Mushtik Analys

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (13)

Lang

en	14

Land

tt	6
us	2
cn	2

Skådespelare

Mushtik	1

Intressera

Typ

Smartphone Operating System	6
Social Network Software	2
Content Management System	2
Router Operating System	2
Not Defined	2

Säljare

Apple	6
Not Defined	4
Facebook	2
Cisco	2

Produkt

Apple iOS	6
Apple iPadOS	4
Facebook react-dev-utils	2
WordPress	2
Cisco IOS	2

Sårbarheter

#	Sårbarhet	Base	Temp	0day	I dag	Utn	Rem	CTI	EPSS	CVE
1	Cisco IOS/IOS XE QoS minneskorruption	8.5	8.3	$25k-$100k	$5k-$25k	Not Defined	Workaround	0.03	0.03537	CVE-2018-0151
2	BEA WebLogic Domain Directory okänd sårbarhet	8.2	7.4	$5k-$25k	$0-$5k	Proof-of-Concept	Official Fix	0.00	0.00505	CVE-2006-2546
3	Facebook react-dev-utils getProcessForPort privilegier eskalering	5.5	5.3	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.02	0.00241	CVE-2021-24033
4	Apple Safari Address privilegier eskalering	5.3	5.2	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	0.00084	CVE-2019-8670
5	Docker Docker Image Manifest förnekande av tjänsten	4.3	4.1	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.03	0.00553	CVE-2021-21285
6	Apple iOS/iPadOS WebKit Remote Code Execution	6.3	6.0	$100k och mer	$5k-$25k	High	Official Fix	0.00	0.00980	CVE-2021-1870
7	CSI snapshot-controller Volume Snapshot förnekande av tjänsten	5.4	5.1	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	0.00066	CVE-2020-8569
8	Kubernetes API Server privilegier eskalering	4.0	4.0	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	0.00238	CVE-2020-8554
9	Apple iOS/iPadOS XPC Service launchd privilegier eskalering	7.8	7.0	$25k-$100k	$0-$5k	Proof-of-Concept	Official Fix	0.00	0.00077	CVE-2020-9971
10	Apple iOS/iPadOS WebRTC minneskorruption	7.5	7.2	$100k och mer	$5k-$25k	Not Defined	Official Fix	0.00	0.00833	CVE-2020-15969
11	Apple iOS/iPadOS Address Bar privilegier eskalering	4.3	4.1	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00	0.00101	CVE-2020-9993
12	WordPress admin-ajax.php sql injektion	7.3	7.3	$25k-$100k	$0-$5k	High	Official Fix	0.02	0.05147	CVE-2007-2821
13	Apple iOS Disk Images minneskorruption	6.5	6.4	$25k-$100k	$5k-$25k	Not Defined	Official Fix	0.00	0.00237	CVE-2016-7616

IOC - Indicator of Compromise (2)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

ID	IP-adress	Hostname	Skådespelare	Kampanjer	Identified	Typ	Förtroende
1	18.228.7.109	ec2-18-228-7-109.sa-east-1.compute.amazonaws.com	Mushtik		13/07/2022	verified	Medium
2	XXX.XXX.XXX.XXX		Xxxxxxx		13/07/2022	verified	Hög

TTP - Tactics, Techniques, Procedures (5)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

ID	Technique	Sårbarheter	Åtkomstvektor	Typ	Förtroende
1	T1068	CWE-264	Execution with Unnecessary Privileges	predictive	Hög
2	TXXXX	CWE-XX	Xxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx Xxxxxxxxx	predictive	Hög
3	TXXXX	CWE-XXX	Xxxxxxxxxx Xxxxxx	predictive	Hög
4	TXXXX	CWE-XX	Xxx Xxxxxxxxx	predictive	Hög
5	TXXXX.XXX	CWE-XXX	Xxxxxxxxxxxx	predictive	Hög

IOA - Indicator of Attack (4)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

ID	Klass	Indicator	Typ	Förtroende
1	File	admin-ajax.php	predictive	Hög
2	File	xxxxxxx	predictive	Låg
3	Argument	xxxxxx	predictive	Låg
4	Network Port	xxx/xxxxx	predictive	Medium

Referenser (2)

The following list contains external sources which discuss the actor and the associated activities:

◂ TidigareÖversiktNästa ▸

Might our Artificial Intelligence support you?

Check our Alexa App!