DNSLock Analysisinfo

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (11)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Language

fr10
en2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

US: USA12

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

DNSLock2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

Not Defined10
Wireless LAN Software2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

SAP10
Netgear2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

SAP 3D Visual Enterprise Viewer8
Netgear R61202
Netgear R60802
Netgear R62602
Netgear R62202

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

These are the vulnerabilities that we have identified as researched, approached, or attacked.

#VulnerabilityBaseTemp0dayTodayExpCouKEVEPSSCTICVE
1foreman-debug Log File Password credentials management5.95.9$0-$5k$0-$5kNot definedOfficial fix 0.001680.00CVE-2016-9593
2Netgear R6120/R6080/R6260/R6220/R6020/JNR3210/WNR2020 mini_httpd Service improper authentication5.45.4$5k-$25k$0-$5kNot definedNot defined 0.002990.00CVE-2020-17409
3Foxit PhantomPDF U3D Object information disclosure3.83.8$0-$5k$0-$5kNot definedNot defined 0.037740.02CVE-2020-17411
4Foxit PhantomPDF U3D Object information disclosure6.06.0$0-$5k$0-$5kNot definedNot defined 0.045670.03CVE-2020-17412
5SAP Business Planning and Consolidation cross site scripting4.44.4$0-$5k$0-$5kNot definedNot defined 0.003840.02CVE-2020-6368
6SAP NetWeaver Application Server ABAP information disclosure4.34.3$5k-$25k$0-$5kNot definedNot defined 0.003020.00CVE-2020-6371
7SAP 3D Visual Enterprise Viewer PDF File denial of service6.06.0$5k-$25k$0-$5kNot definedNot defined 0.002260.00CVE-2020-6372
8SAP 3D Visual Enterprise Viewer PDF File denial of service6.06.0$5k-$25k$0-$5kNot definedNot defined 0.002260.02CVE-2020-6373
9SAP 3D Visual Enterprise Viewer JT File denial of service6.06.0$5k-$25k$0-$5kNot definedNot defined 0.002260.00CVE-2020-6374
10SAP 3D Visual Enterprise Viewer CGM File denial of service4.94.9$5k-$25k$0-$5kNot definedNot defined 0.001430.01CVE-2020-6375
11SAP 3D Visual Enterprise Viewer RH File denial of service4.54.5$0-$5k$0-$5kNot definedNot defined 0.001430.00CVE-2020-6376

IOC - Indicator of Compromise (6)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsIdentifiedTypeConfidence
118.220.249.233ec2-18-220-249-233.us-east-2.compute.amazonaws.comDNSLock04/08/2022verifiedVery Low
252.77.199.193ec2-52-77-199-193.ap-southeast-1.compute.amazonaws.comDNSLock04/08/2022verifiedVery Low
3XX.XXX.XXX.XXxxx-xx-xxx-xxx-xx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxx04/08/2022verifiedVery Low
4XX.XXX.XXX.XXXxxx-xx-xxx-xxx-xxx.xxxxxxx-x.xxxxxxxxx.xxxXxxxxxx04/08/2022verifiedVery Low
5XX.XXX.XX.XXXxxxxxx04/08/2022verifiedLow
6XX.XXX.XXX.XXXXxxxxxx04/08/2022verifiedLow

TTP - Tactics, Techniques, Procedures (3)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueClassVulnerabilitiesAccess VectorTypeConfidence
1T1059.007CAPEC-209CWE-79Basic Cross Site ScriptingpredictiveHigh
2TXXXXCWE-XXXXxxxxxxxxxx XxxxxxxxxxpredictiveHigh
3TXXXXCAPEC-XXXCWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx XxxxxxxxxxxpredictiveHigh

References (2)

The following list contains external sources which discuss the actor and the associated activities:

PreviousOverviewNext

This view requires CTI permissions

Just purchase a CTI license today!