Mushtik Análise

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (13)

Idioma

en	14

País

tt	8

Actores

Mushtik	1

Interesse

Tipo

Smartphone Operating System	6
Application Server Software	2
Content Management System	2
Virtualization Software	2
Social Network Software	2

Fabricante

Apple	6
Not Defined	4
BEA	2
Facebook	2

Produto

Apple iOS	6
Apple iPadOS	4
BEA WebLogic	2
WordPress	2
Kubernetes	2

Vulnerabilidades

#	Vulnerabilidade	Base	Temp	0day	Hoje	Exp	Mas	EPSS	CTI	CVE
1	Cisco IOS/IOS XE QoS Excesso de tampão	8.5	8.3	$25k-$100k	$5k-$25k	Not Defined	Workaround	0.03537	0.03	CVE-2018-0151
2	BEA WebLogic Domain Directory vulnerabilidade desconhecida	8.2	7.4	$5k-$25k	$0-$5k	Proof-of-Concept	Official Fix	0.00505	0.00	CVE-2006-2546
3	Facebook react-dev-utils getProcessForPort direitos alargados	5.5	5.3	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00241	0.02	CVE-2021-24033
4	Apple Safari Address direitos alargados	5.3	5.2	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00084	0.02	CVE-2019-8670
5	Docker Docker Image Manifest Negação de Serviço	4.3	4.1	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00553	0.03	CVE-2021-21285
6	Apple iOS/iPadOS WebKit Remote Code Execution	6.3	6.0	$100k e mais	$5k-$25k	High	Official Fix	0.00980	0.00	CVE-2021-1870
7	CSI snapshot-controller Volume Snapshot Negação de Serviço	5.4	5.1	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00066	0.00	CVE-2020-8569
8	Kubernetes API Server direitos alargados	4.0	4.0	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00238	0.00	CVE-2020-8554
9	Apple iOS/iPadOS XPC Service launchd direitos alargados	7.8	7.0	$25k-$100k	$0-$5k	Proof-of-Concept	Official Fix	0.00077	0.07	CVE-2020-9971
10	Apple iOS/iPadOS WebRTC Excesso de tampão	7.5	7.2	$100k e mais	$5k-$25k	Not Defined	Official Fix	0.00833	0.00	CVE-2020-15969
11	Apple iOS/iPadOS Address Bar direitos alargados	4.3	4.1	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00101	0.00	CVE-2020-9993
12	WordPress admin-ajax.php Injecção SQL	7.3	7.3	$25k-$100k	$0-$5k	High	Official Fix	0.05147	0.02	CVE-2007-2821
13	Apple iOS Disk Images Excesso de tampão	6.5	6.4	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00237	0.00	CVE-2016-7616

IOC - Indicator of Compromise (2)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

ID	Endereço IP	Hostname	Actor	Campanhas	Identified	Tipo	Aceitação
1	18.228.7.109	ec2-18-228-7-109.sa-east-1.compute.amazonaws.com	Mushtik		13/07/2022	verified	Médio
2	XXX.XXX.XXX.XXX		Xxxxxxx		13/07/2022	verified	Alto

TTP - Tactics, Techniques, Procedures (5)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

ID	Technique	Vulnerabilidades	Tipo de acesso	Tipo	Aceitação
1	T1068	CWE-264	Execution with Unnecessary Privileges	predictive	Alto
2	TXXXX	CWE-XX	Xxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx Xxxxxxxxx	predictive	Alto
3	TXXXX	CWE-XXX	Xxxxxxxxxx Xxxxxx	predictive	Alto
4	TXXXX	CWE-XX	Xxx Xxxxxxxxx	predictive	Alto
5	TXXXX.XXX	CWE-XXX	Xxxxxxxxxxxx	predictive	Alto

IOA - Indicator of Attack (4)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

ID	Classe	Indicator	Tipo	Aceitação
1	File	admin-ajax.php	predictive	Alto
2	File	xxxxxxx	predictive	Baixo
3	Argument	xxxxxx	predictive	Baixo
4	Network Port	xxx/xxxxx	predictive	Médio

Referências (2)

The following list contains external sources which discuss the actor and the associated activities:

◂ VoltarVisão GeralPróximo ▸

Might our Artificial Intelligence support you?

Check our Alexa App!