Settore Homeoffice

Timeframe: -28 days

Default Categories (32): Android App Software, Anti-Malware Software, Calendar Software, Digital Media Player, Document Processing Software, Document Reader Software, File Compression Software, File Transfer Software, Firewall Software, Game Console, Groupware Software, Hardware Driver Software, Image Processing Software, iOS App Software, Mail Client Software, Messaging Software, Multimedia Player Software, Network Attached Storage Software, Network Encryption Software, Office Suite Software, Operating System, Presentation Software, Printing Software, Remote Access Software, Router Operating System, Smartphone Operating System, Smartwatch Operating System, Spreadsheet Software, Tablet Operating System, Web Browser, Wireless LAN Software, Word Processing Software

Sequenza temporale

Fornitore

Google164
Apple120
Microsoft92
Not Defined36
Linux28

Prodotto

Google Android134
Microsoft Windows64
Apple macOS58
Apple iOS32
Apple iPadOS32

Contromisure

Official Fix486
Temporary Fix0
Workaround0
Unavailable4
Not Defined96

Sfruttabilità

High0
Functional4
Proof-of-Concept34
Unproven70
Not Defined478

Accesso al vettore

Not Defined0
Physical6
Local282
Adjacent80
Network218

Autenticazione

Not Defined0
High92
Low328
None166

Interazione dell'utente

Not Defined0
Required116
None470

C3BM Index

CVSSv3 Base

≤10
≤20
≤338
≤490
≤5102
≤6156
≤7100
≤858
≤932
≤1010

CVSSv3 Temp

≤10
≤20
≤340
≤4130
≤596
≤6184
≤758
≤864
≤98
≤106

VulDB

≤10
≤20
≤340
≤496
≤5114
≤6142
≤796
≤860
≤928
≤1010

NVD

≤1586
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

CNA

≤1534
≤20
≤34
≤48
≤54
≤62
≤718
≤810
≤94
≤102

Fornitore

≤1512
≤20
≤30
≤42
≤50
≤68
≤716
≤818
≤924
≤106

Exploiter 0 giorni

<1k40
<2k74
<5k80
<10k98
<25k146
<50k112
<100k36
≥100k0

Exploiter aujourd'hui

<1k138
<2k94
<5k146
<10k104
<25k102
<50k2
<100k0
≥100k0

Sfrutta il volume del mercato

IOB - Indicator of Behavior (1000)

Sequenza temporale

Linguaggio

en902
es36
fr16
pt14
de12

Nazione

us124
gb80
es28
fr24
it20

Attori

Unknown1

Attività

Interesse

Sequenza temporale

Genere

Operating System48
Smartphone Operating System32
Anti-Malware Software26
Router Operating System18
Web Browser10

Fornitore

Apple56
Not Defined14
IObit14
Microsoft12
Google12

Prodotto

Apple macOS30
Apple iOS20
Apple iPadOS20
IObit Malware Fighter14
Microsoft Windows10

