Brunhilda Analysis

IOB - Indicator of Behavior (14)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en12
de2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Microsoft Windows4
IBM Kenexa LCMS Premier on Cloud2
Thomas R. Pasawicz HyperBook Guestbook2
NASM Netwide Assembler2
windows-selenium-chromedriver2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemCTIEPSSCVE
1Drupal Phar Stream Wrapper input validation8.58.2$0-$5k$0-$5kNot DefinedOfficial Fix0.040.46456CVE-2019-6339
2Thomas R. Pasawicz HyperBook Guestbook Password Database gbconfiguration.dat Hash information disclosure5.35.2$5k-$25kCalculatingHighWorkaround0.040.04187CVE-2007-1192
3Microsoft Windows PowerShell code injection6.35.7$25k-$100k$0-$5kProof-of-ConceptUnavailable0.120.00000
4HP HP-UX FTP Server privileges management7.57.2$5k-$25k$0-$5kNot DefinedOfficial Fix0.040.00000
5Microsoft Windows VHD Driver File access control6.15.8$25k-$100kCalculatingProof-of-ConceptOfficial Fix0.000.01961CVE-2016-7224
6Microsoft Edge access control3.13.0$25k-$100k$5k-$25kNot DefinedOfficial Fix0.000.23344CVE-2016-3274
7NASM Netwide Assembler preproc.c tokenize memory corruption6.36.0$0-$5kCalculatingNot DefinedOfficial Fix0.000.00950CVE-2018-8881
8windows-selenium-chromedriver Download cryptographic issues6.86.8$0-$5k$0-$5kNot DefinedNot Defined0.040.01156CVE-2016-10687
9QEMU NVM Express Controller Emulator out-of-bounds6.56.3$5k-$25kCalculatingNot DefinedOfficial Fix0.030.00950CVE-2018-16847
10HP Color LaserJet Pro M280-M281 Multifunction Printer Embedded Web Server Reflected cross site scripting5.25.2$5k-$25k$5k-$25kNot DefinedNot Defined0.010.00885CVE-2019-6323
11Microsoft Windows Physical Installation access control6.46.1$25k-$100k$0-$5kNot DefinedOfficial Fix0.000.05853CVE-2018-8592
12IBM Kenexa LCMS Premier on Cloud 7pk security4.34.3$5k-$25k$5k-$25kNot DefinedNot Defined0.000.00885CVE-2016-5949
13Microsoft Internet Explorer information disclosure4.84.7$25k-$100k$0-$5kNot DefinedOfficial Fix0.040.23753CVE-2016-3267
14Microsoft Windows rpc access control6.66.5$25k-$100k$0-$5kProof-of-ConceptOfficial Fix0.020.32973CVE-2017-8461

IOC - Indicator of Compromise (13)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

TTP - Tactics, Techniques, Procedures (6)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueVulnerabilitiesAccess VectorTypeConfidence
1T1059CWE-94Cross Site ScriptingpredictiveHigh
2T1059.007CWE-79Cross Site ScriptingpredictiveHigh
3TXXXXCWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
4TXXXXCWE-XXX7xx Xxxxxxxx XxxxxxxxpredictiveHigh
5TXXXXCWE-XXXXxxxxxxxxxxxxpredictiveHigh
6TXXXXCWE-XXXX2xx Xxxxxxxxxxxxxxxx: Xxxx Xxxxxxxxxxxx Xxxxxxx XxxxxxxxxxpredictiveHigh

IOA - Indicator of Attack (2)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1Fileasm/preproc.cpredictiveHigh
2Filexxxx/xxxxxxxxxxxxxxx.xxxpredictiveHigh

References (2)

The following list contains external sources which discuss the actor and the associated activities:

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!