Socks Análisis

Ocupaciones

Cronología

Idioma

de16
en3

País

us17

Actores

Ocupaciones

Interesar

Vulnerabilidad

#VulnerabilidadBaseTemp0dayHoyExpConCTICVE
1Devolutions SERVER Password List Entry escalada de privilegios5.55.3$0-$5k$0-$5kNot DefinedOfficial Fix0.05CVE-2021-23921
2D-Link DIR-816 A2 dir_setWanWifi escalada de privilegios6.36.3$5k-$25k$5k-$25kNot DefinedNot Defined0.07CVE-2021-26810
3Django django.views.static.serve Redirect6.25.9$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2017-7234
4Xen Memory escalada de privilegios6.96.2$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.08CVE-2017-7228
5Riverbed RIOS Bootloader escalada de privilegios4.44.4$0-$5k$0-$5kNot DefinedUnavailable0.07CVE-2017-7305
6Riverbed RIOS Single-User Mode cli escalada de privilegios6.76.4$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2017-7307
7OpenDaylight Plugin SDN Topology escalada de privilegios7.07.0$0-$5k$0-$5kNot DefinedNot Defined0.07CVE-2015-1612
8OpenDaylight Plugin SDN Topology escalada de privilegios7.07.0$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2015-1611
9Horde Groupware Webmail Edition Horde_Crypt escalada de privilegios7.57.2$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2017-7413
10Go SSH Library Host Key Key Management Error7.77.1$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2017-3204
11Linux Kernel Filesystem policy.c fscrypt_process_policy escalada de privilegios5.45.1$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2016-10318
12Intel Advanced Threat Defense Malware Detection escalada de privilegios6.46.4$5k-$25k$5k-$25kNot DefinedNot Defined0.00CVE-2015-8986
13McAfee Advanced Threat Defense Malware Detection autenticación débil7.57.2$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2016-3983
14McAfee Vulnerability Manager Enterprise Manager cross site request forgery8.88.4$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2016-2199
15Intel McAfee Vulnerability Manager Enterprise Manager Password cifrado débil7.07.0$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2015-8989
16Intel McAfee Email Gateway File Extension Filter escalada de privilegios6.96.6$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2016-8005
17Intel McAfee Host Intrusion Prevention Services Registry Key escalada de privilegios5.75.4$5k-$25k$0-$5kNot DefinedOfficial Fix0.05CVE-2016-8007
18Intel Advanced Threat Defense ATD Detection escalada de privilegios7.47.4$5k-$25k$5k-$25kNot DefinedNot Defined0.05CVE-2015-8990
19Intel McAfee ePolicy Orchestrator sql injection7.67.3$5k-$25k$5k-$25kNot DefinedOfficial Fix0.06CVE-2016-8027

IOC - Indicator of Compromise (3)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDdirección IPHostnameActorCampañasEscribeConfianza
123.20.239.12ec2-23-20-239-12.compute-1.amazonaws.comSocksverifiedMedio
2XXX.XX.XXX.XXXx-xxxx.x-xxxxxx.xxxXxxxxverifiedAlto
3XXX.XXX.XX.XXXxxxxx.xxx-xxx-xx.xxxxxx.xxxxxxxxxxxx.xxxXxxxxverifiedAlto

TTP - Tactics, Techniques, Procedures (3)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueVulnerabilidadVector de accesoEscribeConfianza
1T1068CWE-264, CWE-284Execution with Unnecessary PrivilegespredictiveAlto
2TXXXXCWE-XXX7xx Xxxxxxxx XxxxxxxxpredictiveAlto
3TXXXXCWE-XXXXxxxxxxxxxxxx XxxxxxpredictiveAlto

IOA - Indicator of Attack (4)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClaseIndicatorEscribeConfianza
1File/goform/dir_setWanWifipredictiveAlto
2File/xxx/xxx/xxx/xxxpredictiveAlto
3Filexx/xxxxxx/xxxxxx.xpredictiveAlto
4ArgumentxxxxxxxxxxxxxxxxxxxxpredictiveAlto

Referencias (3)

The following list contains external sources which discuss the actor and the associated activities:

Want to stay up to date on a daily basis?

Enable the mail alert feature now!