HIDDEN COBRA actors commonly target systems running older, unsupported versions of Microsoft operating systems. The multiple vulnerabilities in these older systems provide cyber actors many targets for exploitation. These actors have also used Adobe Flash player vulnerabilities to gain initial entry into users' environments.
HIDDEN COBRA is known to use vulnerabilities affecting various applications. These vulnerabilities include:
CVE-2015-6585: Hangul Word Processor Vulnerability
CVE-2015-8651: Adobe Flash Player 188.8.131.524 and 19.x Vulnerability
CVE-2016-0034: Microsoft Silverlight 5.1.41212.0 Vulnerability
CVE-2016-1019: Adobe Flash Player 184.108.40.206 Vulnerability
CVE-2016-4117: Adobe Flash Player 220.127.116.11 Vulnerability