Suckfly Analys

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (3)

Lang

en	4

Land

us	4

Skådespelare

Suckfly	1

Intressera

Typ

Not Defined	2
Wireless LAN Software	2

Säljare

Dell EMC	2
myStrom	2

Produkt

Dell EMC RSA Identity Management	2
Dell EMC Governance	2
myStrom WiFi Switch	2
myStrom WiFi Switch EU	2
myStrom WiFi Bulb	2

Sårbarheter

#	Sårbarhet	Base	Temp	0day	I dag	Utn	Rem	EPSS	CTI	CVE
1	myStrom WiFi Switch Cloud svag autentisering	6.9	6.6	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00082	0.00	CVE-2018-15479
2	Dell EMC RSA Identity Management/Governance Environment Variable privilegier eskalering	6.3	6.2	$0-$5k	$0-$5k	Not Defined	Workaround	0.00042	0.03	CVE-2018-11049
3	IPS IP.Board ipsconnect.php sql injektion	7.3	7.1	$0-$5k	$0-$5k	High	Unavailable	0.00135	0.02	CVE-2014-9239

IOC - Indicator of Compromise (3)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

ID	IP-adress	Hostname	Skådespelare	Identified	Typ	Förtroende
1	106.184.1.38		Suckfly	20/12/2020	verified	Hög
2	XXX.XXX.XXX.XXX	xxxxxxx.xxxxxxx-xx.xxx	Xxxxxxx	20/12/2020	verified	Hög
3	XXX.XX.XX.XXX	xxxxx-xxx.xxxxxxx.xxxxxx.xxx	Xxxxxxx	20/12/2020	verified	Hög

TTP - Tactics, Techniques, Procedures (3)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

ID	Technique	Klass	Sårbarheter	Åtkomstvektor	Typ	Förtroende
1		CAPEC-114	CWE-287	Unknown Vulnerability	predictive	Hög
2	TXXXX	CAPEC-10	CWE-XX, CWE-XX, CWE-XXX	Xxx Xxxxxxxxx	predictive	Hög
3	TXXXX	CAPEC-38	CWE-XXX, CWE-XXX	Xxxxxxxxx Xxxxxx Xxxx	predictive	Hög

IOA - Indicator of Attack (2)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

ID	Klass	Indicator	Typ	Förtroende
1	File	ipsconnect.php	predictive	Hög
2	Argument	xx	predictive	Låg

Referenser (3)

The following list contains external sources which discuss the actor and the associated activities:

◂ TidigareÖversiktNästa ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!