Iserik Análise

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (5)

Curso de tempo

Idioma

en	6

País

fr	4
us	2

Actores

Iserik	2

Actividades

Interesse

Curso de tempo

Tipo

Customer Relationship Management System	2
Database Software	2
Web Server	2

Fabricante

Not Defined	4
Microsoft	2

Produto

Odoo	2
Microsoft SQL Server	2
nginx	2

Vulnerabilidades

#	Vulnerabilidade	Base	Temp	0day	Hoje	Exp	Mas	EPSS	CTI	CVE
1	Microsoft SQL Server Privilege Escalation	7.5	6.8	$25k-$100k	$5k-$25k	Unproven	Official Fix	0.01257	0.00	CVE-2022-29143
2	Microsoft SQL Server Privilege Escalation	8.8	8.1	$25k-$100k	$0-$5k	Unproven	Official Fix	0.00157	0.04	CVE-2021-1636
3	nginx direitos alargados	6.9	6.9	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00241	1.94	CVE-2020-12440
4	Odoo Database Anonymization Privilege Escalation	5.6	5.3	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.00214	0.05	CVE-2017-10803
5	Odoo Directório Traversal	5.4	5.2	$0-$5k	$0-$5k	Not Defined	Not Defined	0.01037	0.05	CVE-2017-9416

IOC - Indicator of Compromise (11)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

ID	Endereço IP	Hostname	Actor	Identified	Tipo	Aceitação
1	1.9.0.1		Iserik	23/09/2019	verified	Alto
2	1.9.1.0		Iserik	23/09/2019	verified	Alto
3	1.9.1.1		Iserik	23/09/2019	verified	Alto
4	X.X.X.X		Xxxxxx	23/09/2019	verified	Alto
5	X.X.X.X		Xxxxxx	23/09/2019	verified	Alto
6	X.XX.X.X		Xxxxxx	23/09/2019	verified	Alto
7	X.XX.X.X		Xxxxxx	23/09/2019	verified	Alto
8	X.XX.X.X		Xxxxxx	23/09/2019	verified	Alto
9	X.X.X.X		Xxxxxx	23/09/2019	verified	Alto
10	X.X.X.XX	xxxx-xxx-x-xxx-xx.xx-x.xxx.xxxxxxx.xx	Xxxxxx	23/09/2019	verified	Alto
11	X.X.X.XX	xxxx-xxx-x-xxx-xx.xx-x.xxx.xxxxxxx.xx	Xxxxxx	23/09/2019	verified	Alto

TTP - Tactics, Techniques, Procedures (2)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

ID	Technique	Classificação	Vulnerabilidades	Tipo de acesso	Tipo	Aceitação
1	T1006	CAPEC-126	CWE-22	Path Traversal	predictive	Alto
2	TXXXX	CAPEC-108	CWE-XX	Xxx Xxxxxxxxx	predictive	Alto

Referências (2)

The following list contains external sources which discuss the actor and the associated activities:

◂ VoltarVisão GeralPróximo ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!