Chalubo Analisi

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (6)

Sequenza temporale

Linguaggio

de2
ru2
zh2

Nazione

de2
ru2

Attori

Chalubo1

Attività

Interesse

Sequenza temporale

Genere

Smartphone Operating System2
Unified Communication Software2

Fornitore

Not Defined2
Cisco2

Prodotto

Mobile Device Monitoring Service2
Cisco Unified Communications Manager2

Vulnerabilità

#VulnerabilitàBaseTemp0dayOggiSfrConEPSSCTICVE
1Cisco Unified Communications Manager TLS Certificate crittografia debole5.34.6$5k-$25k$0-$5kUnprovenOfficial Fix0.001100.00CVE-2014-7991
2Mobile Device Monitoring Service API escalazione di privilegi5.55.5$0-$5k$0-$5kNot DefinedNot Defined0.001510.04CVE-2022-0732
3Valmet DNA Service Port 1517 escalazione di privilegi9.39.3$0-$5k$0-$5kNot DefinedNot Defined0.001560.00CVE-2021-26726
4Apache Sling Sling.evalString cross site scripting5.25.1$5k-$25k$0-$5kNot DefinedOfficial Fix0.002380.00CVE-2017-9802

IOC - Indicator of Compromise (2)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDindirizzo IPHostnameAttoreCampagneIdentifiedGenereFiducia
1103.27.185.139Chalubo24/01/2022verifiedAlto
2XXX.XX.XXX.XXXxxxxxx24/01/2022verifiedAlto

TTP - Tactics, Techniques, Procedures (4)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueVulnerabilitàAccesso al vettoreGenereFiducia
1T1059.007CWE-79Cross Site ScriptingpredictiveAlto
2TXXXXCWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveAlto
3TXXXXCWE-XXXxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx XxxxxxxxxpredictiveAlto
4TXXXXCWE-XXXXxxxxxxxxxxxx XxxxxxpredictiveAlto

IOA - Indicator of Attack (1)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClasseIndicatorGenereFiducia
1ArgumentSANpredictiveBasso

Referenze (2)

The following list contains external sources which discuss the actor and the associated activities:

PrecedenteVisione D'insiemeIl prossimo

Do you know our Splunk app?

Download it now for free!