Indicator of Compromise
CVE-2018-0802
A CVE identifier for a specific software vulnerability referenced in this reporting.
Seen in these reports
Chinese Cyber Threat Intelligence · Feb 24, 2026
Chinese APT UnsolicitedBooker Deploys LuciDoor and MarsSnake Backdoors Against Central Asian Telecoms
General CTI · Feb 13, 2026
XWorm RAT Campaign Exploits 7-Year-Old Office Vulnerability with Fileless Techniques
Malware · Feb 11, 2026
XWorm RAT Campaign Exploits CVE-2018-0802 in Multi-Language Phishing Attacks Using Fileless Injection
Related indicators
Indicators that appear alongside this one in the same reporting, often shared infrastructure or the same campaign.
3bc1de741f8149f49bdbafa703067f24 3F4C3C16F63FB90D1FD64B031D8A9803035F3CB18332E198850896881FB42FE5 8665BC1B33CBE6F5859CD6E362AF77738BA73A6E6D4B9974C16C8521D84C1892 berlin101[.]comcloudinary[.]com CVE-2017-11882 EACD8E95EAD3FFE2C225768EF6F85672C4BFDF61655ED697B97F598203EF2CF6 EE663D016894D44C69B1FDC9D2A5BE02F028A56FC22B694FF7C1DACB2BBBCC6D FD9BA9E6BD4886EDC1123D4074D0EAC363DF61162364530B1303390AA621140B hxxp://pub-3bc1de741f8149f49bdbafa703067f24[.]r2[.]dev/wwa[.]txthxxps://pub-3bc1de741f8149f49bdbafa703067f24[.]r2[.]dev/wwa[.]txthxxps://res[.]cloudinary[.]com/dbjtzqp4q/image/upload/v1767455040/hxxps://res[.]cloudinary[.]com/dbjtzqp4q/image/upload/v1767455040/optimized_MSI_lpsd9p[.]jpghxxps://retrodayaengineering[.]icu/HGG[.]htapub-3bc1de741f8149f49bdbafa703067f24[.]r2[.]devpub-3bc1de741f8149f49bdbafa703067f24[.]r2[.]dev/wwa[.]txtr2[.]devres[.]cloudinary[.]comres[.]cloudinary[.]com/dbjtzqp4q/image/upload/v1767455040/res[.]cloudinary[.]com/dbjtzqp4q/image/upload/v1767455040/optimized_MSI_lpsd9p[.]jpgretrodayaengineering[.]icuretrodayaengineering[.]icu/HGG[.]hta