Bonaire, Sint Eustatius and Saba Unknown Análise

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (9)

Idioma

en	10

País

nl	10

Actores

Unknown	1

Interesse

Tipo

Not Defined	6
Content Management System	2
Firewall Software	2

Fabricante

Not Defined	4
Harmonic	2
Intel	2
Fortinet	2

Produto

CMS Made Simple	2
Harmonic NSG 9000	2
Intel Chipset Device Software	2
Fortinet FortiOS	2
Marketo MA	2

Vulnerabilidades

#	Vulnerabilidade	Base	Temp	0day	Hoje	Exp	Mas	EPSS	CTI	CVE
1	Intel Chipset Device Software Installer direitos alargados	6.5	6.4	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00044	0.07	CVE-2019-0128
2	Microsoft Windows Multimedia Library winmm.dll Excesso de tampão	10.0	9.5	$100k e mais	$0-$5k	High	Official Fix	0.97281	0.00	CVE-2012-0003
3	Harmonic NSG 9000 Fraca autenticação	8.5	8.3	$0-$5k	$0-$5k	Not Defined	Workaround	0.00222	0.02	CVE-2018-14943
4	Fortinet FortiOS CLI Console Private Key direitos alargados	5.4	5.3	$0-$5k	$0-$5k	Not Defined	Workaround	0.00044	0.00	CVE-2019-5593
5	Marketo MA Roteiro Cruzado de Sítios	3.5	3.4	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00116	0.00	CVE-2014-8379
6	Microsoft IIS Roteiro Cruzado de Sítios	5.2	4.7	$5k-$25k	$0-$5k	Proof-of-Concept	Official Fix	0.00548	0.04	CVE-2017-0055
7	Artifex Ghostscript PostScript File direitos alargados	6.5	6.4	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00420	0.00	CVE-2018-15910
8	Apache Cocoon view-source Directório Traversal	5.3	5.0	$5k-$25k	$0-$5k	Proof-of-Concept	Not Defined	0.00239	0.00	CVE-2003-1172
9	CMS Made Simple Form Builder admin_store_form Divulgação de Informação	8.5	8.2	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00942	0.00	CVE-2017-6070

IOC - Indicator of Compromise (29)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

ID	Endereço IP	Hostname	Actor	Identified	Tipo	Aceitação
1	45.12.70.30	shttp-ashen.get-eye.com	Bonaire and Sint Eustatius and Saba Unknown	09/11/2022	verified	Alto
2	45.12.71.30		Bonaire and Sint Eustatius and Saba Unknown	09/11/2022	verified	Alto
3	46.36.203.160		Bonaire and Sint Eustatius and Saba Unknown	09/11/2022	verified	Alto
4	46.36.203.168		Bonaire and Sint Eustatius and Saba Unknown	09/11/2022	verified	Alto
5	46.36.203.170		Bonaire and Sint Eustatius and Saba Unknown	09/11/2022	verified	Alto
6	63.245.41.0		Bonaire and Sint Eustatius and Saba Unknown	21/04/2023	verified	Alto
7	XX.XXX.XX.X		Xxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx	21/04/2023	verified	Alto
8	XX.XX.XXX.X		Xxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx	21/04/2023	verified	Alto
9	XX.XX.XXX.X		Xxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx	21/04/2023	verified	Alto
10	XXX.XXX.XXX.X		Xxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx	09/11/2022	verified	Alto
11	XXX.X.XX.X		Xxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx	09/11/2022	verified	Alto
12	XXX.X.XX.X	xxx-xxxxxxxx.xxxx.xxxxx.xxx	Xxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx	09/11/2022	verified	Alto
13	XXX.XXX.XX.X	xxx-xxxxxxxxx.xxxx.xxxxx.xxx	Xxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx	09/11/2022	verified	Alto
14	XXX.XXX.XXX.X	xxx-xxxxxxxxx.xxxx.xxxxx.xxx	Xxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx	21/04/2023	verified	Alto
15	XXX.XXX.XXX.X	xxx-xxxxxxxxx.xxxx.xxxxx.xxx	Xxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx	21/04/2023	verified	Alto
16	XXX.XXX.XXX.X	xxx-xxxxxxxxx.xxxx.xxxxx.xxx	Xxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx	21/04/2023	verified	Alto
17	XXX.X.XX.X		Xxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx	09/11/2022	verified	Alto
18	XXX.XX.XXX.X		Xxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx	09/11/2022	verified	Alto
19	XXX.XXX.XXX.X	xxxx-xxxxxxxx.xxxx.xxxxxxx.xxx	Xxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx	09/11/2022	verified	Alto
20	XXX.XXX.XX.X		Xxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx	09/11/2022	verified	Alto
21	XXX.XXX.XX.XXX		Xxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx	21/04/2023	verified	Alto
22	XXX.XXX.XX.XX		Xxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx	21/04/2023	verified	Alto
23	XXX.XXX.XXX.XX		Xxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx	21/04/2023	verified	Alto
24	XXX.XX.XX.XX		Xxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx	09/11/2022	verified	Alto
25	XXX.XX.XXX.XX		Xxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx	09/11/2022	verified	Alto
26	XXX.X.XXX.X		Xxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx	09/11/2022	verified	Alto
27	XXX.XX.XXX.X		Xxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx	09/11/2022	verified	Alto
28	XXX.XXX.XX.X		Xxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx	09/11/2022	verified	Alto
29	XXX.XXX.XX.X		Xxxxxxx Xxx Xxxx Xxxxxxxxx Xxx Xxxx Xxxxxxx	21/04/2023	verified	Alto

TTP - Tactics, Techniques, Procedures (6)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

ID	Technique	Classificação	Vulnerabilidades	Tipo de acesso	Tipo	Aceitação
1	T1006	CAPEC-126	CWE-22	Path Traversal	predictive	Alto
2	T1059.007	CAPEC-209	CWE-79	Cross Site Scripting	predictive	Alto
3	TXXXX	CAPEC-	CWE-XXX	Xxxxxxxxx Xxxx Xxxxxxxxxxx Xxxxxxxxxx	predictive	Alto
4	TXXXX.XXX	CAPEC-191	CWE-XXX	Xxxx-xxxxx Xxxxxxxxxxx	predictive	Alto
5	TXXXX	CAPEC-1	CWE-XXX	Xxxxxxxxxx Xxxxxx	predictive	Alto
6	TXXXX	CAPEC-116	CWE-XXX	Xxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx Xxxxxxxxxxx	predictive	Alto

IOA - Indicator of Attack (9)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

ID	Classe	Indicator	Tipo	Aceitação
1	File	/uncpath/	predictive	Médio
2	File	admin_store_form	predictive	Alto
3	File	xxxx-xxxxxx	predictive	Médio
4	Library	xxxxx.xxx	predictive	Médio
5	Argument	xxxxxxxxxxx_xxxxx_xxxx_xxxxxxxx	predictive	Alto
6	Argument	xxxxxxxx	predictive	Médio
7	Argument	xxxxxxxxxxxxxxxxxxx	predictive	Alto
8	Input Value	..	predictive	Baixo
9	Input Value	xxxxxxxx/xxxxxxxx/xxxxxxxxx	predictive	Alto

Referências (3)

The following list contains external sources which discuss the actor and the associated activities:

◂ VoltarVisão GeralPróximo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!