← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
cve-2020-0601 + spoof signing
WHITE msudosos 2026-05-13 Modified: 2026-05-14
1058
IOCs
HIGH VOLUME
CVE2020-0601 is a Curveball vulnerability that could allow attackers to spoof signatures and is a high cryptographic validation flaw. Per NIST, "A spoofing vulnerability exists in the way Windows CryptoAPI (Crypt32.dll) validates Elliptic Curve Cryptography (ECC) certificates. An attacker could exploit the vulnerability by using a spoofed code-signing certificate to sign a malicious executable, making it appear the file was from a trusted, legitimate source, aka 'Windows CryptoAPI Spoofing Vulnerability',".
indicators showsearchtype indicatorrole titleadded activerelated pulsesinstagramidentifiercve-2020-0601
Indicators of Compromise (3 / 1058 total)
All CVE hostname FileHash-SHA1 domain URL IPv4 FileHash-MD5 FileHash-SHA256
TYPEINDICATORDESCRIPTIONCREATED
FileHash-MD5 aaddb47104d94939d9d2caa975db2cab MD5 of 00000006e9d3a7e85d1f1e7711787b9a117655e249a565122ee12e9962199007 2026-05-13
FileHash-MD5 18dd6e6c7e001e6eb529c89cb34a0035 MD5 of dfbde381fde1a284c81a72d06a1a43faf49cd1c085c87234e34e50b881567806 2026-05-13
FileHash-MD5 554108a20e410c7cd1c5f36036146887 MD5 of 22aa981f10e839fbf2c5c3a8f3de7caa2f9c3add7af4750420fd2b1a05be1709 2026-05-13