Bonaire, Sint Eustatius and Saba Unknown Análisis

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (9)

Cronología

Idioma

en10

País

nl8
us2

Actores

Unknown1

Ocupaciones

Interesar

Cronología

Escribe

Not Defined6
Document Processing Software2
Web Server2

Proveedor

Harmonic2
Not Defined2
Artifex2
Microsoft2
Intel2

Producto

Harmonic NSG 90002
Marketo MA2
Artifex Ghostscript2
Microsoft IIS2
Intel Chipset Device Software2

Vulnerabilidad

#VulnerabilidadBaseTemp0dayHoyExpConEPSSCTICVE
1Intel Chipset Device Software Installer escalada de privilegios6.56.4$0-$5k$0-$5kNot DefinedOfficial Fix0.000440.04CVE-2019-0128
2Microsoft Windows Multimedia Library winmm.dll desbordamiento de búfer10.09.5$100k y más$0-$5kHighOfficial Fix0.973230.00CVE-2012-0003
3Harmonic NSG 9000 autenticación débil8.58.3$0-$5k$0-$5kNot DefinedWorkaround0.002220.02CVE-2018-14943
4Fortinet FortiOS CLI Console Private Key escalada de privilegios5.45.3$0-$5k$0-$5kNot DefinedWorkaround0.000440.00CVE-2019-5593
5Marketo MA cross site scripting3.53.4$0-$5k$0-$5kNot DefinedOfficial Fix0.001160.00CVE-2014-8379
6Microsoft IIS cross site scripting5.24.7$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.005480.06CVE-2017-0055
7Artifex Ghostscript PostScript File escalada de privilegios6.56.4$0-$5k$0-$5kNot DefinedOfficial Fix0.004200.03CVE-2018-15910
8Apache Cocoon view-source directory traversal5.35.0$5k-$25k$0-$5kProof-of-ConceptNot Defined0.002390.00CVE-2003-1172
9CMS Made Simple Form Builder admin_store_form divulgación de información8.58.2$0-$5k$0-$5kNot DefinedOfficial Fix0.009420.00CVE-2017-6070

IOC - Indicator of Compromise (29)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDdirección IPHostnameActorCampañasIdentifiedEscribeConfianza
145.12.70.30shttp-ashen.get-eye.comBonaire and Sint Eustatius and Saba Unknown2022-11-09verifiedAlto
245.12.71.30Bonaire and Sint Eustatius and Saba Unknown2022-11-09verifiedAlto
346.36.203.160Bonaire and Sint Eustatius and Saba Unknown2022-11-09verifiedAlto
446.36.203.168Bonaire and Sint Eustatius and Saba Unknown2022-11-09verifiedAlto
546.36.203.170Bonaire and Sint Eustatius and Saba Unknown2022-11-09verifiedAlto
663.245.41.0Bonaire and Sint Eustatius and Saba Unknown2023-04-21verifiedAlto
7XX.XXX.XX.XXxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx2023-04-21verifiedAlto
8XX.XX.XXX.XXxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx2023-04-21verifiedAlto
9XX.XX.XXX.XXxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx2023-04-21verifiedAlto
10XXX.XXX.XXX.XXxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx2022-11-09verifiedAlto
11XXX.X.XX.XXxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx2022-11-09verifiedAlto
12XXX.X.XX.Xxxx-xxxxxxxx.xxxx.xxxxx.xxxXxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx2022-11-09verifiedAlto
13XXX.XXX.XX.Xxxx-xxxxxxxxx.xxxx.xxxxx.xxxXxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx2022-11-09verifiedAlto
14XXX.XXX.XXX.Xxxx-xxxxxxxxx.xxxx.xxxxx.xxxXxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx2023-04-21verifiedAlto
15XXX.XXX.XXX.Xxxx-xxxxxxxxx.xxxx.xxxxx.xxxXxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx2023-04-21verifiedAlto
16XXX.XXX.XXX.Xxxx-xxxxxxxxx.xxxx.xxxxx.xxxXxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx2023-04-21verifiedAlto
17XXX.X.XX.XXxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx2022-11-09verifiedAlto
18XXX.XX.XXX.XXxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx2022-11-09verifiedAlto
19XXX.XXX.XXX.Xxxxx-xxxxxxxx.xxxx.xxxxxxx.xxxXxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx2022-11-09verifiedAlto
20XXX.XXX.XX.XXxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx2022-11-09verifiedAlto
21XXX.XXX.XX.XXXXxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx2023-04-21verifiedAlto
22XXX.XXX.XX.XXXxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx2023-04-21verifiedAlto
23XXX.XXX.XXX.XXXxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx2023-04-21verifiedAlto
24XXX.XX.XX.XXXxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx2022-11-09verifiedAlto
25XXX.XX.XXX.XXXxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx2022-11-09verifiedAlto
26XXX.X.XXX.XXxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx2022-11-09verifiedAlto
27XXX.XX.XXX.XXxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx2022-11-09verifiedAlto
28XXX.XXX.XX.XXxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx2022-11-09verifiedAlto
29XXX.XXX.XX.XXxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx2023-04-21verifiedAlto

TTP - Tactics, Techniques, Procedures (6)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueClaseVulnerabilidadVector de accesoEscribeConfianza
1T1006CAPEC-126CWE-22Path TraversalpredictiveAlto
2T1059.007CAPEC-209CWE-79Cross Site ScriptingpredictiveAlto
3TXXXXCAPEC-CWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveAlto
4TXXXX.XXXCAPEC-191CWE-XXXXxxx-xxxxx XxxxxxxxxxxpredictiveAlto
5TXXXXCAPEC-1CWE-XXXXxxxxxxxxx XxxxxxpredictiveAlto
6TXXXXCAPEC-116CWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx XxxxxxxxxxxpredictiveAlto

IOA - Indicator of Attack (9)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClaseIndicatorEscribeConfianza
1File/uncpath/predictiveMedio
2Fileadmin_store_formpredictiveAlto
3Filexxxx-xxxxxxpredictiveMedio
4Libraryxxxxx.xxxpredictiveMedio
5Argumentxxxxxxxxxxx_xxxxx_xxxx_xxxxxxxxpredictiveAlto
6ArgumentxxxxxxxxpredictiveMedio
7ArgumentxxxxxxxxxxxxxxxxxxxpredictiveAlto
8Input Value..predictiveBajo
9Input Valuexxxxxxxx/xxxxxxxx/xxxxxxxxxpredictiveAlto

Referencias (3)

The following list contains external sources which discuss the actor and the associated activities:

AnteriorVisión De ConjuntoPróximo

Do you want to use VulDB in your project?

Use the official API to access entries easily!