Godfather Análise

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (72)

Curso de tempo

Idioma

fr32
sv14
en12
es8
it6

País

us60

Actores

Godfather1

Actividades

Interesse

Curso de tempo

Tipo

Not Defined30
Database Software10
Anti-Malware Software8
Packet Analyzer Software6
Operating System4

Fabricante

Oracle20
Not Defined18
Siemens8
Cisco6
Microsoft4

Produto

Oracle MySQL Server8
Siemens JT2Go6
Siemens Teamcenter Visualization6
tcpdump6
Cisco ClamAV6

Vulnerabilidades

#VulnerabilidadeBaseTemp0dayHojeExpMasEPSSCTICVE
1Oracle MySQL Enterprise Monitor Monitoring direitos alargados8.17.7$5k-$25k$0-$5kHighOfficial Fix0.975330.02CVE-2017-12617
2Oracle MySQL Server Stored Procedure Negação de Serviço6.86.5$0-$5k$0-$5kNot DefinedOfficial Fix0.001080.00CVE-2018-2583
3Oracle MySQL Server Optimizer Negação de Serviço6.56.2$0-$5k$0-$5kNot DefinedOfficial Fix0.001340.00CVE-2018-2665
4Oracle Sun ZFS Storage Appliance Kit User Interface direitos alargados9.38.9$25k-$100k$5k-$25kNot DefinedOfficial Fix0.001620.00CVE-2018-2623
5Oracle Solaris Kernel Negação de Serviço7.57.2$5k-$25k$0-$5kNot DefinedOfficial Fix0.001420.00CVE-2018-2710
6Oracle Java SE Installer direitos alargados7.57.2$25k-$100k$0-$5kNot DefinedOfficial Fix0.000490.00CVE-2018-2627
7Oracle Java SE Serialization direitos alargados5.35.1$25k-$100k$0-$5kNot DefinedOfficial Fix0.004240.00CVE-2018-2657
8Oracle MySQL Server DDL Negação de Serviço6.56.2$0-$5k$0-$5kNot DefinedOfficial Fix0.001340.04CVE-2018-2622
9Oracle MySQL Server GIS Negação de Serviço6.56.2$0-$5k$0-$5kNot DefinedOfficial Fix0.001690.00CVE-2018-2573
10Oracle MySQL Server Optimizer Negação de Serviço6.56.2$0-$5k$0-$5kNot DefinedOfficial Fix0.001340.00CVE-2018-2668
11Oracle Converged Commerce Foundation Data direitos alargados8.88.4$5k-$25k$0-$5kNot DefinedOfficial Fix0.003110.04CVE-2016-0635
12Oracle Retail Assortment Planning Operations / Maintenance Directório Traversal8.48.0$5k-$25k$0-$5kNot DefinedOfficial Fix0.003440.00CVE-2016-9878
13Oracle MICROS Relate CRM Software Apache Tomcat direitos alargados7.57.2$5k-$25k$0-$5kNot DefinedOfficial Fix0.008860.00CVE-2017-5664
14Oracle Retail Merchandising System Cross Pillar direitos alargados6.46.1$5k-$25k$0-$5kNot DefinedOfficial Fix0.000530.07CVE-2018-2730
15Oracle Siebel CRM Desktop Outlook Client direitos alargados8.17.7$5k-$25k$0-$5kNot DefinedOfficial Fix0.000610.00CVE-2018-2574
16Oracle Siebel Engineering - Installer / Deployment Siebel Approval Manager Divulgação de Informação4.34.1$5k-$25k$0-$5kNot DefinedOfficial Fix0.000530.00CVE-2018-2632
17Oracle Sun ZFS Storage Appliance Kit Core Services direitos alargados10.09.5$100k e mais$5k-$25kNot DefinedOfficial Fix0.005750.04CVE-2018-2611
18Oracle Sun ZFS Storage Appliance Kit User Interface Divulgação de Informação8.68.2$5k-$25k$0-$5kNot DefinedOfficial Fix0.001440.00CVE-2018-2624
19Oracle Integrated Lights Out Manager Remote Console Application direitos alargados7.77.4$5k-$25k$0-$5kNot DefinedOfficial Fix0.000970.00CVE-2018-2566
20Oracle Integrated Lights Out Manager Remote Console Application direitos alargados7.37.0$5k-$25k$0-$5kNot DefinedOfficial Fix0.001480.00CVE-2018-2568

IOC - Indicator of Compromise (1)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDEndereço IPHostnameActorCampanhasIdentifiedTipoAceitação
134.230.9.163ec2-34-230-9-163.compute-1.amazonaws.comGodfather28/12/2023verifiedMédio

TTP - Tactics, Techniques, Procedures (9)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueClassificaçãoVulnerabilidadesTipo de acessoTipoAceitação
1T1006CAPEC-126CWE-22Path TraversalpredictiveAlto
2T1059.007CAPEC-209CWE-79Cross Site ScriptingpredictiveAlto
3TXXXXCAPEC-122CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveAlto
4TXXXXCAPEC-108CWE-XXXxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx XxxxxxxxxpredictiveAlto
5TXXXX.XXXCAPEC-178CWE-XXXXxxx XxxxxxxxpredictiveAlto
6TXXXXCAPEC-0CWE-XXX7xx Xxxxxxxx XxxxxxxxpredictiveAlto
7TXXXX.XXXCAPEC-459CWE-XXXXxxxxxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveAlto
8TXXXXCAPEC-116CWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx XxxxxxxxxxxpredictiveAlto
9TXXXX.XXXCAPEC-1CWE-XXXXxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx XxxxxxxxxpredictiveAlto

IOA - Indicator of Attack (20)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClasseIndicatorTipoAceitação
1File/index.php/newsletter/subscriber/new/predictiveAlto
2Fileaddrtoname.cpredictiveMédio
3FileCommandLineExecutor.javapredictiveAlto
4Filexxxxxxx/xxxxx/xxxxxx/xx.xpredictiveAlto
5Filexxxxxxxxxxx/xxxxxxx.xpredictiveAlto
6Filexxxxxxxxx/xxxxx.xpredictiveAlto
7Filexxx/xxxx/xxx-xxxxx.xpredictiveAlto
8Filexxx/xxxxxxx/xxxxxxxxx.xpredictiveAlto
9Filexxx.xpredictiveBaixo
10Filexx_xxxxx.xpredictiveMédio
11Filexxxxx-xxx.xpredictiveMédio
12Filexxxxx-xxxxxx.xpredictiveAlto
13Filexxxxx-xxxxxx.xpredictiveAlto
14Filexxxxx-xxxx.xpredictiveMédio
15Filexxxxx-xx.xpredictiveMédio
16Filexxxxx-xxx.xpredictiveMédio
17Filexxxxx-xx.xpredictiveMédio
18Filexxx_xxxxxxx.xpredictiveAlto
19Argumentxxxxxxxxxx/xxxxxxxxxxx/xxxxxxxxxxxxxxxxx/xxxxxxxxxxxxxxxxxx/xxxxxxxxxxxx/xxxxxxxxxxxxxxxxx/xxxxxxxxxxxxxpredictiveAlto
20ArgumentxxxxxxxxpredictiveMédio

Referências (2)

The following list contains external sources which discuss the actor and the associated activities:

VoltarVisão GeralPróximo

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!