Microsoft Security Slate - February 24, 2022[.]pdf

Resubmissions

25-02-2022 12:36

220225-ptb1jshddr 4

25-02-2022 12:24

220225-plc8msgbb8 4

Sharing

Copy URL

Twitter E-mail

General

Target

Microsoft Security Slate - February 24, 2022.pdf
Size

180KB
MD5

5ea0ec873d875461667242cdf59a8a14
SHA1

fd133f268cb5c8a0e93244e64054dcc5dcffe85d
SHA256

550e51618a4801601efe5bad60041427749ab0f0928020d667be1ff8f15e61e9
SHA512

95dad6dddf5b2873d9ab13849f45c44ff27b6f99dd018760ececa45e38fbf2d503845d75a28787d91a1ab47de4d5e92ccd53e8d0377063535686f5a4449885b4
SSDEEP

3072:+gRv5i9qOvWVFdqcrQq1/DTHCzBJ9n79Vri9gbngy:+gl5i9Tv6FdqQQ2P+Jx79Ji+Lgy

Score

4^/10

pdf link

Malware Config

Signatures

HTTP links in PDF interactive object 1 IoCs
Detects HTTP links in interactive objects within PDF files.
pdf link

Processes:

resource yara_rule

sample pdf_with_link_action
One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
pdf link