Vulnerabilità

#VulnerabilitàBaseTemp0dayOggiSfrConCTIEPSSCVE
1KMPlayer SHFOLDER.dll escalazione di privilegi5.34.8$0-$5k$0-$5kProof-of-ConceptNot Defined0.80+0.00000CVE-2023-1745
2IObit Malware Fighter IOCTL IMFCameraProtect.sys 0x8018E004 buffer overflow5.34.8$0-$5k$0-$5kProof-of-ConceptNot Defined1.240.00064CVE-2023-1646
3DriverGenius IOCTL mydrivers64.sys 0x9c402084 denial of service5.55.0$0-$5k$0-$5kProof-of-ConceptNot Defined1.550.00045CVE-2023-1677
4IObit Malware Fighter IOCTL ImfHpRegFilter.sys 0x8001E040 denial of service5.55.0$0-$5k$0-$5kProof-of-ConceptNot Defined1.140.00045CVE-2023-1643
5DriverGenius IOCTL mydrivers64.sys 0x9C402088 buffer overflow7.87.1$0-$5k$0-$5kProof-of-ConceptNot Defined1.520.00045CVE-2023-1676
6Ubiquiti EdgeRouter X OSPF escalazione di privilegi [Contestazione]7.26.5$0-$5k$0-$5kProof-of-ConceptNot Defined1.240.00043CVE-2023-1458
7Microsoft Windows ICMP Remote Code Execution9.88.5$25k-$100k$5k-$25kUnprovenOfficial Fix1.190.01074CVE-2023-23415
8IObit Malware Fighter IOCTL IMFCameraProtect.sys 0x8018E008 denial of service5.55.0$0-$5k$0-$5kProof-of-ConceptNot Defined1.240.00045CVE-2023-1645
9IObit Malware Fighter IOCTL IMFCameraProtect.sys 0x8018E010 denial of service5.55.0$0-$5k$0-$5kProof-of-ConceptNot Defined1.140.00045CVE-2023-1644
10DriverGenius IOCTL mydrivers64.sys 0x9C40A0E0 buffer overflow5.34.8$0-$5k$0-$5kProof-of-ConceptNot Defined1.610.00045CVE-2023-1678
11SNIProxy Wildcard Backend Host buffer overflow8.58.4$0-$5k$0-$5kNot DefinedOfficial Fix0.57+0.00000CVE-2023-25076
12IObit Malware Fighter IOCTL ObCallbackProcess.sys 0x222040 denial of service5.55.0$0-$5k$0-$5kProof-of-ConceptNot Defined1.110.00045CVE-2023-1642
13Ubiquiti EdgeRouter X NAT Configuration escalazione di privilegi [Contestazione]7.26.5$0-$5k$0-$5kProof-of-ConceptUnavailable1.250.00043CVE-2023-1456
14Ubiquiti EdgeRouter X Static Routing Configuration escalazione di privilegi [Contestazione]7.26.5$0-$5k$0-$5kProof-of-ConceptUnavailable1.060.00043CVE-2023-1457
15DriverGenius IOCTL mydrivers64.sys 0x9C40A108 buffer overflow5.34.8$0-$5k$0-$5kProof-of-ConceptNot Defined1.530.00045CVE-2023-1679
16JiangMin Antivirus IOCTL kvcore.sys 0x222010 buffer overflow5.34.8$0-$5k$0-$5kProof-of-ConceptNot Defined1.150.00045CVE-2023-1629
17Jianming Antivirus IoControlCode kvcore.sys buffer overflow5.34.8$0-$5k$0-$5kProof-of-ConceptNot Defined1.160.00045CVE-2023-1626
18IObit Malware Fighter IOCTL ObCallbackProcess.sys 0x222018 denial of service5.55.0$0-$5k$0-$5kProof-of-ConceptNot Defined1.070.00045CVE-2023-1641
19Watchdog Anti-Virus IoControlCode wsdk-driver.sys 0x80002008 escalazione di privilegi4.44.0$0-$5k$0-$5kProof-of-ConceptNot Defined1.160.00042CVE-2023-1453
20IObit Malware Fighter IOCTL ObCallbackProcess.sys 0x222010 denial of service5.55.0$0-$5k$0-$5kProof-of-ConceptNot Defined1.020.00045CVE-2023-1640

IOC - Indicator of Compromise (3)

These indicators of compromise highlight associated network ranges which are known to be part of research and attack activities.

IDIP rangeAttoreGenereFiducia
145.61.185.0/24B1txor20predictiveAlto
2XX.XXX.XXX.X/XXXxxxxxxpredictiveAlto
3XXX.XX.XX.X/XXXxxxxxpredictiveAlto

