Urelas 解析

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (129)

言語

en	42
pl	32
it	26
de	16
sv	8

国・地域

jp	98
it	4
es	4
pl	4
fr	2

アクター

Urelas	1

関心

タイプ

Content Management System	16
Joomla Component	8
Database Administration Software	2
Programming Language Software	2
Photo Gallery Software	2

ベンダー

Joomla	14
Not Defined	12
Huge-IT	6

製品

Joomla CMS	14
phpMyAdmin	2
Huge-IT Catalog Extension	2
Smart Related Articles Extension	2
Rwcards Component	2

脆弱性

#	脆弱性	Base	Temp	0day	本日	悪	修復	EPSS	CTI	CVE
1	Joomla CMS com_frontpage SQLインジェクション	6.3	6.1	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.00000	0.00
2	Joomla CMS com_news SQLインジェクション	6.3	6.1	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.00000	0.00
3	ms Package Regex サービス拒否	6.4	6.3	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00154	0.00	CVE-2015-8315
4	aWeb Cart Watching System for Virtuemart SQLインジェクション	8.5	7.7	$0-$5k	$0-$5k	Proof-of-Concept	Official Fix	0.00208	0.00	CVE-2016-10114
5	Joomla CMS com_carocci SQLインジェクション	6.3	6.1	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.00000	0.03
6	Joomla CMS com_webgrouper SQLインジェクション	6.3	6.1	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.00000	0.00
7	Huge-IT Catalog Extension クロスサイトスクリプティング	7.2	7.2	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00287	0.00	CVE-2016-1000119
8	Huge-IT Catalog ajax_url.php SQLインジェクション	9.8	8.9	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.00159	0.00	CVE-2016-1000125
9	Ruby Onigmo regparse.c parse_char_class 特権昇格	6.4	6.4	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00389	0.02	CVE-2017-6181
10	Joomla CMS com_kide SQLインジェクション	6.3	6.1	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.00000	0.00
11	Huge-IT Video Gallery ajax_url.php SQLインジェクション	7.3	7.1	$0-$5k	$0-$5k	High	Not Defined	0.00485	0.00	CVE-2016-1000123
12	Smart Related Articles Extension dialog.php SQLインジェクション	8.5	8.5	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00205	0.00	CVE-2017-7628
13	Joomla CMS com_kunena SQLインジェクション	6.3	6.1	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.00000	0.00
14	Joomla CMS com_filecabinet SQLインジェクション	6.3	6.1	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.00000	0.00
15	Joomla CMS com_blog_calendar index.php SQLインジェクション	6.3	6.1	$5k-$25k	$0-$5k	Not Defined	Not Defined	0.00000	0.03
16	Rwcards Component index.php SQLインジェクション	7.3	6.9	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.13753	0.00	CVE-2007-1703
17	DTH DT Register Extension index.php SQLインジェクション	6.3	6.0	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00000	0.00
18	Joomla CMS com_fidecalendar SQLインジェクション	6.3	6.1	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.00000	0.00
19	Joomla CMS com_sngevents SQLインジェクション	6.3	6.1	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.00000	0.00
20	Joomla CMS com_virtuemart SQLインジェクション	6.3	6.1	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.00000	0.00

IOC - Indicator of Compromise (4)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

ID	IPアドレス	Hostname	アクター	Identified	タイプ	信頼度
1	1.234.83.146	campustown.co.kr	Urelas	2022年04月08日	verified	高
2	XXX.XXX.XXX.XXX	xxx-xxx-xxxxx.xx.xxxxxx.xx.xx	Xxxxxx	2022年04月08日	verified	高
3	XXX.XX.XX.XXX		Xxxxxx	2022年04月08日	verified	高
4	XXX.XX.XX.XXX		Xxxxxx	2022年04月08日	verified	高

TTP - Tactics, Techniques, Procedures (2)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

ID	Technique	クラス	脆弱性	アクセスベクター	タイプ	信頼度
1	T1059.007	CAPEC-209	CWE-79	Cross Site Scripting	predictive	高
2	TXXXX	CAPEC-108	CWE-XX	Xxx Xxxxxxxxx	predictive	高

IOA - Indicator of Attack (21)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

ID	クラス	Indicator	タイプ	信頼度
1	File	/index.php	predictive	中
2	File	ajax_url.php	predictive	中
3	File	dialog.php	predictive	中
4	File	index.php	predictive	中
5	File	xxxxxxxxxx.xxx.xxx	predictive	高
6	File	xxxxxxxx.x	predictive	中
7	Library	xxxxxxxx_xxxxxxxxx.xxx.xxx	predictive	高
8	Argument	xxx	predictive	低
9	Argument	xxxxxxxxxxxxxx/xxxxxxxxxxx	predictive	高
10	Argument	xxxxxxxx_xx	predictive	中
11	Argument	xxx[x]	predictive	低
12	Argument	xxx[xxxxxx][xxxxxxxxx]	predictive	高
13	Argument	xxx	predictive	低
14	Argument	xxx	predictive	低
15	Argument	xx	predictive	低
16	Argument	xxxx	predictive	低
17	Argument	xxxxxx	predictive	低
18	Argument	xxxxx	predictive	低
19	Argument	xxxxxx_xxxx	predictive	中
20	Argument	xxxx	predictive	低
21	Input Value	x) xx x-- -	predictive	中

参考 (2)

The following list contains external sources which discuss the actor and the associated activities:

◂ 前概要次 ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!