Northern Mariana Islands Unknown Analysisinfo

IOB - Indicator of Behavior (20)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en20

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

BigTree CMS2
Microsoft Windows2
D-Link DSL-2641R2
Cisco Packaged Contact Center Enterprise2
Cisco Unified Communications Manager2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemEPSSCTICVE
1PhotoPost PhotoPost vBGallery File Upload upload.php input validation6.36.0$0-$5k$0-$5kProof-of-ConceptUnavailable0.005460.00CVE-2008-7088
2Host FTP Server Anonymous improper authentication5.35.2$0-$5k$0-$5kHighWorkaround0.198740.04CVE-1999-0497
3Mozilla Firefox Autofill information disclosure4.34.1$5k-$25k$0-$5kNot DefinedOfficial Fix0.001840.04CVE-2021-29973
4Dropbear SSH input validation8.58.2$0-$5k$0-$5kNot DefinedOfficial Fix0.029110.03CVE-2016-7406
5Cisco Packaged Contact Center Enterprise deserialization9.99.8$5k-$25k$5k-$25kNot DefinedOfficial Fix0.001620.03CVE-2024-20253
6fredsmith utils Filename screenshot_sync predictable state3.53.5$0-$5k$0-$5kNot DefinedOfficial Fix0.000610.29CVE-2021-4277
7Xerox AltaLink C8070 Scan to Mailbox denial of service6.86.5$0-$5k$0-$5kNot DefinedOfficial Fix0.001030.00CVE-2021-28670
8D-Link DSL-2641R cross site scripting4.34.1$5k-$25k$0-$5kNot DefinedOfficial Fix0.001680.00CVE-2013-6786
9apk Package APKINDEX.tar.gz memory corruption7.07.0$0-$5k$0-$5kNot DefinedNot Defined0.024130.00CVE-2017-9669
10Microsoft Windows Multimedia Library winmm.dll memory corruption9.18.8$100k and more$0-$5kHighOfficial Fix0.972950.04CVE-2012-0003
11FTP Server Port Bounce privileges management7.37.1$0-$5k$0-$5kHighWorkaround0.016530.03CVE-1999-0017
12Microsoft Windows FTP Service denial of service5.35.2$25k-$100k$0-$5kNot DefinedWorkaround0.000000.00
13Linux Kernel USB Device atusb.c use after free4.44.3$0-$5k$0-$5kNot DefinedOfficial Fix0.000990.00CVE-2019-19525
14OctoPrint Service Port 8081 information disclosure8.58.4$0-$5k$0-$5kNot DefinedWorkaround0.005000.00CVE-2018-16710
15Dan Bernstein Qmail RCPT denial of service4.03.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.000800.07CVE-1999-0144
16Verizon Fios Actiontec Mi424wr-gen31 Router Administration index.cgi cross-site request forgery6.36.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.009280.03CVE-2013-0126
17BigTree CMS sql injection7.37.3$0-$5k$0-$5kHighOfficial Fix0.003430.00CVE-2013-4879
18EMC VPLEX GeoSynchrony access control7.17.0$5k-$25k$0-$5kNot DefinedOfficial Fix0.000870.00CVE-2015-6850

