Dotdo Analisi

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (4)

Linguaggio

en	4

Nazione

us	4

Attori

Dotdo	2

Interesse

Genere

Library Management System Software	2
Not Defined	2

Fornitore

Not Defined	2
Proofpoint	2

Prodotto

PMB Services	2
Proofpoint Enterprise Protection	2

Vulnerabilità

#	Vulnerabilità	Base	Temp	0day	Oggi	Sfr	Con	EPSS	CTI	CVE
1	Proofpoint Enterprise Protection escalazione di privilegi	7.2	7.2	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00043	0.00	CVE-2022-46334
2	PMB Services iimport_expl.php escalazione di privilegi	7.3	6.9	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.29704	0.00	CVE-2007-1415
3	Adobe Acrobat Reader buffer overflow	7.3	7.0	$25k-$100k	$0-$5k	Not Defined	Official Fix	0.05079	0.03	CVE-2010-2203
4	Moodle cross site scripting	4.3	3.9	$5k-$25k	$0-$5k	Proof-of-Concept	Official Fix	0.00369	0.00	CVE-2010-2228

IOC - Indicator of Compromise (3)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

ID	indirizzo IP	Hostname	Attore	Identified	Genere	Fiducia
1	34.202.10.177	ec2-34-202-10-177.compute-1.amazonaws.com	Dotdo	08/04/2022	verified	Media
2	XX.XXX.XXX.XX	xxx-xx-xxx-xxx-xx.xxxxxxx-x.xxxxxxxxx.xxx	Xxxxx	08/04/2022	verified	Media
3	XXX.XX.XXX.XXX		Xxxxx	08/04/2022	verified	Alto

TTP - Tactics, Techniques, Procedures (3)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

ID	Technique	Classe	Vulnerabilità	Accesso al vettore	Genere	Fiducia
1	T1059	CAPEC-242	CWE-94	Argument Injection	predictive	Alto
2	TXXXX.XXX	CAPEC-209	CWE-XX	Xxxxx Xxxx Xxxxxxxxx	predictive	Alto
3	TXXXX	CAPEC-122	CWE-XXX	Xxxxxxxxx Xxxx Xxxxxxxxxxx Xxxxxxxxxx	predictive	Alto

IOA - Indicator of Attack (2)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

ID	Classe	Indicator	Genere	Fiducia
1	File	admin/import/iimport_expl.php	predictive	Alto
2	Argument	xxxxxxx_xxxx	predictive	Media

Referenze (2)

The following list contains external sources which discuss the actor and the associated activities:

◂ PrecedenteVisione D'insiemeIl prossimo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!