646c5c2a9a17ad05949cb1fbf1043e9d671998812b2dce75cf0f | SHA256 of 281bb0dadc789b89f7ae30d5f4bdeae57c66b0e1 | 2023-12-19 | |
| FileHash-SHA256 | 620d2bf14fe345eef618fdd1dac242b3a0bb65ccb75699fe00f7c671f2c1d869 | SHA256 of d4411f70e0dcc2f88d74ae7251d51c6676075f6f | 2023-12-19 | |
| FileHash-SHA256 | 773f0102720af2957859d6930cd09693824d87db705b3303cef9ee794375ce13 | SHA256 of 2df317b8a408d2ad5c94b9de6f20bbef03e46066 | 2023-12-19 | |
| FileHash-SHA256 | 7b666b978dbbe7c032cef19a90993e8e4922b743ee839632bfa6d99314ea6c53 | — | 2023-12-19 | |
| FileHash-SHA256 | 8afb71b7ce511b0bce642f46d6fc5dd79fad86a58223061b684313966efef9c7 | SHA256 of a4b03f1e981ccdd7e08e786c72283d5551671edf | 2023-12-19 | |
| FileHash-SHA256 | 92c7693e82a90d08249edeafbca6533fed81b62e9e056dec34c24756e0a130a6 | — | 2023-12-19 | |
| FileHash-SHA256 | 950adbaf66ab214de837e6f1c00921c501746616a882ea8c42f1bad5f9b6eff4 | — | 2023-12-19 | |
| FileHash-SHA256 | 971f0ced6c42dd2b6e3ea3e6c54d0081cf9b06e79a38c2ede3a2c5228c27a6dc | — | 2023-12-19 | |
| FileHash-SHA256 | b53e27c79eed8531b1e05827ace2362603fb9f77f53cee2e34940d570217cbf7 | — | 2023-12-19 | |
| FileHash-SHA256 | c37c109171f32456bbe57b8676cc533091e387e6ba733fbaa01175c43cfb6ebd | — | 2023-12-19 | |
| FileHash-SHA256 | c40a8006a7b1f10b1b42fdd8d6d0f434be503fb3400fb948ac9ab8ddfa5b78a0 | — | 2023-12-19 | |
| FileHash-SHA256 | c7b01242d2e15c3da0f45b8adec4e6913e534849cde16a2a6c480045e03fbee4 | — | 2023-12-19 | |
| FileHash-SHA256 | c832462c15c8041191f190f7a88d25089d57f78e97161c3003d68d0cc2c4baa3 | — | 2023-12-19 | |
| FileHash-SHA256 | cb83e5cb264161c28de76a44d0edb450745e773d24bec5869d85f69633e44dcf | SHA256 of 18192bb4aaa1b72104be4d26460b55f31ca65baf | 2023-12-19 | |
| FileHash-SHA256 | cd3584d61c2724f927553770924149bb51811742a461146b15b34a26c92cad43 | — | 2023-12-19 | |
| FileHash-SHA256 | d724728344fcf3812a0664a80270f7b4980b82342449a8c5a2fa510e10600443 | — | 2023-12-19 | |
| FileHash-SHA256 | ebe231c90fad02590fc56d5840acc63b90312b0e2fee7da3c7606027ed92600e | — | 2023-12-19 | |
| FileHash-SHA256 | f1b40e6e5a7cbc22f7a0bd34607b13e7e3493b8aad7431c47f1366f0256e23eb | — | 2023-12-19 | |
| FileHash-SHA256 | f6194121e1540c3553273709127dfa1daab96b0acfab6e92548bfb4059913c69 | — | 2023-12-19 | |
| URL | https://MATCLICK.COM/WP-QUERY.PHP | — | 2023-12-19 | |
| domain | matclick.com | — | 2023-12-19 |