Roboto 解析

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (61)

言語

en	42
ru	16
es	2
de	2

国・地域

us	30
ru	22
de	4
ae	2
es	2

アクター

Roboto	5

関心

タイプ

Not Defined	30
WordPress Plugin	6
Operating System	4
Hardware Driver Software	2
Web Server	2

ベンダー

Not Defined	28
SourceCodester	6
Microsoft	4
Windriver	2
Apache	2

製品

Grafana	6
Microsoft Windows	4
Windriver VxWorks	2
Apache HTTP Server	2
WP-Ban	2

脆弱性

#	脆弱性	Base	Temp	0day	本日	悪	修復	EPSS	CTI	CVE
1	Grafana 弱い認証	8.8	8.8	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00070	0.03	CVE-2023-3128
2	GPAC SVG Parser svg_attributes.c svg_parse_preserveaspectratio サービス拒否	4.3	4.1	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00192	0.00	CVE-2022-3957
3	Rocket.Chat Server NoSQL SQLインジェクション	7.3	7.3	$0-$5k	$0-$5k	Not Defined	Not Defined	0.95326	0.00	CVE-2021-22911
4	PHP Serialization spl_observer.c メモリ破損	8.5	8.4	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00475	0.00	CVE-2016-7480
5	Host Discard Service 特権昇格	7.3	7.1	$0-$5k	$0-$5k	High	Workaround	0.01500	0.00	CVE-1999-0636
6	TP-LINK TL-WR840N/TL-WR841N Session 弱い認証	8.5	7.5	$0-$5k	$0-$5k	Proof-of-Concept	Workaround	0.41479	0.21	CVE-2018-11714
7	Grafana Dashboard 特権昇格	6.4	6.3	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00063	0.00	CVE-2023-2801
8	XoruX LPAR2RRD/STOR2RRD 弱い認証	6.3	6.0	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00272	0.00	CVE-2021-42371
9	Microsoft Windows Privilege Escalation	8.1	7.7	$25k-$100k	$5k-$25k	High	Official Fix	0.00054	0.06	CVE-2023-36802
10	7-zip SquashFS File Parser メモリ破損	6.3	6.1	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00053	0.06	CVE-2023-40481
11	Keycloak クロスサイトスクリプティング	3.5	3.5	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00311	0.04	CVE-2021-20323
12	Directum HTTP Header クロスサイトスクリプティング	3.5	3.5	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00084	0.03	CVE-2021-31794
13	Grafana 未知の脆弱性	4.9	4.8	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00361	0.00	CVE-2022-21703
14	SourceCodester Online Tours & Travels Management System s.php SQLインジェクション	7.1	6.9	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.00126	0.06	CVE-2023-0561
15	SourceCodester Online Tours & Travels Management System Parameter forget_password.php SQLインジェクション	5.5	5.0	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.00282	0.00	CVE-2023-0516
16	SourceCodester Online Tours & Travels Management System approve_user.php SQLインジェクション	6.4	6.3	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.00148	0.07	CVE-2023-0530
17	isoftforce Dreamer CMS クロスサイトスクリプティング	4.1	4.0	$0-$5k	$0-$5k	Proof-of-Concept	Official Fix	0.00078	0.00	CVE-2023-0513
18	sternenseemann sternenblog main.c blog_index 特権昇格	6.6	6.5	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00152	0.21	CVE-2014-125059
19	cronvel terminal-kit サービス拒否	4.8	4.8	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00117	0.07	CVE-2021-4306
20	pig-vector LogisticRegression.java LogisticRegression 特権昇格	3.5	3.5	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00076	0.07	CVE-2022-4641

IOC - Indicator of Compromise (10)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

ID	IPアドレス	Hostname	アクター	Identified	タイプ	信頼度
1	1.125.125.5		Roboto	2019年11月26日	verified	高
2	51.38.200.230	ip230.ip-51-38-200.eu	Roboto	2019年11月26日	verified	高
3	XX.XXX.XXX.XX	xxx-xxxxxxx-xxxxx.xxxxxx.xxxxxxxxx.xxx	Xxxxxx	2019年11月26日	verified	高
4	XX.XXX.XX.XX	xxxx.xxxx.xx	Xxxxxx	2019年11月26日	verified	高
5	XX.XXX.XX.XXX	xxxxxx.xxx.xx.xxx.xx.xxxxxxx.xxxx-xxxxxx.xx	Xxxxxx	2019年11月26日	verified	高
6	XXX.XXX.XX.XX	xxxxxxxxxx.xxx.xxxxxxx.xxx	Xxxxxx	2019年11月26日	verified	高
7	XXX.XX.XXX.XX	xxxxxx.xx.xxx.xx.xxx.xxxxxxx.xxxx-xxxxxx.xx	Xxxxxx	2019年11月26日	verified	高
8	XXX.XX.XX.XXX	xxx.xx.xx.xxx.xxxxxx.xxxxxxx.xxx-xxxx.xx	Xxxxxx	2019年11月26日	verified	高
9	XXX.XXX.XXX.XXX		Xxxxxx	2019年11月26日	verified	高
10	XXX.XXX.XX.X		Xxxxxx	2019年11月26日	verified	高