TTP - Tactics, Techniques, Procedures (17)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueVulnerabilitàAccesso al vettoreGenereFiducia
1T1006CWE-22, CWE-23Pathname TraversalpredictiveAlto
2T1040CWE-319Authentication Bypass by Capture-replaypredictiveAlto
3T1055CWE-74InjectionpredictiveAlto
4T1059CWE-88, CWE-94Cross Site ScriptingpredictiveAlto
5TXXXX.XXXCWE-XXXxxxx Xxxx XxxxxxxxxpredictiveAlto
6TXXXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveAlto
7TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxxxxxxx Xx Xxxxxxxxx Xxxxxxxxxxxxxx XxxxxxxxpredictiveAlto
8TXXXXCWE-XX, CWE-XXXxxxxxx XxxxxxxxxpredictiveAlto
9TXXXX.XXXCWE-XXXXxxx XxxxxxxxpredictiveAlto
10TXXXXCWE-XXX, CWE-XXXXxxxxxxxxx XxxxxxpredictiveAlto
11TXXXX.XXXCWE-XXXXxxxxxxx XxxxxxxxxxxxxpredictiveAlto
12TXXXXCWE-XXXXxxxxxxxx Xxxxxx XxxxpredictiveAlto
13TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveAlto
14TXXXX.XXXCWE-XXXXxxxxxxxpredictiveAlto
15TXXXXCWE-XXXXxxxxxxxxxxxxpredictiveAlto
16TXXXX.XXXCWE-XXXXxxxxxxxxxxx XxxxxxpredictiveAlto
17TXXXXCWE-XXXXxxxxxxxxxx XxxxxxpredictiveAlto

