C0018

C0018C0018

ATT&CK
14.1
References
3

Description

[C0018](https://attack.mitre.org/campaigns/C0018) was a month-long ransomware intrusion that successfully deployed [AvosLocker](https://attack.mitre.org/software/S1053) onto a compromised network. The unidentified actors gained initial access to the victim network through an exposed server and used a variety of open-source tools prior to executing [AvosLocker](https://attack.mitre.org/software/S1053).(Citation: Costa AvosLocker May 2022)(Citation: Cisco Talos Avos Jun 2022)

References

  1. https://attack.mitre.org/campaigns/C0018
  2. https://www.linkedin.com/pulse/raas-avoslocker-incident-response-analysis-fl%C3%A1vio-costa?trk=articles_directory
  3. https://blog.talosintelligence.com/avoslocker-new-arsenal/

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Campaign
C0017
Software
AvosLocker
Campaign
C0015
Campaign
C0021
Campaign
Frankenstein
Campaign
Operation Wocao
Sourced from MITRE ATT&CK Enterprise 14.1. Curated by Adam Lundqvist, SQUR.