TTP - Tactics, Techniques, Procedures (11)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

ID	Technique	クラス	脆弱性	アクセスベクター	タイプ	信頼度
1	T1055	CAPEC-10	CWE-74	Improper Neutralization of Data within XPath Expressions	predictive	高
2	T1059.007	CAPEC-209	CWE-79	Cross Site Scripting	predictive	高
3	T1068	CAPEC-122	CWE-264, CWE-269, CWE-284	Execution with Unnecessary Privileges	predictive	高
4	TXXXX.XXX	CAPEC-191	CWE-XXX	Xxxx-xxxxx Xxxxxxxxxxx	predictive	高
5	TXXXX	CAPEC-108	CWE-XX	Xxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx Xxxxxxxxx	predictive	高
6	TXXXX.XXX	CAPEC-492	CWE-XXXX	Xxxxxxxxxxx Xxxxxxx Xxxxxxxxxx Xxxxxxxxxx	predictive	高
7	TXXXX	CAPEC-108	CWE-XX	Xxx Xxxxxxxxx	predictive	高
8	TXXXX.XXX	CAPEC-133	CWE-XXX	Xxxxxxxx	predictive	高
9	TXXXX	CAPEC-116	CWE-XXX	Xxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx Xxxxxxxxxxx	predictive	高
10	TXXXX	CAPEC-20	CWE-XXX	Xxxxxxxxxxxxx Xxxxxx	predictive	高
11	TXXXX.XXX	CAPEC-1	CWE-XXX	Xxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx Xxxxxxxxx	predictive	高

IOA - Indicator of Attack (41)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

ID	クラス	Indicator	タイプ	信頼度
1	File	.htaccess	predictive	中
2	File	/Admin/createClass.php	predictive	高
3	File	/balance/service/list	predictive	高
4	File	/debug/pprof	predictive	中
5	File	/user/s.php	predictive	中
6	File	admin/?page=system_info	predictive	高
7	File	xxxxx/xxxxxxx_xxxx.xxx	predictive	高
8	File	xxxxxxxxxxxxxxxxxxxxx.xxx	predictive	高
9	File	xxx-xxxxxxx.xxx	predictive	高
10	File	xxxxx\xxxxx\xxxxx.xxxx.xxx	predictive	高
11	File	xxx/xxx/xxx_xxxxxxxx.x	predictive	高
12	File	xxxxxxx-xxxxxx/xxxxxxxx/xxxxx/xxxxxxxx/xxxxxxxx_xxxxxxxxx.xxx	predictive	高
13	File	xxxxxx/xxxxxxxxx?xx=xxx_xxx.xxx	predictive	高
14	File	xxx/xxxxx/xxxxxxxx/xxxx/xxxxxxx_xxxxxxxxx.xx	predictive	高
15	File	xxxx.x	predictive	低
16	File	xxxx/xxxx.x	predictive	中
17	File	xxxxxxxxxx/xxx_xxxxxxxxxx.x	predictive	高
18	File	xxxxxxxx.xxxx?xxxx=xxxxx	predictive	高
19	File	xxxxx/xxxxxx/xxxx/xxxxxxx/xxxxxxxxxxxxxxxxxx.xxx	predictive	高
20	File	xxx/xxxx/xxxx/xxx/xxxxxx/xxxxxx/xxx/xxxxxxxxxxxxxxxxxx.xxxx	predictive	高
21	File	xxx/xxxxxxx/xxxxxxxxxxxxx.xxx	predictive	高
22	File	xxx/xxxxx/xxxxxxxx.x	predictive	高
23	File	xxxx/xxxxxx_xxxxxxxx.xxx	predictive	高
24	File	~/xxxxx/xxxxxxx.xxx	predictive	高
25	Argument	xxx	predictive	低
26	Argument	xxxxxxxx/xxxxxx	predictive	高
27	Argument	xxxxx	predictive	低
28	Argument	xxxxxxxx	predictive	中
29	Argument	xxxxx	predictive	低
30	Argument	xxxx	predictive	低
31	Argument	xx	predictive	低
32	Argument	xx	predictive	低
33	Argument	xxxxxxxx	predictive	中
34	Argument	xxxxxxxx	predictive	中
35	Argument	xxxx_xxxx	predictive	中
36	Argument	xxxxxxx xxxxx	predictive	高
37	Argument	xxxxx/xxxxxxx	predictive	高
38	Argument	xxxxxxxx/xxxx	predictive	高
39	Argument	xxxx-xxxxx	predictive	中
40	Argument	xxxx_xxxx	predictive	中
41	Argument	x-xxxxxxxxx-xxx	predictive	高

参考 (2)

The following list contains external sources which discuss the actor and the associated activities:

◂ 前概要次 ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!