mirror of
https://github.com/vuldb/cyber_threat_intelligence
synced 2024-07-05 18:01:41 +00:00
49 KiB
49 KiB
Romania Unknown - Cyber Threat Intelligence
These indicators were reported, collected, and generated during the VulDB CTI analysis of the actor known as Romania Unknown. The activity monitoring correlates data from social media, forums, chat rooms, and darknet markets. It helps to determine associated actors, specific activities, expected intentions, emerging research, and ongoing attacks. Our unique predictive model uses big data to forecast activities and their characteristics.
Live data and more analysis capabilities are available at https://vuldb.com/?actor.romania_unknown
Countries
These countries are directly (e.g. origin of attacks) or indirectly (e.g. access by proxy) associated with Romania Unknown:
There are 29 more country items available. Please use our online service to access the data.
IOC - Indicator of Compromise
These indicators of compromise (IOC) indicate associated network resources which are known to be part of research and attack activities of Romania Unknown.
| ID | IP address | Hostname | Campaign | Confidence |
|---|---|---|---|---|
| 1 | 2.56.148.0 | - | - | High |
| 2 | 2.56.166.0 | - | - | High |
| 3 | 2.57.120.0 | - | - | High |
| 4 | 2.57.144.0 | - | - | High |
| 5 | 2.58.128.0 | - | - | High |
| 6 | 2.59.8.0 | - | - | High |
| 7 | 2.59.10.0 | - | - | High |
| 8 | 2.59.12.0 | - | - | High |
| 9 | 5.2.128.0 | static-5-2-128-0.rdsnet.ro | - | High |
| 10 | 5.12.0.0 | 5-12-0-0.residential.rdsnet.ro | - | High |
| 11 | 5.35.208.0 | - | - | High |
| 12 | 5.62.61.104 | r-104-61-62-5.consumer-pool.prcdn.net | - | High |
| 13 | 5.62.63.80 | r-80-63-62-5.consumer-pool.prcdn.net | - | High |
| 14 | 5.83.32.0 | - | - | High |
| 15 | 5.101.45.0 | - | - | High |
| 16 | 5.101.92.0 | subnet.llhost-inc.com | - | High |
| 17 | 5.104.158.0 | - | - | High |
| 18 | 5.154.170.0 | - | - | High |
| 19 | 5.154.172.0 | - | - | High |
| 20 | 5.154.175.0 | - | - | High |
| 21 | 5.154.176.0 | - | - | High |
| 22 | 5.154.180.0 | - | - | High |
| 23 | 5.154.185.0 | - | - | High |
| 24 | 5.154.186.0 | - | - | High |
| 25 | 5.154.190.0 | - | - | High |
| 26 | 5.154.224.0 | - | - | High |
| 27 | 5.154.226.0 | host-5-154-226-0.zadata.de | - | High |
| 28 | 5.154.230.0 | host-5-154-230-0.zadata.de | - | High |
| 29 | 5.154.233.0 | - | - | High |
| 30 | 5.154.234.0 | - | - | High |
| 31 | 5.154.236.0 | - | - | High |
| 32 | 5.154.241.0 | - | - | High |
| 33 | 5.154.243.0 | - | - | High |
| 34 | 5.154.252.0 | - | - | High |
| 35 | 5.157.128.0 | - | - | High |
| 36 | 5.180.156.0 | - | - | High |
| 37 | 5.181.68.0 | - | - | High |
| 38 | 5.183.168.0 | - | - | High |
| 39 | 5.183.208.0 | - | - | High |
| 40 | 5.188.178.0 | - | - | High |
| 41 | 5.188.205.0 | - | - | High |
| 42 | 5.189.217.0 | subnet.reserved.ispsystem.net | - | High |
| 43 | 5.252.178.0 | 5-252-178-0.mivocloud.com | - | High |
| 44 | 5.253.52.0 | - | - | High |
| 45 | 5.253.124.0 | - | - | High |
| 46 | 5.253.188.0 | - | - | High |
| 47 | 5.254.48.0 | - | - | High |
| 48 | 5.254.52.0 | - | - | High |
| 49 | 5.254.54.0 | - | - | High |
| 50 | 5.254.56.0 | - | - | High |
| 51 | 5.254.65.0 | - | - | High |
| 52 | 5.254.65.8 | - | - | High |
| 53 | 5.254.65.10 | fra-in3-01rs.voxility.net | - | High |
| 54 | 5.254.65.12 | - | - | High |
| 55 | 5.254.65.16 | - | - | High |
| 56 | 5.254.65.32 | - | - | High |
| 57 | 5.254.65.64 | - | - | High |
| 58 | 5.254.65.128 | - | - | High |
| 59 | 5.254.66.0 | protected.javapipe.com | - | High |
| 60 | 5.254.69.0 | - | - | High |
| 61 | 5.254.73.0 | - | - | High |