IOC - Indicator of Compromise (50)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsIdentifiedTypeConfidence
18.3.112.0Northern Mariana Islands Unknown01/06/2023verifiedMedium
28.3.120.0Northern Mariana Islands Unknown01/06/2023verifiedMedium
38.3.123.48Northern Mariana Islands Unknown01/06/2023verifiedHigh
48.3.123.164Northern Mariana Islands Unknown01/06/2023verifiedHigh
58.3.123.224Northern Mariana Islands Unknown01/06/2023verifiedHigh
68.3.125.0Northern Mariana Islands Unknown01/06/2023verifiedMedium
78.3.126.0Northern Mariana Islands Unknown01/06/2023verifiedMedium
88.3.127.0Northern Mariana Islands Unknown03/07/2023verifiedMedium
943.247.60.0Northern Mariana Islands Unknown01/06/2023verifiedMedium
1045.12.70.150upper-a8993.alltieinc.comNorthern Mariana Islands Unknown01/06/2023verifiedHigh
11XX.XX.XX.XXXXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx01/06/2023verifiedHigh
12XX.XXX.XXX.XXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx01/06/2023verifiedMedium
13XX.XX.XXX.XXXXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx01/06/2023verifiedHigh
14XX.XX.XXX.XXXXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx01/06/2023verifiedHigh
15XX.XX.XX.XXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx01/06/2023verifiedMedium
16XX.XXX.XXX.XXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx01/06/2023verifiedMedium
17XX.XX.XXX.XXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx01/06/2023verifiedMedium
18XXX.XX.XXX.Xxxx-xx-xxx-x.xxxxxxx.xxxx.xxxXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx01/06/2023verifiedLow
19XXX.XX.XXX.Xxxx-xx-xxx-x.xxxxxxx.xxxx.xxxXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx01/06/2023verifiedLow
20XXX.X.XX.XXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx01/06/2023verifiedMedium
21XXX.X.XXX.XXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx05/24/2023verifiedMedium
22XXX.XX.XXX.XXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx01/06/2023verifiedMedium
23XXX.XX.XXX.XXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx05/24/2023verifiedMedium
24XXX.XX.XXX.XXXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx05/24/2023verifiedHigh
25XXX.XX.XXX.XXXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx05/24/2023verifiedHigh
26XXX.XX.XXX.XXXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx05/24/2023verifiedHigh
27XXX.XX.XXX.XXXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx05/24/2023verifiedHigh
28XXX.XX.XXX.XXXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx05/24/2023verifiedHigh
29XXX.XX.XXX.XXXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx05/24/2023verifiedHigh
30XXX.XX.XXX.XXXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx05/24/2023verifiedHigh
31XXX.XX.XXX.XXXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx05/24/2023verifiedHigh
32XXX.XX.XXX.XXXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx05/24/2023verifiedHigh
33XXX.XX.XXX.XXXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx05/24/2023verifiedHigh
34XXX.XX.XXX.XXXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx05/24/2023verifiedHigh
35XXX.XX.XXX.XXXXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx05/24/2023verifiedHigh
36XXX.XX.XXX.XXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx05/24/2023verifiedMedium
37XXX.XXX.XX.XXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx01/06/2023verifiedMedium
38XXX.XX.XX.XXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx05/24/2023verifiedMedium
39XXX.XXX.XXX.XXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx01/06/2023verifiedMedium
40XXX.XX.XX.XXXXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx01/06/2023verifiedHigh
41XXX.XX.XXX.XXXXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx01/06/2023verifiedHigh
42XXX.XX.XX.XXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx01/06/2023verifiedMedium
43XXX.XXX.XXX.XXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx01/06/2023verifiedMedium
44XXX.XXX.XXX.XXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx01/06/2023verifiedMedium
45XXX.XXX.XXX.XXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx01/06/2023verifiedMedium
46XXX.XXX.X.Xxxx.xxx.x.x.xxxx.xxxXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx01/06/2023verifiedMedium
47XXX.XXX.XX.XXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx01/06/2023verifiedMedium
48XXX.XXX.XX.XXXXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx05/24/2023verifiedHigh
49XXX.XXX.XX.XXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx05/24/2023verifiedMedium
50XXX.XX.XX.XXxxxxxxx Xxxxxxx Xxxxxxx Xxxxxxx01/06/2023verifiedMedium

TTP - Tactics, Techniques, Procedures (5)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueClassVulnerabilitiesAccess VectorTypeConfidence
1T1059.007CAPEC-209CWE-79Basic Cross Site ScriptingpredictiveHigh
2TXXXXCAPEC-XXXCWE-XXX, CWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
3TXXXXCAPEC-XXXCWE-XXXxx XxxxxxxxxpredictiveHigh
4TXXXXCAPEC-XXXCWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx XxxxxxxxxxxpredictiveHigh
5TXXXX.XXXCWE-XXXXxx Xxxxxxxxxx XxxxxpredictiveHigh

IOA - Indicator of Attack (9)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1FileAPKINDEX.tar.gzpredictiveHigh
2Filedrivers/net/ieee802154/atusb.cpredictiveHigh
3Filexxxxx.xxxpredictiveMedium
4Filexxxxxxxxxx_xxxxpredictiveHigh
5Filexxxxxx.xxxpredictiveMedium
6Libraryxxxxx.xxxpredictiveMedium
7Argumentxxxxxxxx/xxxxpredictiveHigh
8Network Portxxx/xx (xxx)predictiveMedium
9Network Portxxx/xxxxpredictiveMedium

References (4)

The following list contains external sources which discuss the actor and the associated activities:

This view requires CTI permissions

Just purchase a CTI license today!