Ratty 解析

IOB - Indicator of Behavior (4)

タイムライン

言語

en4

国・地域

アクター

アクティビティ

関心

タイムライン

タイプ

ベンダー

製品

Apache Traffic Server2
Joomla2

脆弱性

IOC - Indicator of Compromise (1)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIPアドレスHostnameアクターキャンペーンIdentifiedタイプ信頼度
1141.101.134.18Ratty2021年10月15日verified

TTP - Tactics, Techniques, Procedures (2)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueクラス脆弱性アクセスベクタータイプ信頼度
1T1204.001CAPEC-178CWE-601Open Redirectpredictive
2TXXXXCAPEC-108CWE-XXXxx Xxxxxxxxxpredictive

IOA - Indicator of Attack (2)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDクラスIndicatorタイプ信頼度
1FileCMSPages/GetDocLink.ashxpredictive
2Argumentxxxxpredictive

参考 (1)

The following list contains external sources which discuss the actor and the associated activities:

Samples (1)

The following list contains associated samples:

Do you know our Splunk app?

Download it now for free!