IOA - Indicator of Attack (166)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClasseIndicatorGenereFiducia
1File/dev/infiniband/rdma_cmpredictiveAlto
2File/tmppredictiveBasso
3File/tmp/mulipartFilepredictiveAlto
4Filea2dp_sbc.ccpredictiveMedia
5FileAccountTypePreference.javapredictiveAlto
6Fileaidl_utils.ccpredictiveAlto
7FileAppInfoDashboardFragment.javapredictiveAlto
8Filearch/x86/kvm/x86.cpredictiveAlto
9Fileavdt_scb_act.ccpredictiveAlto
10FileBackupHelper.javapredictiveAlto
11FileBitmapExport.javapredictiveAlto
12Fileble_scanner_hci_interface.ccpredictiveAlto
13FileBluetoothOppUtility.javapredictiveAlto
14Filebluetooth_ccc.ccpredictiveAlto
15Filebta_av_act.ccpredictiveAlto
16Filebta_av_co.ccpredictiveMedia
17Filebta_gatts_api.ccpredictiveAlto
18Filebtif_bqr.ccpredictiveMedia
19Filebtm_acl.ccpredictiveMedia
20Filebtm_ble_gap.ccpredictiveAlto
21Filebtm_ble_privacy.ccpredictiveAlto
22Filebtm_devctl.ccpredictiveAlto
23Filebtm_iso_impl.hpredictiveAlto
24Filexxx_xxx.xxpredictiveMedia
25Filexxx_xxxx.xxpredictiveMedia
26Filexxxx.xpredictiveBasso
27Filexxxxxxxxxxxxxxxx.xxxpredictiveAlto
28Filex:\xxxxxxxxxx\xxxx\xxxxxxxxxx_xxxxx.xxxpredictiveAlto
29Filexxxxxx_xxxxxxxx.xpredictiveAlto
30Filexxxxxxxxxx.xxxpredictiveAlto
31Filexxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
32Filexxxxxx.xxxpredictiveMedia
33Filexxxxxx/xxxx/xxxx_xxx.xpredictiveAlto
34Filexxxxxxx.xpredictiveMedia
35Filexxxxxxxxxxxxxxxx.xxxpredictiveAlto
36Filexxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
37Filexxx_xxxxxx.xpredictiveMedia
38Filexxx_xxx.xpredictiveMedia
39Filexxx.xpredictiveBasso
40Filexxxxxxx/xxx/xxx-xxxx.xpredictiveAlto
41Filexxxxxxx/xxx/xxx-xxxx.xpredictiveAlto
42Filexxxxxxx/xxx/xxx.xpredictiveAlto
43Filexxxxxxx/xxx/xxxxxxxx/xxxxxxxx/xxxxxxxxx/xxxxxxxx/xxxxxxxx.xpredictiveAlto
44Filexxxxxxx/xxxxxxx/xxxxxxx/xxxxxxx_xxx.xpredictiveAlto
45Filexxxxxxxxx.xxxpredictiveAlto
46Filexxxx-xxxxxx.xpredictiveAlto
47Filexxxxxxxxxxx-xxxx.xxxxxxxpredictiveAlto
48Filexxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
49Filexxxxxxxxxxxxxxx.xxxpredictiveAlto
50Filexxxxxxxxxxxx.xxxxpredictiveAlto
51Filexxx.xpredictiveBasso
52Filexx/xxxx/xxxxxxx.xpredictiveAlto
53Filexx/xxxx/xxxxxxxx.xpredictiveAlto
54Filexx/xxxxx/xxxxx.xpredictiveAlto
55Filexx/xxxxx/xxxxxx.xpredictiveAlto
56Filexx/xxxxxxxxx/xxxx_xx.xpredictiveAlto
57Filexxxx_xx.xxpredictiveMedia
58Filexxxxxxxxxxxxxxxxxxxxxxxxx.xxpredictiveAlto
59Filexxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
60Filexxxxxxxxxxxxxxxxxxxxxxxxxxxx.xxpredictiveAlto
61Filexxxxxxx.xxxpredictiveMedia
62Filexxxx.xxxpredictiveMedia
63Filexxxxxx_xxxxxxx.xpredictiveAlto
64Filexxxxxxxxxx.xxxpredictiveAlto
65Filexxxxxxx.xpredictiveMedia
66Filexxxxxxxxxxxx.xxxxpredictiveAlto
67Filexx_xxxxx/xxxxxxxxx.xpredictiveAlto
68Filexxxxxxxxx.xpredictiveMedia
69Filexxxxxx/xxxxx/xx.xpredictiveAlto
70Filexxxxxxxx_xxx_xx.xxxpredictiveAlto
71Filexxx.xxxpredictiveBasso
72Filexxxx_xxx_xxxxxx.xpredictiveAlto
73Filexxxxxxxxxxxxx.xxpredictiveAlto
74Filexxx_xxxxxxxxxx.xpredictiveAlto
75Filexxx_xxxxxxxxxxxxx.xpredictiveAlto
76Filexxxx_xxxxxx_xxx.xpredictiveAlto
77Filexxxx.xpredictiveBasso
78Filexxxxxxxxxxxx.xxxpredictiveAlto
79Filexxxxxxxxxx.xxxpredictiveAlto
80Filexxxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
81Filexxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
82Filexxxxxxxxxxx.xxxpredictiveAlto
83Filexxxxxxxxxxxxxx.xxxpredictiveAlto
84Filexxxxxxx_xxx.xxxpredictiveAlto
85Filexxx.xxxpredictiveBasso
