Tortilla 解析
IOB - Indicator of Behavior (3)
アクティビティ
関心
脆弱性
キャンペーン (1)
These are the campaigns that can be associated with the actor:
- Microsoft Exchange
IOC - Indicator of Compromise (3)
These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.
ID | IPアドレス | Hostname | アクター | キャンペーン | Identified | タイプ | 信頼度 |
---|---|---|---|---|---|---|---|
1 | 54.221.65.242 | ec2-54-221-65-242.compute-1.amazonaws.com | Tortilla | Microsoft Exchange | 2021年11月04日 | verified | 中 |
2 | XXX.XXX.XX.XXX | xxxx.xx | Xxxxxxxx | Xxxxxxxxx Xxxxxxxx | 2021年11月04日 | verified | 高 |
3 | XXX.XXX.XX.XXX | Xxxxxxxx | Xxxxxxxxx Xxxxxxxx | 2021年11月04日 | verified | 高 |
TTP - Tactics, Techniques, Procedures (1)
Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.
ID | Technique | クラス | 脆弱性 | アクセスベクター | タイプ | 信頼度 |
---|---|---|---|---|---|---|
1 | T1068 | CAPEC-122 | CWE-269 | Execution with Unnecessary Privileges | predictive | 高 |
参考 (2)
The following list contains external sources which discuss the actor and the associated activities: