Socks Analyse

Aktivitäten

Zeitverlauf

Sprache

de16
en3

Land

us17

Akteure

Aktivitäten

Interesse

Schwachstellen

#SchwachstelleBaseTemp0dayHeuteAusMasCTICVE
1Devolutions SERVER Password List Entry erweiterte Rechte5.55.3$0-$5k$0-$5kNot DefinedOfficial Fix0.05CVE-2021-23921
2D-Link DIR-816 A2 dir_setWanWifi erweiterte Rechte6.36.3$5k-$25k$5k-$25kNot DefinedNot Defined0.02CVE-2021-26810
3Django django.views.static.serve Redirect6.25.9$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2017-7234
4Xen Memory erweiterte Rechte6.96.2$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.08CVE-2017-7228
5Riverbed RIOS Bootloader erweiterte Rechte4.44.4$0-$5k$0-$5kNot DefinedUnavailable0.07CVE-2017-7305
6Riverbed RIOS Single-User Mode cli erweiterte Rechte6.76.4$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2017-7307
7OpenDaylight Plugin SDN Topology erweiterte Rechte7.07.0$0-$5k$0-$5kNot DefinedNot Defined0.07CVE-2015-1612
8OpenDaylight Plugin SDN Topology erweiterte Rechte7.07.0$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2015-1611
9Horde Groupware Webmail Edition Horde_Crypt erweiterte Rechte7.57.2$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2017-7413
10Go SSH Library Host Key Key Management Error7.77.1$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2017-3204
11Linux Kernel Filesystem policy.c fscrypt_process_policy erweiterte Rechte5.45.1$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2016-10318
12Intel Advanced Threat Defense Malware Detection erweiterte Rechte6.46.4$5k-$25k$5k-$25kNot DefinedNot Defined0.03CVE-2015-8986
13McAfee Advanced Threat Defense Malware Detection schwache Authentisierung7.57.2$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2016-3983
14McAfee Vulnerability Manager Enterprise Manager Cross Site Request Forgery8.88.4$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2016-2199
15Intel McAfee Vulnerability Manager Enterprise Manager Password schwache Verschlüsselung7.07.0$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2015-8989
16Intel McAfee Email Gateway File Extension Filter erweiterte Rechte6.96.6$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2016-8005
17Intel McAfee Host Intrusion Prevention Services Registry Key erweiterte Rechte5.75.4$5k-$25k$0-$5kNot DefinedOfficial Fix0.05CVE-2016-8007
18Intel Advanced Threat Defense ATD Detection erweiterte Rechte7.47.4$5k-$25k$5k-$25kNot DefinedNot Defined0.05CVE-2015-8990
19Intel McAfee ePolicy Orchestrator SQL Injection7.67.3$5k-$25k$5k-$25kNot DefinedOfficial Fix0.06CVE-2016-8027

IOC - Indicator of Compromise (3)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP-AdresseHostnameAkteurKampagnenTypAkzeptanz
123.20.239.12ec2-23-20-239-12.compute-1.amazonaws.comSocksverifiziertMedium
2XXX.XX.XXX.XXXx-xxxx.x-xxxxxx.xxxXxxxxverifiziertHigh
3XXX.XXX.XX.XXXxxxxx.xxx-xxx-xx.xxxxxx.xxxxxxxxxxxx.xxxXxxxxverifiziertHigh

TTP - Tactics, Techniques, Procedures (3)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueSchwachstellenZugriffsartTypAkzeptanz
1T1068CWE-264, CWE-284Execution with Unnecessary PrivilegesprädiktivHigh
2TXXXXCWE-XXX7xx Xxxxxxxx XxxxxxxxprädiktivHigh
3TXXXXCWE-XXXXxxxxxxxxxxxx XxxxxxprädiktivHigh

IOA - Indicator of Attack (4)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDKlasseIndicatorTypAkzeptanz
1File/goform/dir_setWanWifiprädiktivHigh
2File/xxx/xxx/xxx/xxxprädiktivHigh
3Filexx/xxxxxx/xxxxxx.xprädiktivHigh
4ArgumentxxxxxxxxxxxxxxxxxxxxprädiktivHigh

Referenzen (3)

The following list contains external sources which discuss the actor and the associated activities:

Want to stay up to date on a daily basis?

Enable the mail alert feature now!