86Filexxx/xxxxxxxxx/xxx_xxxx.xpredictiveAlto
87Filexxx/xxx/xxxxxxx.xpredictiveAlto
88Filexxx/xxxx/xxxx.xpredictiveAlto
89Filexxx/xxxx/xxxxxx.xpredictiveAlto
90Filexxx/xxx/xxx_xxxx.xpredictiveAlto
91Filexxx/xxx/xxx_xx.xpredictiveAlto
92Filexxxxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
93Filexxx_xxxxx.xxxpredictiveAlto
94Filexxxxx_xxxx.xpredictiveMedia
95Filexxxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
96Filexxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
97Filexxxxxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
98Filexxxxxxxxxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
99Filexxxx.xxxpredictiveMedia
100Filexxxxxxxxxx_xxxxxxx.xxxpredictiveAlto
101Filexxxxxxxxxxxxxxxx.xxxxpredictiveAlto
102Filexxx_xxxxxxxx_xxxxxx.xxxpredictiveAlto
103Filexxxx.xxxpredictiveMedia
104Filexxx_xx.xxpredictiveMedia
105Filexxxxxxxxxxxxx.xxxpredictiveAlto
106Filexxxxxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
107Filexxxxxxxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
108Filexxxxxx_xxx.xpredictiveMedia
109Filexxxxxxx.xxxpredictiveMedia
110Filexxx_xxxxxxxxxxxxx.xpredictiveAlto
111Filexxx_xxxxxxxxxxxxxxx.xpredictiveAlto
112Filexxx_xxxxxxxx.xpredictiveAlto
113Filexxxxxxxxxxxx.xxxxpredictiveAlto
114Filexxx/xx/xxx/xxxxxxxxxxxxxx/xxxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
115Filexxxxxxxxxxxxx.xxxpredictiveAlto
116Filexxx_xxxxx.xpredictiveMedia
117Filexxxxx/xxxxxx.xpredictiveAlto
118Filexxxxxx.xpredictiveMedia
119Filexxxxx.xxxpredictiveMedia
120Filexxxx_xxxxxxx.xpredictiveAlto
121Filexxxx_xxxxxxx.xpredictiveAlto
122Filexxxxxxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
123Filexxxxxxxxx.xxpredictiveMedia
124Filexxxxxxxxxxx.xxxxpredictiveAlto
125Filexxxxxxxxxxxxxxx.xxxxpredictiveAlto
126Filexxxxxxxxxxxxxxxxxxxx.xxxxpredictiveAlto
127Filexxxxxx.xxxpredictiveMedia
128Filexx_xxxxxxx.xpredictiveMedia
129Filexx_xxxx.xpredictiveMedia
130Filexxx/xxxxx/xxx.xpredictiveAlto
131Libraryxxxxxx.xxxpredictiveMedia
132Libraryxxxxxxxxxxxxxxxx.xxxpredictiveAlto
133Libraryxxxxxxxxxxxxxx.xxxpredictiveAlto
134Libraryxxxxxxxxxxxxxxxxx.xxxpredictiveAlto
135Libraryxxxxxx.xxxpredictiveMedia
136Libraryxxx/xxxxxx.xpredictiveMedia
137Libraryxxx/xxx_xxx.xpredictiveAlto
138Libraryxxxxxxxxxxx.xxxpredictiveAlto
139Libraryxxxxxxxxx.xxxpredictiveAlto
140Libraryxxxxxxxxxxxxxx.xxxpredictiveAlto
141Libraryxxxxxxxxxxx.xxxpredictiveAlto
142Libraryxxxxxx.xxpredictiveMedia
143Libraryxxxxxxxxxxxxxxxxx.xxxpredictiveAlto
144Libraryxxx.xxxpredictiveBasso
145Libraryxxxxxxxx.xxxpredictiveMedia
146Libraryxxxxxxxx.xxxpredictiveMedia
147Libraryxxxx-xxxxxx.xxxpredictiveAlto
148Argumentxxx_xxxxx[]/xxx_xxxxx[]predictiveAlto
149ArgumentxxxxpredictiveBasso
150ArgumentxxxxpredictiveBasso
151ArgumentxxxxxxxxxxxxxpredictiveAlto
152ArgumentxxxxxpredictiveBasso
153ArgumentxxxpredictiveBasso
154ArgumentxxxxxxxxxxxxxxpredictiveAlto
155Argumentxxx_xx_xxxxxx/xxx_xxx_xxxxxxxxxxxpredictiveAlto
156Argumentxxx_xxx_xxxpredictiveMedia
157ArgumentxxxxxxxxxxxxxxxxxpredictiveAlto
158Argumentxxxx/xxxxxpredictiveMedia
159Argumentxxxx-xxx-xxxxxxxxxpredictiveAlto
160ArgumentxxxxxxxxpredictiveMedia
161Argumentxxxx_xxxxpredictiveMedia
162Argumentxxxxxx_xxxxpredictiveMedia
163Argumentxxxxxxxxxxx_xxxxxxxx_x.x.x.xpredictiveAlto
164ArgumentxxxxxxpredictiveBasso
165ArgumentxxxxxxxxxxxxpredictiveMedia
166ArgumentxxxpredictiveBasso
PrecedenteVisione d'insiemeIl prossimo

Do you know our Splunk app?

Download it now for free!