Sanyo Analyse

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (9)

Langue

en	6
zh	4

De campagne

us	6
cn	4

Acteurs

RedEcho	1
Sanyo	1

Intérêt

Taper

Not Defined	4
Router Operating System	4
Groupware Software	2

Fournisseur

Cisco	4
G.SKILL	2
Synacor	2
Konica Minolta	2

Produit

Cisco IOS XE	4
G.SKILL Trident Z Lighting Control	2
Synacor Zimbra Collaboration Suite	2
Konica Minolta bizhub	2
Cisco IOS	2

Vulnérabilités

#	Vulnérabilité	Base	Temp	0day	Aujourd'hui	Exp	Con	EPSS	CTI	CVE
1	Cisco IOS XE TFTP Server dénie de service	5.3	5.1	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00563	0.02	CVE-2015-0681
2	Konica Minolta bizhub divulgation de l'information	2.1	2.0	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00102	0.00	CVE-2021-20870
3	Cisco IOS/IOS XE SNMPv1/SNMPv2c/SNMPv3 buffer overflow	8.8	8.1	$25k-$100k	$0-$5k	Proof-of-Concept	Workaround	0.01303	0.09	CVE-2017-6736
4	Zabbix SAML authentification faible	8.2	8.2	$0-$5k	$0-$5k	Not Defined	Not Defined	0.97186	0.02	CVE-2022-23131
5	Synacor Zimbra Collaboration Suite Auth Token preauth Redirect	4.9	4.7	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00100	0.06	CVE-2021-34807
6	Gigabyte App Center GDrv Low-Level Driver elévation de privilèges	7.8	7.8	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00236	0.02	CVE-2018-19320
7	HP Persistent Accelerite Radia Client Automation Agent buffer overflow	7.3	7.0	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.66274	0.00	CVE-2015-7860
8	Castel NextGen DVR elévation de privilèges	7.5	7.5	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00531	0.00	CVE-2020-11679
9	G.SKILL Trident Z Lighting Control ene.sys elévation de privilèges	7.8	7.8	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00044	0.02	CVE-2020-12446

IOC - Indicator of Compromise (1)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

ID	adresse IP	Hostname	Acteur	Campagnes	Identified	Taper	Confiance
1	101.78.177.244		Sanyo		14/10/2022	verified	Élevé

TTP - Tactics, Techniques, Procedures (3)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

ID	Technique	Vulnérabilités	Vecteur d'accès	Taper	Confiance
1	T1068	CWE-269, CWE-284	Execution with Unnecessary Privileges	predictive	Élevé
2	TXXXX.XXX	CWE-XXX	Xxxx Xxxxxxxx	predictive	Élevé
3	TXXXX	CWE-XXX	Xxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx Xxxxxxxxxxx	predictive	Élevé

IOA - Indicator of Attack (5)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

ID	Classe	Indicator	Taper	Confiance
1	File	/preauth	predictive	Moyen
2	File	Adminstrator/Users/Edit/	predictive	Élevé
3	Library	xxx.xxx	predictive	Faible
4	Argument	xxxxxxxxxxx	predictive	Moyen
5	Argument	xxxxxx	predictive	Faible

Références (2)

The following list contains external sources which discuss the actor and the associated activities:

◂ PrécédentAperçuSuivant ▸

Might our Artificial Intelligence support you?

Check our Alexa App!