resource	yara_rule
sample	pdf_with_link_action

Files

Microsoft Security Slate - February 24, 2022.pdf
.pdf
- https://www.microsoft.com/security/blog/2022/02/23/microsoft-security-delivers-new-multicloud-capabilities/
- https://azure.microsoft.com/services/defender-for-cloud/
- https://www.microsoft.com/security/blog/2022/02/22/the-federal-zero-trust-strategy-and-microsofts-deployment-guidance-for-all/
- https://www.whitehouse.gov/omb/briefing-room/2022/01/26/office-of-management-and-budget-releases-federal-strategy-to-move-the-u-s-government-towards-a-zero-trust-architecture/
- https://techcommunity.microsoft.com/t5/microsoft-sentinel-blog/what-s-next-in-microsoft-sentinel/ba-p/3179133
- https://techcommunity.microsoft.com/t5/microsoft-sentinel-blog/new-normalization-is-now-built-in-microsoft-sentinel/ba-p/3100917
- https://techcommunity.microsoft.com/t5/azure-active-directory-identity/extend-the-reach-of-azure-ad-identity-protection-into-workload/ba-p/2365666
- https://github.blog/2022-02-22-github-advisory-database-now-open-to-community-contributions/
- https://github.blog/2022-02-22-get-started-using-security-workflows/
- https://techcommunity.microsoft.com/t5/microsoft-defender-for-iot-blog/microsoft-defender-for-iot-general-release-update/ba-p/3199919
- https://techcommunity.microsoft.com/t5/exchange-team-blog/troubleshooting-issues-with-distribution-list-to-microsoft-365/ba-p/3199361
- https://blogs.windows.com/windows-insider/2022/02/24/announcing-windows-11-insider-preview-build-22563/
- https://techcommunity.microsoft.com/t5/azure-monitor-status/bg-p/AzureMonitorStatusBlog
- https://techcommunity.microsoft.com/t5/azure-monitor-status/experiencing-data-gaps-in-jio-india-west-region-for-application/ba-p/3201089
- https://techcommunity.microsoft.com/t5/azure-monitor-status/experiencing-data-latency-issue-in-azure-portal-for-many-data/ba-p/3193818
- https://techcommunity.microsoft.com/t5/azure-monitor-status/experiencing-data-latency-for-log-analytics-south-uk-02-20/ba-p/3189329
- https://techcommunity.microsoft.com/t5/custom/page/page-id/Blogs
- https://techcommunity.microsoft.com/t5/azure-active-directory-identity/cloudknox-permissions-management-is-now-in-public-preview/ba-p/2464391
- https://techcommunity.microsoft.com/t5/azure-database-support-blog/lesson-learned-186-firewall-protection-using-private-endpoint/ba-p/3209225
- https://techcommunity.microsoft.com/t5/microsoft-defender-for-cloud/microsoft-defender-for-key-vault-deploy-to-azure-synapse/ba-p/3201308
- https://status.azure.com/status/
- https://status.office365.com/
- https://techcommunity.microsoft.com/t5/azure-databases/ct-p/AzureDatabases
- https://www.zdnet.com/article/asia-most-targeted-region-in-2021-taking-on-one-in-four-cybersecurity-attacks/
- https://www.theverge.com/2022/2/22/22945962/asustor-nas-deadbolt-ransomware-attack
- https://www.asustor.com/en/knowledge/detail/?id=&group_id=628
- https://www.bleepingcomputer.com/news/security/new-phishing-campaign-targets-monzo-online-banking-customers/
- https://www.thenationalnews.com/mena/jordan/2022/02/20/jordanian-official-says-royal-court-among-cyber-attack-targets-this-year/
- https://www.bleepingcomputer.com/news/security/cookware-giant-meyer-discloses-cyberattack-that-impacted-employees/
- https://www.darkreading.com/attacks-breaches/more-orgs-experienced-a-successful-phishing-attack-in-2021-than-year-before
- https://www.bleepingcomputer.com/news/security/us-and-uk-expose-new-malware-used-by-muddywater-hackers/
- https://www.ncsc.gov.uk/news/joint-advisory-shows-new-sandworm-malware-cyclops-blink-replaces-vpnfilter
- https://www.securityweek.com/increasing-number-threat-groups-targeting-ot-systems-north-america
- https://news.sophos.com/en-us/2022/02/23/dridex-bots-deliver-entropy-ransomware-in-recent-attacks/
- https://unit42.paloaltonetworks.com/sockdetour/
- https://www.cisa.gov/uscert/ncas/current-activity/2022/02/17/cisco-releases-security-updates-email-security-appliance
- https://securityaffairs.co/wordpress/128190/cyber-crime/conti-ransomware-takes-over-trickbot.html
- https://www.threatfabric.com/blogs/xenomorph-a-newly-hatched-banking-trojan.html
- https://thehackernews.com/2022/02/master-key-for-hive-ransomware.html
- https://www.darkreading.com/application-security/key-application-security-metrics-show-little-sign-of-improvement
- https://www.govinfosecurity.com/hhs-warns-threats-to-electronic-health-records-a-18545
- https://iapp.org/news/a/top-5-operational-impacts-chinas-pipl-part-3-personal-information-protection-officer/
- https://dataprotection.ie/en/news-media/press-releases/data-protection-commission-publishes-2021-annual-report
- https://www.nextgov.com/cybersecurity/2022/02/zero-trust-could-become-incomplete-experiment-without-permanent-office-advisors-warn/362345/
- https://www.infosecurity-magazine.com/news/sea-mar-negligence-data-breach/
- https://www.infosecurity-magazine.com/news/new-york-to-get-statewide/
- https://www.ukauthority.com/articles/dcms-provides-schools-with-cyber-security-learning-platform/
- https://www.zdnet.com/article/thanks-dad-jammer-used-to-control-kids-online-time-father-wipes-out-a-towns-internet-by-mistake/
- https://www.theregister.com/2022/02/22/apple_airtags_protections_bypass/
- https://docs.microsoft.com/microsoft-365/compliance/microsoft-365-compliance-center?view=o365-worldwide
- https://azure.microsoft.com/blog
- https://support.microsoft.com/hub/4095338/microsoft-lifecycle-policy
- https://www.microsoft.com/security/blog/
- https://support.microsoft.com/hub/4099151/windows-security-help
- https://www.microsoft.com/wdsi/threats
- https://www.microsoft.com/en-us/msrc?rtc=1
- http://aka.ms/securityupdateguide
- https://docs.microsoft.com/en-us/windows/release-information/
- https://twitter.com/ajohnsocyber
- https://twitter.com/markrussinovich
- https://twitter.com/Alex_A_Simons
- https://twitter.com/BradSmi
- https://twitter.com/azure
- https://twitter.com/MSFTIssues
- https://twitter.com/MSFTPrivacy
- https://twitter.com/msftsecurity
- https://twitter.com/MsftSecIntel
- https://twitter.com/Safer_Online
- https://twitter.com/msftsecresponse
- https://twitter.com/msPartner
- https://twitter.com/msuspartner
- https://twitter.com/mspartnersuk
- https://twitter.com/mspartnersfr
- https://twitter.com/mspartnernz
- https://twitter.com/MVPAward
- http://myasustor.com
- Show all