| 62 | 5.254.73.128 | - | - | High |
| 63 | 5.254.73.192 | - | - | High |
| 64 | 5.254.73.208 | - | - | High |
| 65 | 5.254.73.224 | - | - | High |
| 66 | 5.254.78.80 | - | - | High |
| 67 | 5.254.83.0 | - | - | High |
| 68 | 5.254.92.0 | - | - | High |
| 69 | 5.254.96.0 | - | - | High |
| 70 | 5.254.112.224 | - | - | High |
| 71 | 5.254.113.0 | - | - | High |
| 72 | 5.254.116.0 | - | - | High |
| 73 | 5.254.118.0 | - | - | High |
| 74 | 5.254.125.0 | - | - | High |
| 75 | 8.43.226.0 | - | - | High |
| 76 | 23.229.117.0 | - | - | High |
| 77 | 31.5.0.0 | - | - | High |
| 78 | 31.6.14.0 | - | - | High |
| 79 | 31.14.8.0 | - | - | High |
| 80 | 31.14.10.0 | - | - | High |
| 81 | 31.14.12.0 | 0-namebox.ro | - | High |
| 82 | 31.14.16.0 | 31.14.16.0.banat-net.ro | - | High |
| 83 | 31.14.24.0 | - | - | High |
| 84 | 31.14.34.0 | - | - | High |
| 85 | 31.14.36.0 | - | - | High |
| 86 | 31.14.40.0 | - | - | High |
| 87 | 31.14.45.0 | - | - | High |
| 88 | 31.14.49.0 | - | - | High |
| 89 | 31.14.53.0 | - | - | High |
| 90 | 31.14.54.0 | - | - | High |
| 91 | 31.14.56.0 | cw31-ad-ef0.romania-webhosting.com | - | High |
| 92 | 31.14.64.0 | - | - | High |
| 93 | 31.14.68.0 | - | - | High |
| 94 | 31.14.100.0 | - | - | High |
| 95 | 31.14.102.0 | - | - | High |
| 96 | 31.14.104.0 | - | - | High |
| 97 | 31.14.160.0 | - | - | High |
| 98 | 31.14.163.0 | - | - | High |
| 99 | 31.14.192.0 | - | - | High |
| 100 | 31.14.218.0 | - | - | High |
| 101 | 31.14.220.0 | - | - | High |
| 102 | 31.14.224.0 | - | - | High |
| 103 | 31.14.232.0 | - | - | High |
| 104 | 31.14.236.0 | - | - | High |
| 105 | 31.14.252.0 | no-rdns.clues.ro | - | High |
| 106 | 31.14.254.0 | - | - | High |
| 107 | 31.42.128.0 | - | - | High |
| 108 | 31.46.44.0 | - | - | High |
| 109 | 31.47.208.0 | - | - | High |
| 110 | 31.130.240.0 | - | - | High |
| 111 | 31.131.8.0 | - | - | High |
| 112 | 31.131.40.0 | no-reverse.techno-blade.net | - | High |
| 113 | 31.131.160.0 | - | - | High |
| 114 | 31.132.192.0 | - | - | High |
| 115 | 31.133.24.0 | mx1.pancakecorn.com | - | High |
| 116 | 31.133.192.0 | - | - | High |
| 117 | 31.135.0.0 | - | - | High |
| 118 | 31.220.128.0 | - | - | High |
| 119 | 34.99.178.0 | 0.178.99.34.bc.googleusercontent.com | - | Medium |
| 120 | 34.99.250.0 | 0.250.99.34.bc.googleusercontent.com | - | Medium |
| 121 | 34.103.194.0 | 0.194.103.34.bc.googleusercontent.com | - | Medium |
| 122 | 37.35.32.0 | - | - | High |
| 123 | 37.35.183.138 | 138.183.35.37.dynamic.jazztel.es | - | High |
| 124 | 37.43.3.0 | - | - | High |
| 125 | 37.59.149.28 | logs.nethink.com | - | High |
| 126 | 37.97.112.0 | - | - | High |
| 127 | 37.97.120.0 | - | - | High |
| 128 | 37.120.129.0 | - | - | High |
| 129 | 37.120.140.0 | - | - | High |
| 130 | 37.120.146.0 | - | - | High |
| 131 | 37.120.150.0 | rfl0.rottenspite.us | - | High |
| 132 | 37.120.157.0 | - | - | High |
| 133 | 37.120.206.0 | - | - | High |
| 134 | 37.120.214.0 | - | - | High |
| 135 | 37.120.224.0 | - | - | High |
| 136 | 37.128.224.0 | - | - | High |
| 137 | 37.143.160.0 | - | - | High |
| 138 | 37.153.133.0 | - | - | High |
| 139 | 37.153.136.0 | - | - | High |
| 140 | 37.153.140.0 | 0.140.153.37.rev.aif.tel | - | High |
| 141 | 37.153.152.0 | - | - | High |
| 142 | 37.156.4.0 | - | - | High |
| 143 | 37.156.7.0 | - | - | High |
| 144 | 37.156.32.0 | - | - | High |
| 145 | 37.156.35.0 | - | - | High |
| 146 | 37.156.36.0 | - | - | High |
| 147 | 37.156.67.0 | - | - | High |
| 148 | 37.156.68.0 | - | - | High |
| 149 | 37.156.71.0 | - | - | High |
| 150 | 37.156.172.0 | - | - | High |
| 151 | 37.156.174.0 | 37-156-174-0.virtualsolution.net | - | High |
| 152 | 37.156.180.0 | cw37-aef-ah00.romania-webhosting.com | - | High |
| 153 | 37.156.224.0 | - | - | High |
| 154 | 37.156.227.0 | - | - | High |
| 155 | 37.156.244.0 | network.mi.dc3.vhosting-it.com | - | High |
| 156 | 37.221.160.0 | - | - | High |
| 157 | 37.221.168.0 | - | - | High |
| 158 | 37.251.128.0 | - | - | High |
| 159 | 37.251.160.0 | - | - | High |
| 160 | 37.251.192.0 | - | - | High |
| 161 | 37.251.208.0 | - | - | High |
| 162 | 37.251.248.0 | - | - | High |
| 163 | 44.182.52.0 | - | - | High |
| 164 | 45.8.44.0 | - | - | High |
| 165 | 45.9.176.0 | - | - | High |
| 166 | 45.10.96.0 | - | - | High |
| 167 | 45.11.181.0 | - | - | High |
| 168 | 45.12.56.0 | - | - | High |
| 169 | 45.12.70.190 | gall-preamble.alltieinc.com | - | High |
| 170 | 45.12.71.190 | - | - | High |
| 171 | 45.12.240.0 | 45.12.240.0.g.network | - | High |
| 172 | 45.13.36.0 | - | - | High |
| 173 | 45.13.136.0 | - | - | High |
| 174 | 45.13.176.0 | - | - | High |
| 175 | 45.13.212.0 | - | - | High |
| 176 | 45.14.56.0 | - | - | High |
| 177 | 45.14.100.0 | - | - | High |
| 178 | 45.14.148.0 | o0.p40.mailjet.com | - | High |
| 179 | 45.14.236.0 | - | - | High |
| 180 | 45.15.20.0 | - | - | High |
| 181 | 45.43.65.0 | - | - | High |
| 182 | 45.67.36.0 | - | - | High |
| 183 | 45.80.148.0 | - | - | High |
| 184 | 45.80.150.0 | - | - | High |
| 185 | 45.80.200.0 | - | - | High |
| 186 | 45.80.244.0 | 45.80.244.0.g.network | - | High |
| 187 | 45.81.161.0 | - | - | High |
| 188 | 45.82.24.0 | - | - | High |
| 189 | 45.83.56.0 | 45-83-56-0.virtualsolution.net | - | High |
| 190 | 45.83.89.0 | - | - | High |
| 191 | 45.83.224.0 | - | - | High |
| 192 | 45.86.136.0 | - | - | High |
| 193 | 45.86.144.0 | 45-86-144-0.virtualsolution.net | - | High |
| 194 | 45.86.220.0 | - | - | High |
| 195 | 45.86.240.0 | - | - | High |
| 196 | 45.87.120.0 | undefined.hostname.localhost | - | High |
| 197 | 45.88.172.0 | - | - | High |
| 198 | 45.89.164.0 | - | - | High |
| 199 | 45.89.173.0 | - | - | High |
| 200 | 45.89.175.0 | - | - | High |
| 201 | 45.90.128.0 | - | - | High |
| 202 | 45.90.140.0 | - | - | High |
| 203 | 45.91.4.0 | wehost.ro | - | High |
| 204 | 45.91.36.0 | - | - | High |
| 205 | 45.91.40.0 | - | - | High |
| 206 | 45.93.128.0 | - | - | High |
| 207 | 45.93.196.0 | - | - | High |
| 208 | 45.93.216.0 | - | - | High |
| 209 | 45.95.220.0 | - | - | High |
| 210 | 45.95.228.0 | - | - | High |
| 211 | 45.95.244.0 | - | - | High |
| 212 | 45.128.116.0 | - | - | High |
| 213 | 45.128.168.0 | - | - | High |
| 214 | 45.129.64.0 | - | - | High |
| 215 | 45.131.92.0 | - | - | High |
| 216 | 45.131.104.0 | - | - | High |
| 217 | 45.131.128.0 | - | - | High |
| 218 | 45.131.140.0 | - | - | High |
| 219 | 45.131.224.0 | - | - | High |
| 220 | 45.133.120.0 | 45.133.120.0.g.network | - | High |
| 221 | 45.133.128.0 | 45.133.128.0.g.network | - | High |
| 222 | 45.133.136.0 | - | - | High |
| 223 | 45.133.152.0 | - | - | High |
| 224 | 45.133.180.0 | - | - | High |
| 225 | 45.134.160.0 | - | - | High |
| 226 | 45.135.224.0 | - | - | High |
| 227 | 45.136.40.0 | - | - | High |
| 228 | 45.137.0.0 | - | - | High |
| 229 | 45.138.64.0 | - | - | High |
| 230 | 45.139.68.0 | - | - | High |
| 231 | 45.139.232.0 | - | - | High |
| 232 | 45.140.104.0 | - | - | High |
| 233 | 45.142.8.0 | - | - | High |
| 234 | 45.143.172.0 | - | - | High |
| 235 | 45.143.228.0 | - | - | High |
| 236 | 45.145.16.0 | - | - | High |
| 237 | 45.145.48.0 | 45.145.48.0.g.network | - | High |
| 238 | 45.147.60.0 | - | - | High |
| 239 | 45.148.200.0 | - | - | High |
| 240 | 45.149.20.0 | - | - | High |
| 241 | 45.150.4.0 | - | - | High |
| 242 | 45.150.80.0 | - | - | High |
| 243 | 45.150.252.0 | - | - | High |
| 244 | 45.152.232.0 | 45.152.232.0.g.network | - | High |
| 245 | 45.153.88.0 | s8-0.gazduirejocuri.ro | - | High |
| 246 | 45.156.236.0 | - | - | High |
| 247 | 45.158.132.0 | - | - | High |
| 248 | 45.158.212.0 | - | - | High |
| 249 | 45.159.120.0 | - | - | High |
| 250 | 45.159.132.0 | - | - | High |
| 251 | 46.19.104.0 | - | - | High |
| 252 | 46.20.128.0 | - | - | High |
| 253 | 46.51.108.0 | - | - | High |
| 254 | 46.97.0.0 | - | - | High |
| 255 | 46.102.0.0 | - | - | High |
| 256 | 46.102.64.0 | - | - | High |
| 257 | 46.102.101.0 | host-46-102-101-0.access.redder.net | - | High |
| 258 | 46.102.104.0 | 46.102.104.0.gazduiresite.ro | - | High |
| 259 | 46.102.108.0 | - | - | High |
| 260 | 46.102.118.0 | - | - | High |
| 261 | 46.102.144.0 | - | - | High |
| 262 | 46.102.153.0 | - | - | High |
| 263 | 46.102.155.0 | - | - | High |
| 264 | 46.102.156.0 | - | - | High |
| 265 | 46.102.168.0 | - | - | High |
| 266 | 46.102.173.0 | - | - | High |
| 267 | 46.102.175.0 | - | - | High |
| 268 | 46.102.190.0 | - | - | High |
| 269 | 46.102.232.0 | - | - | High |
| 270 | 46.102.236.0 | - | - | High |
| 271 | 46.102.238.0 | - | - | High |
| 272 | 46.102.249.0 | 0-123-static.mxserver.ro | - | High |
| 273 | 46.102.250.0 | - | - | High |
| 274 | 46.102.254.0 | - | - | High |
| 275 | 46.108.39.49 | - | - | High |
| 276 | 46.148.113.0 | subnet.reserved.ispsystem.net | - | High |
| 277 | 46.151.32.0 | - | - | High |
| 278 | 46.151.160.0 | - | - | High |
| 279 | 46.151.224.0 | - | - | High |
| 280 | 46.173.240.0 | - | - | High |
| 281 | 46.174.144.0 | 46.174.144.0.emag.ro | - | High |
| 282 | 46.174.200.0 | - | - | High |
| 283 | 46.214.0.0 | 46-214-0-0.next-gen.ro | - | High |
| 284 | 46.232.208.0 | - | - | High |
| 285 | 46.243.112.0 | - | - | High |
| 286 | 46.243.223.0 | - | - | High |
| 287 | 57.90.176.0 | - | - | High |
| 288 | 62.67.16.216 | - | - | High |
| 289 | 62.121.64.0 | - | - | High |
| 290 | 62.140.26.0 | - | - | High |
| 291 | 62.140.26.128 | - | - | High |
| 292 | 62.140.26.192 | - | - | High |
| 293 | 62.140.26.208 | - | - | High |
| 294 | 62.140.26.224 | - | - | High |
| 295 | 62.140.27.0 | - | - | High |
| 296 | 62.140.27.64 | - | - | High |
| 297 | 62.140.27.96 | - | - | High |
| 298 | 62.140.27.112 | - | - | High |
| 299 | 62.140.27.124 | - | - | High |
| 300 | 62.140.27.128 | - | - | High |
| 301 | 62.186.77.64 | - | - | High |
| 302 | 62.186.102.224 | - | - | High |
| 303 | 62.187.218.0 | - | - | High |
| 304 | 62.216.64.0 | - | - | High |
| 305 | 62.217.192.0 | - | - | High |
| 306 | 62.231.64.0 | 62-231-64-0.rdsnet.ro | - | High |
| 307 | 63.167.243.0 | - | - | High |
| 308 | 64.43.64.0 | - | - | High |
| 309 | 66.102.34.0 | - | - | High |
| 310 | 69.4.94.48 | 48.94.4.69.in-addr.arpa | - | High |
| 311 | 69.41.54.0 | - | - | High |
| 312 | 69.41.56.0 | - | - | High |
| 313 | 69.41.60.0 | - | - | High |
| 314 | 77.36.0.0 | ip-77-36-0-0.gvm.ro | - | High |
| 315 | 77.67.54.96 | - | - | High |
| 316 | 77.67.104.64 | - | - | High |
| 317 | 77.81.0.0 | - | - | High |
| 318 | 77.81.2.0 | - | - | High |
| 319 | 77.81.4.0 | 77.81.4.0.netromholding.ro | - | High |
| 320 | 77.81.8.0 | - | - | High |
| 321 | 77.81.16.0 | - | - | High |
| 322 | 77.81.48.0 | 77.81.48.0.static.netlog.ro | - | High |
| 323 | 77.81.64.0 | - | - | High |
| 324 | 77.81.72.0 | - | - | High |
| 325 | 77.81.74.0 | - | - | High |
| 326 | 77.81.87.0 | - | - | High |
| 327 | 77.81.88.0 | - | - | High |
| 328 | 77.81.92.0 | - | - | High |
| 329 | 77.81.97.0 | unused.simoshop.ro | - | High |
| 330 | 77.81.98.0 | no-rdns.clues.ro | - | High |
| 331 | 77.81.100.0 | - | - | High |
| 332 | 77.81.104.0 | - | - | High |
| 333 | 77.81.122.0 | - | - | High |
| 334 | 77.81.136.0 | - | - | High |
| 335 | 77.81.140.0 | - | - | High |
| 336 | 77.81.142.0 | - | - | High |
| 337 | 77.81.164.0 | - | - | High |
| 338 | 77.81.166.0 | - | - | High |
| 339 | 77.81.176.0 | - | - | High |
| 340 | 77.81.184.0 | - | - | High |
| 341 | 77.81.190.0 | - | - | High |
| 342 | 77.83.220.0 | - | - | High |
| 343 | 77.83.243.0 | - | - | High |
| 344 | 77.83.248.0 | - | - | High |
| 345 | 77.87.88.0 | - | - | High |
| 346 | 77.93.160.0 | - | - | High |
| 347 | 77.232.192.0 | - | - | High |
| 348 | 78.31.56.0 | - | - | High |
| 349 | 78.31.128.0 | netcorr.com | - | High |
| 350 | 78.31.164.0 | - | - | High |
| 351 | 78.96.0.0 | - | - | High |
| 352 | 78.108.217.0 | - | - | High |
| 353 | 79.110.23.0 | - | - | High |
| 354 | 79.110.26.0 | - | - | High |
| 355 | 79.110.52.0 | - | - | High |
| 356 | 79.112.0.0 | 79-112-0-000.iasi.fiberlink.ro | - | High |
| 357 | 79.143.49.0 | - | - | High |
| 358 | 79.180.175.219 | bzq-79-180-175-219.red.bezeqint.net | - | High |
| 359 | 80.74.48.0 | 000-048-074-080.ip-addr.inexio.net | - | High |
| 360 | 80.86.97.203 | - | - | High |
| 361 | 80.86.99.0 | - | - | High |
| 362 | 80.86.100.0 | AuctionWatch-NET.iNES.RO | - | High |
| 363 | 80.86.104.0 | Dialup-Pool.iNES.RO | - | High |
| 364 | 80.86.112.0 | - | - | High |
| 365 | 80.96.0.0 | - | - | High |
| 366 | 80.231.208.0 | if-be-5-100.ecore1.bu0-bucharest.as6453.net | - | High |
| 367 | 80.248.224.140 | - | - | High |
| 368 | 81.2.149.116 | - | - | High |
| 369 | 81.12.128.0 | - | - | High |
| 370 | 81.18.64.0 | - | - | High |
| 371 | 81.22.144.0 | 81-22-144-0.next-gen.ro | - | High |
| 372 | 81.24.16.0 | ip4-81-24-16-0.euroweb.ro | - | High |
| 373 | 81.26.156.0 | - | - | High |
| 374 | 81.26.158.0 | - | - | High |
| 375 | 81.89.0.0 | - | - | High |
| 376 | 81.161.0.0 | - | - | High |
| 377 | 81.161.48.0 | - | - | High |
| 378 | 81.161.59.0 | - | - | High |
| 379 | 81.180.0.0 | - | - | High |
| 380 | 81.180.80.0 | - | - | High |
| 381 | 81.180.96.0 | - | - | High |
| 382 | 81.180.128.0 | - | - | High |
| 383 | 81.181.0.0 | - | - | High |
| 384 | 81.196.0.0 | static-81-196-0-0.rdsnet.ro | - | High |
| 385 | 82.76.0.0 | 82-76-0-0.rdsnet.ro | - | High |
| 386 | 82.137.0.0 | 82-137-0-0.rdsnet.ro | - | High |
| 387 | 82.208.128.0 | - | - | High |
| 388 | 82.210.128.0 | - | - | High |
| 389 | 83.97.20.0 | 0.20.97.83.ro.ovo.sc | - | High |
| 390 | 83.97.22.0 | - | - | High |
| 391 | 83.103.128.0 | - | - | High |
| 392 | 83.150.236.0 | route.microhost.pl | - | High |
| 393 | 83.166.192.0 | - | - | High |
| 394 | 84.1.102.0 | - | - | High |
| 395 | 84.1.105.120 | - | - | High |
| 396 | 84.2.24.2 | - | - | High |
| 397 | 84.47.132.0 | - | - | High |
| 398 | 84.47.146.0 | - | - | High |
| 399 | 84.47.154.0 | - | - | High |
| 400 | 84.47.166.0 | - | - | High |
| 401 | 84.47.179.0 | - | - | High |
| 402 | 84.47.184.0 | - | - | High |
| 403 | 84.47.189.0 | - | - | High |
| 404 | 84.117.0.0 | - | - | High |
| 405 | 84.232.128.0 | 84-232-128-0.dynamic.brasov.rdsnet.ro | - | High |
| 406 | 84.234.96.0 | - | - | High |
| 407 | 84.239.0.0 | - | - | High |
| 408 | 84.239.32.0 | - | - | High |
| 409 | 84.239.40.0 | - | - | High |
| 410 | 84.239.44.0 | - | - | High |
| 411 | 84.239.46.0 | - | - | High |
| 412 | 84.239.48.0 | - | - | High |
| 413 | 84.243.64.0 | - | - | High |
| 414 | 84.247.1.0 | - | - | High |
| 415 | 84.247.16.0 | rev-dns-0.shift.ro | - | High |
| 416 | 84.247.22.0 | - | - | High |
| 417 | 84.247.28.0 | - | - | High |
| 418 | 84.247.36.0 | - | - | High |
| 419 | 84.247.46.0 | - | - | High |
| 420 | 84.247.48.0 | - | - | High |
| 421 | 84.247.54.0 | - | - | High |
| 422 | 84.247.56.0 | - | - | High |
| 423 | 84.247.58.0 | - | - | High |
| 424 | 84.247.60.0 | - | - | High |
| 425 | 84.247.63.0 | - | - | High |
| 426 | 84.247.64.0 | - | - | High |
| 427 | 85.9.0.0 | ip4-85-9-0-0.gtstelecom.ro | - | High |
| 428 | 85.91.105.0 | - | - | High |
| 429 | 85.91.107.0 | - | - | High |
| 430 | 85.91.108.0 | - | - | High |
| 431 | 85.91.116.0 | - | - | High |
| 432 | 85.93.0.0 | - | - | High |
| 433 | 85.120.0.0 | - | - | High |
| 434 | 85.120.128.0 | - | - | High |
| 435 | 85.120.160.0 | - | - | High |
| 436 | 85.120.168.0 | - | - | High |
| 437 | 85.120.174.0 | - | - | High |
| 438 | 85.120.176.0 | - | - | High |
| 439 | 85.120.192.0 | - | - | High |
| 440 | 85.121.0.0 | - | - | High |
| 441 | 85.122.0.0 | - | - | High |
| 442 | 85.158.216.0 | - | - | High |
| 443 | 85.158.218.0 | - | - | High |
| 444 | 85.158.220.0 | - | - | High |
| 445 | 85.186.0.0 | - | - | High |
| 446 | 85.204.0.0 | - | - | High |
| 447 | 85.204.16.0 | - | - | High |
| 448 | 85.204.22.0 | - | - | High |
| 449 | 85.204.26.0 | - | - | High |
| 450 | 85.204.32.0 | ip4-85-204-32-0.euroweb.ro | - | High |
| 451 | 85.204.40.0 | - | - | High |
| 452 | 85.204.43.0 | unregistered.ges.com.ro | - | High |
| 453 | 85.204.44.0 | - | - | High |
| 454 | 85.204.48.0 | - | - | High |
| 455 | 85.204.52.0 | - | - | High |
| 456 | 85.204.56.0 | - | - | High |
| 457 | 85.204.68.0 | - | - | High |
| 458 | 85.204.73.0 | unregistered.ges.com.ro | - | High |
| 459 | 85.204.75.0 | ip4-85-204-75-0.gtstelecom.ro | - | High |
| 460 | 85.204.78.0 | - | - | High |
| 461 | 85.204.98.0 | - | - | High |
| 462 | 85.204.100.0 | ip4-85-204-100-0.euroweb.ro | - | High |
| 463 | 85.204.106.0 | - | - | High |
| 464 | 85.204.108.0 | - | - | High |
| 465 | 85.204.110.0 | - | - | High |
| 466 | 85.204.116.0 | - | - | High |
| 467 | 85.204.118.0 | - | - | High |
| 468 | 85.204.122.0 | - | - | High |
| 469 | 85.204.124.0 | 85-204-124-0.com | - | High |
| 470 | 85.204.134.0 | - | - | High |
| 471 | 85.204.138.0 | 85.204.138.0.banat-net.ro | - | High |
| 472 | 85.204.145.0 | local-B-0.psiline.ro | - | High |
| 473 | 85.204.146.0 | - | - | High |
| 474 | 85.204.164.0 | 85-204-164-0.infinitynetwork.ro | - | High |
| 475 | 85.204.172.0 | - | - | High |
| 476 | 85.204.184.0 | - | - | High |
| 477 | 85.204.193.0 | 85-204-193-0.dcn.ro | - | High |
| 478 | 85.204.196.0 | - | - | High |
| 479 | 85.204.224.0 | alfa.mediasat.ro | - | High |
| 480 | 85.204.240.0 | - | - | High |
| 481 | 85.204.244.0 | - | - | High |
| 482 | 85.204.246.0 | - | - | High |
| 483 | 85.204.248.0 | 85.204.248.0.smartolt.com | - | High |
| 484 | 85.204.250.0 | - | - | High |
| 485 | 85.204.252.0 | 85.204.252.0.forcehost.ro | - | High |
| 486 | 85.208.28.0 | - | - | High |
| 487 | 85.208.36.0 | - | - | High |
| 488 | 85.255.112.0 | - | - | High |
| 489 | 86.34.0.0 | - | - | High |
| 490 | 86.104.3.0 | - | - | High |
| 491 | 86.104.4.0 | - | - | High |
| 492 | 86.104.7.0 | - | - | High |
| 493 | 86.104.8.0 | - | - | High |
| 494 | 86.104.10.0 | - | - | High |
| 495 | 86.104.13.0 | - | - | High |
| 496 | 86.104.16.0 | - | - | High |
| 497 | 86.104.30.0 | - | - | High |
| 498 | 86.104.65.0 | - | - | High |
| 499 | 86.104.66.0 | - | - | High |
| 500 | 86.104.72.0 | - | - | High |
| 501 | 86.104.124.0 | - | - | High |
| 502 | 86.104.128.0 | - | - | High |
| 503 | 86.104.132.0 | - | - | High |
| 504 | 86.104.136.0 | - | - | High |
| 505 | 86.104.144.0 | - | - | High |
| 506 | 86.104.176.0 | - | - | High |
| 507 | 86.104.180.0 | - | - | High |
| 508 | 86.104.182.0 | - | - | High |
| 509 | 86.104.184.0 | - | - | High |
| 510 | 86.104.192.0 | - | - | High |
| 511 | 86.104.210.0 | - | - | High |
| 512 | 86.104.214.0 | - | - | High |
| 513 | 86.104.216.0 | - | - | High |
| 514 | 86.104.220.0 | - | - | High |
| 515 | 86.104.227.0 | - | - | High |
| 516 | 86.104.230.0 | - | - | High |
| 517 | 86.104.254.0 | static-86.104.254.0.skaleweb.ro | - | High |
| 518 | 86.105.0.0 | 86-105-0-0.static.razorblue.net.uk | - | High |
| 519 | 86.105.4.0 | - | - | High |
| 520 | 86.105.9.0 | - | - | High |
| 521 | 86.105.14.0 | network.to.dc2.vhosting-it.com | - | High |
| 522 | 86.105.16.0 | - | - | High |
| 523 | 86.105.19.0 | - | - | High |
| 524 | 86.105.25.0 | - | - | High |
| 525 | 86.105.26.0 | - | - | High |
| 526 | 86.105.32.0 | - | - | High |
| 527 | 86.105.64.0 | - | - | High |
| 528 | 86.105.88.0 | - | - | High |
| 529 | 86.105.108.0 | client.stsisp.ro | - | High |
| 530 | 86.105.120.0 | - | - | High |
| 531 | 86.105.144.0 | - | - | High |
| 532 | 86.105.151.0 | - | - | High |
| 533 | 86.105.152.0 | - | - | High |
| 534 | 86.105.164.0 | undersides-genies-specifiers-appointively.traznet.net | - | High |
| 535 | 86.105.169.0 | - | - | High |
| 536 | 86.105.170.0 | - | - | High |
| 537 | 86.105.180.0 | - | - | High |
| 538 | 86.105.186.0 | - | - | High |
| 539 | 86.105.192.0 | network.netbridge.ro | - | High |
| 540 | 86.105.197.0 | - | - | High |
| 541 | 86.105.198.0 | - | - | High |
| 542 | 86.105.204.0 | - | - | High |
| 543 | 86.105.214.0 | - | - | High |
| 544 | 86.105.216.0 | client.stsisp.ro | - | High |
| 545 | 86.105.220.0 | - | - | High |
| 546 | 86.105.224.0 | - | - | High |
| 547 | 86.105.226.0 | - | - | High |
| 548 | 86.105.228.0 | cw86-a0e-bbh0.romania-webhosting.com | - | High |
| 549 | 86.105.231.0 | - | - | High |
| 550 | 86.105.233.0 | - | - | High |
| 551 | 86.105.241.0 | - | - | High |
| 552 | 86.105.252.0 | - | - | High |
| 553 | 86.106.8.0 | - | - | High |
| 554 | 86.106.20.0 | - | - | High |
| 555 | 86.106.22.0 | 566a1600.rev.snt.net.pl | - | High |
| 556 | 86.106.26.0 | - | - | High |
| 557 | 86.106.30.0 | - | - | High |
| 558 | 86.106.32.0 | - | - | High |
| 559 | 86.106.72.0 | - | - | High |
| 560 | 86.106.74.0 | - | - | High |
| 561 | 86.106.77.0 | - | - | High |
| 562 | 86.106.78.0 | 86.106.78.0.nconsulting.ro | - | High |
| 563 | 86.106.80.0 | - | - | High |
| 564 | 86.106.88.0 | - | - | High |
| 565 | 86.106.90.0 | - | - | High |
| 566 | 86.106.97.0 | - | - | High |
| 567 | 86.106.98.0 | - | - | High |
| 568 | 86.106.100.0 | - | - | High |
| 569 | 86.106.103.0 | - | - | High |
| 570 | 86.106.104.0 | - | - | High |
| 571 | 86.106.108.0 | - | - | High |
| 572 | 86.106.112.0 | - | - | High |
| 573 | 86.106.119.0 | - | - | High |
| 574 | 86.106.121.0 | - | - | High |
| 575 | 86.106.124.0 | - | - | High |
| 576 | 86.106.128.0 | - | - | High |
| 577 | 86.106.130.0 | - | - | High |
| 578 | 86.106.132.0 | - | - | High |
| 579 | 86.106.134.0 | - | - | High |
| 580 | 86.106.136.0 | no-rdns.ukwsd.com | - | High |
| 581 | 86.106.143.0 | - | - | High |
| 582 | 86.106.156.0 | - | - | High |
| 583 | 86.106.168.0 | - | - | High |
| 584 | 86.106.173.0 | - | - | High |
| 585 | 86.106.176.0 | - | - | High |
| 586 | 86.106.188.0 | clx.netpont.ro | - | High |
| 587 | 86.106.200.0 | - | - | High |
| 588 | ... | ... | ... | ... |
There are 2348 more IOC items available. Please use our online service to access the data.
TTP - Tactics, Techniques, Procedures
Tactics, techniques, and procedures (TTP) summarize the suspected MITRE ATT&CK techniques used by Romania Unknown. This data is unique as it uses our predictive model for actor profiling.
| ID | Technique | Weakness | Description | Confidence |
|---|---|---|---|---|
| 1 | T1006 | CWE-21, CWE-22, CWE-23 | Pathname Traversal | High |
| 2 | T1040 | CWE-294 | Authentication Bypass by Capture-replay | High |
| 3 | T1055 | CWE-74 | Injection | High |
| 4 | T1059 | CWE-88, CWE-94, CWE-1321 | Cross Site Scripting | High |
| 5 | T1059.007 | CWE-79, CWE-80, CWE-87 | Cross Site Scripting | High |
| 6 | ... | ... | ... | ... |
There are 22 more TTP items available. Please use our online service to access the data.
IOA - Indicator of Attack
These indicators of attack (IOA) list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration by Romania Unknown. This data is unique as it uses our predictive model for actor profiling.
| ID | Type | Indicator | Confidence |
|---|---|---|---|
| 1 | File | .../gogo/ |
Medium |
| 2 | File | .github/workflows/combine-prs.yml |
High |
| 3 | File | /?admin/user.html |
High |
| 4 | File | /Admin/add-student.php |
High |
| 5 | File | /admin/api/admin/articles/ |
High |
| 6 | File | /admin/students/manage.php |
High |
| 7 | File | /adms/admin/?page=vehicles/sell_vehicle |
High |
| 8 | File | /adms/admin/?page=vehicles/view_transaction |
High |
| 9 | File | /api/user/upsert/<uuid> |
High |
| 10 | File | /apilog.php |
Medium |
| 11 | File | /appliance/users?action=edit |
High |
| 12 | File | /bin/httpd |
Medium |
| 13 | File | /cgi-bin/webadminget.cgi |
High |
| 14 | File | /config/getuser |
High |
| 15 | File | /connectors/index.php |
High |
| 16 | File | /dev/block/mmcblk0rpmb |
High |
| 17 | File | /DocSystem/Repos/getReposAllUsers.do |
High |
| 18 | File | /employeeview.php |
High |
| 19 | File | /etc/ldap.conf |
High |
| 20 | File | /etc/shadow |
Medium |
| 21 | File | /face-recognition-php/facepay-master/camera.php |
High |
| 22 | File | /forum/away.php |
High |
| 23 | File | /fos/admin/ajax.php?action=login |
High |
| 24 | File | /fos/admin/index.php?page=menu |
High |
| 25 | File | /h/calendar |
Medium |
| 26 | File | /h/compose |
Medium |
| 27 | File | /h/search?action=voicemail&action=listen |
High |
| 28 | File | /home/masterConsole |
High |
| 29 | File | /home/sendBroadcast |
High |
| 30 | File | /hrm/employeeadd.php |
High |
| 31 | File | /hrm/employeeview.php |
High |
| 32 | File | /index.php |
Medium |
| 33 | File | /items/view_item.php |
High |
| 34 | File | /jsoa/hntdCustomDesktopActionContent |
High |
| 35 | File | /lookin/info |
Medium |
| 36 | File | /manager/index.php |
High |
| 37 | File | /medical/inventories.php |
High |
| 38 | File | /modules/profile/index.php |
High |
| 39 | File | /modules/projects/vw_files.php |
High |
| 40 | File | /modules/public/calendar.php |
High |
| 41 | File | /MTFWU |
Low |
| 42 | File | /net/nfc/netlink.c |
High |
| 43 | File | /newsDia.php |
Medium |
| 44 | File | /opac/Actions.php?a=login |
High |
| 45 | File | /out.php |
Medium |
| 46 | File | /php-fusion/infusions/shoutbox_panel/shoutbox_archive.php |
High |
| 47 | File | /php-sms/classes/Master.php |
High |
| 48 | File | /php-sms/classes/SystemSettings.php |
High |
| 49 | File | /php_action/createOrder.php |
High |
| 50 | File | /php_action/editProductImage.php |
High |
| 51 | File | /proxy |
Low |
| 52 | File | /Redcock-Farm/farm/category.php |
High |
| 53 | File | /reports/rwservlet |
High |
| 54 | File | /ResiotQueryDBActive |
High |
| 55 | File | /sacco_shield/manage_user.php |
High |
| 56 | File | /SetTriggerWPS/PIN |
High |
| 57 | File | /spip.php |
Medium |
| 58 | File | /sqlitemanager/main.php?dbsel=-1%20or%2072%20=%2072 |
High |
| 59 | File | /src/png2swf.c |
High |
| 60 | File | /staff/bookdetails.php |
High |
| 61 | File | /uncpath/ |
Medium |
| 62 | File | /user/update_booking.php |
High |
| 63 | File | /vendor/htmlawed/htmlawed/htmLawedTest.php |
High |
| 64 | File | /Wedding-Management-PHP/admin/photos_add.php |
High |
| 65 | File | /wireless/security.asp |
High |
| 66 | File | /wordpress/wp-admin/options-general.php |
High |
| 67 | ... | ... | ... |
There are 588 more IOA items available (file, library, argument, input value, pattern, network port). Please use our online service to access the data.
References
The following list contains external sources which discuss the actor and the associated activities:
Literature
The following articles explain our unique predictive cyber threat intelligence:
- VulDB Cyber Threat Intelligence Documentation
- Cyber Threat Intelligence - Early Anticipation of Attacks
License
(c) 1997-2023 by vuldb.com. All data on this page is shared under the license CC BY-NC-SA 4.0. Questions? Check the FAQ, read the documentation or contact us!