Tortilla Анализ
IOB - Indicator of Behavior (3)
Деятельность
Интерес
Уязвимости
Кампании (1)
These are the campaigns that can be associated with the actor:
- Microsoft Exchange
IOC - Indicator of Compromise (3)
These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.
| ID | IP-адрес | Hostname | Актор | Кампании | Identified | Тип | Уверенность |
|---|---|---|---|---|---|---|---|
| 1 | 54.221.65.242 | ec2-54-221-65-242.compute-1.amazonaws.com | Tortilla | Microsoft Exchange | 04.11.2021 | verified | Средний |
| 2 | XXX.XXX.XX.XXX | xxxx.xx | Xxxxxxxx | Xxxxxxxxx Xxxxxxxx | 04.11.2021 | verified | Высокий |
| 3 | XXX.XXX.XX.XXX | Xxxxxxxx | Xxxxxxxxx Xxxxxxxx | 04.11.2021 | verified | Высокий |
TTP - Tactics, Techniques, Procedures (2)
Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.
| ID | Technique | Класс | Уязвимости | Вектор доступа | Тип | Уверенность |
|---|---|---|---|---|---|---|
| 1 | CAPEC-10 | CWE-119, CWE-125, CWE-362 | Unknown Vulnerability | predictive | Высокий | |
| 2 | TXXXX | CAPEC-122 | CWE-XXX, CWE-XXX | Xxxxxxxxx Xxxx Xxxxxxxxxxx Xxxxxxxxxx | predictive | Высокий |
Ссылки (2)
The following list contains external sources which discuss the actor and the associated activities: