mirror of
https://github.com/vuldb/cyber_threat_intelligence
synced 2024-07-09 03:41:50 +00:00
366 lines
24 KiB
Markdown
366 lines
24 KiB
Markdown
# Bulgaria Unknown - Cyber Threat Intelligence
|
|
|
|
These _indicators_ were reported, collected, and generated during the [VulDB CTI analysis](https://vuldb.com/?kb.cti) of the actor known as [Bulgaria Unknown](https://vuldb.com/?actor.bulgaria_unknown). The _activity monitoring_ correlates data from social media, forums, chat rooms, and darknet markets. It helps to determine associated actors, specific activities, expected intentions, emerging research, and ongoing attacks. Our unique _predictive model_ uses _big data_ to forecast activities and their characteristics.
|
|
|
|
_Live data_ and more _analysis capabilities_ are available at [https://vuldb.com/?actor.bulgaria_unknown](https://vuldb.com/?actor.bulgaria_unknown)
|
|
|
|
## Countries
|
|
|
|
These _countries_ are directly (e.g. origin of attacks) or indirectly (e.g. access by proxy) associated with Bulgaria Unknown:
|
|
|
|
* [US](https://vuldb.com/?country.us)
|
|
* [JP](https://vuldb.com/?country.jp)
|
|
* [ES](https://vuldb.com/?country.es)
|
|
* ...
|
|
|
|
There are 17 more country items available. Please use our online service to access the data.
|
|
|
|
## IOC - Indicator of Compromise
|
|
|
|
These _indicators of compromise_ (IOC) indicate associated network resources which are known to be part of research and attack activities of Bulgaria Unknown.
|
|
|
|
ID | IP address | Hostname | Campaign | Confidence
|
|
-- | ---------- | -------- | -------- | ----------
|
|
1 | [2.20.45.4](https://vuldb.com/?ip.2.20.45.4) | a2-20-45-4.deploy.static.akamaitechnologies.com | - | High
|
|
2 | [2.20.45.12](https://vuldb.com/?ip.2.20.45.12) | a2-20-45-12.deploy.static.akamaitechnologies.com | - | High
|
|
3 | [2.20.45.92](https://vuldb.com/?ip.2.20.45.92) | a2-20-45-92.deploy.static.akamaitechnologies.com | - | High
|
|
4 | [2.20.45.96](https://vuldb.com/?ip.2.20.45.96) | a2-20-45-96.deploy.static.akamaitechnologies.com | - | High
|
|
5 | [2.56.12.0](https://vuldb.com/?ip.2.56.12.0) | - | - | High
|
|
6 | [2.56.52.0](https://vuldb.com/?ip.2.56.52.0) | - | - | High
|
|
7 | [5.32.128.0](https://vuldb.com/?ip.5.32.128.0) | - | - | High
|
|
8 | [5.53.128.0](https://vuldb.com/?ip.5.53.128.0) | - | - | High
|
|
9 | [5.61.96.0](https://vuldb.com/?ip.5.61.96.0) | - | - | High
|
|
10 | [5.62.60.52](https://vuldb.com/?ip.5.62.60.52) | r-52-60-62-5.consumer-pool.prcdn.net | - | High
|
|
11 | [5.62.62.52](https://vuldb.com/?ip.5.62.62.52) | r-52-62-62-5.consumer-pool.prcdn.net | - | High
|
|
12 | [5.101.217.128](https://vuldb.com/?ip.5.101.217.128) | - | - | High
|
|
13 | [5.104.160.0](https://vuldb.com/?ip.5.104.160.0) | 5.104.161.0.telecom-bg.com | - | High
|
|
14 | [5.132.135.0](https://vuldb.com/?ip.5.132.135.0) | - | - | High
|
|
15 | [5.133.92.0](https://vuldb.com/?ip.5.133.92.0) | - | - | High
|
|
16 | [5.181.28.0](https://vuldb.com/?ip.5.181.28.0) | - | - | High
|
|
17 | [5.181.80.0](https://vuldb.com/?ip.5.181.80.0) | - | - | High
|
|
18 | [5.182.20.0](https://vuldb.com/?ip.5.182.20.0) | - | - | High
|
|
19 | [5.183.228.0](https://vuldb.com/?ip.5.183.228.0) | - | - | High
|
|
20 | [5.183.231.0](https://vuldb.com/?ip.5.183.231.0) | - | - | High
|
|
21 | [8.40.26.0](https://vuldb.com/?ip.8.40.26.0) | - | - | High
|
|
22 | [23.229.0.176](https://vuldb.com/?ip.23.229.0.176) | - | - | High
|
|
23 | [31.6.61.0](https://vuldb.com/?ip.31.6.61.0) | - | - | High
|
|
24 | [31.13.192.0](https://vuldb.com/?ip.31.13.192.0) | - | - | High
|
|
25 | [31.14.180.0](https://vuldb.com/?ip.31.14.180.0) | - | - | High
|
|
26 | [31.14.182.0](https://vuldb.com/?ip.31.14.182.0) | - | - | High
|
|
27 | [31.41.16.0](https://vuldb.com/?ip.31.41.16.0) | - | - | High
|
|
28 | [31.169.124.0](https://vuldb.com/?ip.31.169.124.0) | leo0.ecorenewbs.com | - | High
|
|
29 | [31.186.104.0](https://vuldb.com/?ip.31.186.104.0) | subnet1.mtel.gr | - | High
|
|
30 | [31.211.128.0](https://vuldb.com/?ip.31.211.128.0) | - | - | High
|
|
31 | [34.99.140.0](https://vuldb.com/?ip.34.99.140.0) | 0.140.99.34.bc.googleusercontent.com | - | Medium
|
|
32 | [34.99.212.0](https://vuldb.com/?ip.34.99.212.0) | 0.212.99.34.bc.googleusercontent.com | - | Medium
|
|
33 | [34.103.156.0](https://vuldb.com/?ip.34.103.156.0) | 0.156.103.34.bc.googleusercontent.com | - | Medium
|
|
34 | [37.46.114.0](https://vuldb.com/?ip.37.46.114.0) | bg.as51430.net | - | High
|
|
35 | [37.60.136.0](https://vuldb.com/?ip.37.60.136.0) | - | - | High
|
|
36 | [37.60.224.0](https://vuldb.com/?ip.37.60.224.0) | ip-37-60-224-0.siteground.com | - | High
|
|
37 | [37.63.0.0](https://vuldb.com/?ip.37.63.0.0) | - | - | High
|
|
38 | [37.77.80.0](https://vuldb.com/?ip.37.77.80.0) | - | - | High
|
|
39 | [37.120.152.0](https://vuldb.com/?ip.37.120.152.0) | kyi0.sourrefer.us | - | High
|
|
40 | [37.130.240.0](https://vuldb.com/?ip.37.130.240.0) | net240-ip0.linkbg.com | - | High
|
|
41 | [37.139.128.0](https://vuldb.com/?ip.37.139.128.0) | - | - | High
|
|
42 | [37.143.192.0](https://vuldb.com/?ip.37.143.192.0) | - | - | High
|
|
43 | [37.156.69.0](https://vuldb.com/?ip.37.156.69.0) | 259c4500.static.cust.trined.nl | - | High
|
|
44 | [37.156.70.0](https://vuldb.com/?ip.37.156.70.0) | 259c4600.static.cust.trined.nl | - | High
|
|
45 | [37.157.136.0](https://vuldb.com/?ip.37.157.136.0) | - | - | High
|
|
46 | [37.157.160.0](https://vuldb.com/?ip.37.157.160.0) | begin.force-it.net.160.157.37.in-addr.arpa | - | High
|
|
47 | [37.209.168.0](https://vuldb.com/?ip.37.209.168.0) | - | - | High
|
|
48 | [37.252.247.0](https://vuldb.com/?ip.37.252.247.0) | - | - | High
|
|
49 | [40.127.179.92](https://vuldb.com/?ip.40.127.179.92) | - | - | High
|
|
50 | [43.113.224.128](https://vuldb.com/?ip.43.113.224.128) | - | - | High
|
|
51 | [45.10.188.0](https://vuldb.com/?ip.45.10.188.0) | - | - | High
|
|
52 | [45.12.70.22](https://vuldb.com/?ip.45.12.70.22) | weightiest.get-eye.com | - | High
|
|
53 | [45.12.71.22](https://vuldb.com/?ip.45.12.71.22) | - | - | High
|
|
54 | [45.15.180.0](https://vuldb.com/?ip.45.15.180.0) | - | - | High
|
|
55 | [45.65.68.0](https://vuldb.com/?ip.45.65.68.0) | - | - | High
|
|
56 | [45.66.44.0](https://vuldb.com/?ip.45.66.44.0) | - | - | High
|
|
57 | [45.67.12.0](https://vuldb.com/?ip.45.67.12.0) | - | - | High
|
|
58 | [45.67.88.0](https://vuldb.com/?ip.45.67.88.0) | - | - | High
|
|
59 | [45.67.208.0](https://vuldb.com/?ip.45.67.208.0) | subnet.gcore.lu | - | High
|
|
60 | [45.80.216.0](https://vuldb.com/?ip.45.80.216.0) | - | - | High
|
|
61 | [45.81.176.0](https://vuldb.com/?ip.45.81.176.0) | - | - | High
|
|
62 | [45.83.216.0](https://vuldb.com/?ip.45.83.216.0) | - | - | High
|
|
63 | [45.84.80.0](https://vuldb.com/?ip.45.84.80.0) | - | - | High
|
|
64 | [45.84.172.0](https://vuldb.com/?ip.45.84.172.0) | - | - | High
|
|
65 | [45.84.184.0](https://vuldb.com/?ip.45.84.184.0) | - | - | High
|
|
66 | [45.84.192.0](https://vuldb.com/?ip.45.84.192.0) | 0.192.84.45.static.webnick.net | - | High
|
|
67 | [45.84.194.0](https://vuldb.com/?ip.45.84.194.0) | - | - | High
|
|
68 | [45.88.64.0](https://vuldb.com/?ip.45.88.64.0) | - | - | High
|
|
69 | [45.88.216.0](https://vuldb.com/?ip.45.88.216.0) | - | - | High
|
|
70 | [45.90.56.0](https://vuldb.com/?ip.45.90.56.0) | subnet.ipv4.layer6.net | - | High
|
|
71 | [45.92.16.0](https://vuldb.com/?ip.45.92.16.0) | - | - | High
|
|
72 | [45.128.4.0](https://vuldb.com/?ip.45.128.4.0) | clients.evn.bg | - | High
|
|
73 | [45.128.88.0](https://vuldb.com/?ip.45.128.88.0) | - | - | High
|
|
74 | [45.133.43.0](https://vuldb.com/?ip.45.133.43.0) | - | - | High
|
|
75 | [45.133.92.0](https://vuldb.com/?ip.45.133.92.0) | - | - | High
|
|
76 | [45.133.100.0](https://vuldb.com/?ip.45.133.100.0) | - | - | High
|
|
77 | [45.137.220.0](https://vuldb.com/?ip.45.137.220.0) | - | - | High
|
|
78 | [45.139.2.0](https://vuldb.com/?ip.45.139.2.0) | - | - | High
|
|
79 | [45.140.0.0](https://vuldb.com/?ip.45.140.0.0) | customer.upheads.0.0.140.45 | - | High
|
|
80 | [45.141.232.0](https://vuldb.com/?ip.45.141.232.0) | - | - | High
|
|
81 | [45.142.12.0](https://vuldb.com/?ip.45.142.12.0) | - | - | High
|
|
82 | [45.142.128.0](https://vuldb.com/?ip.45.142.128.0) | - | - | High
|
|
83 | [45.143.36.0](https://vuldb.com/?ip.45.143.36.0) | 45-143-36-0.ip.welcomeitalia.it | - | High
|
|
84 | [45.143.68.0](https://vuldb.com/?ip.45.143.68.0) | - | - | High
|
|
85 | [45.146.140.0](https://vuldb.com/?ip.45.146.140.0) | - | - | High
|
|
86 | [45.147.148.0](https://vuldb.com/?ip.45.147.148.0) | - | - | High
|
|
87 | [45.149.12.0](https://vuldb.com/?ip.45.149.12.0) | - | - | High
|
|
88 | [45.153.108.0](https://vuldb.com/?ip.45.153.108.0) | - | - | High
|
|
89 | [45.154.76.0](https://vuldb.com/?ip.45.154.76.0) | - | - | High
|
|
90 | [45.154.176.0](https://vuldb.com/?ip.45.154.176.0) | loamomro.ip76.abilixsoft.eu | - | High
|
|
91 | [45.158.28.0](https://vuldb.com/?ip.45.158.28.0) | - | - | High
|
|
92 | [45.158.160.0](https://vuldb.com/?ip.45.158.160.0) | - | - | High
|
|
93 | [46.10.0.0](https://vuldb.com/?ip.46.10.0.0) | 46-10-0-0.ip.btc-net.bg | - | High
|
|
94 | [46.16.192.0](https://vuldb.com/?ip.46.16.192.0) | - | - | High
|
|
95 | [46.35.160.0](https://vuldb.com/?ip.46.35.160.0) | - | - | High
|
|
96 | [46.40.64.0](https://vuldb.com/?ip.46.40.64.0) | - | - | High
|
|
97 | [46.47.64.0](https://vuldb.com/?ip.46.47.64.0) | - | - | High
|
|
98 | [46.55.128.0](https://vuldb.com/?ip.46.55.128.0) | - | - | High
|
|
99 | [46.229.192.0](https://vuldb.com/?ip.46.229.192.0) | - | - | High
|
|
100 | [46.232.152.0](https://vuldb.com/?ip.46.232.152.0) | 0.152.232.46.blizoo.bg | - | High
|
|
101 | [46.233.0.0](https://vuldb.com/?ip.46.233.0.0) | - | - | High
|
|
102 | [46.237.64.0](https://vuldb.com/?ip.46.237.64.0) | - | - | High
|
|
103 | [46.238.0.0](https://vuldb.com/?ip.46.238.0.0) | - | - | High
|
|
104 | [46.243.142.0](https://vuldb.com/?ip.46.243.142.0) | - | - | High
|
|
105 | [46.249.64.0](https://vuldb.com/?ip.46.249.64.0) | - | - | High
|
|
106 | [46.252.48.0](https://vuldb.com/?ip.46.252.48.0) | - | - | High
|
|
107 | [46.253.0.0](https://vuldb.com/?ip.46.253.0.0) | - | - | High
|
|
108 | [46.254.128.0](https://vuldb.com/?ip.46.254.128.0) | - | - | High
|
|
109 | [50.225.61.85](https://vuldb.com/?ip.50.225.61.85) | - | - | High
|
|
110 | [57.90.48.0](https://vuldb.com/?ip.57.90.48.0) | - | - | High
|
|
111 | [62.44.96.0](https://vuldb.com/?ip.62.44.96.0) | - | - | High
|
|
112 | [62.73.64.0](https://vuldb.com/?ip.62.73.64.0) | - | - | High
|
|
113 | [62.176.64.0](https://vuldb.com/?ip.62.176.64.0) | 62-176-64-0.btc-net.bg | - | High
|
|
114 | [62.182.112.0](https://vuldb.com/?ip.62.182.112.0) | - | - | High
|
|
115 | [62.192.132.0](https://vuldb.com/?ip.62.192.132.0) | - | - | High
|
|
116 | [62.204.128.0](https://vuldb.com/?ip.62.204.128.0) | - | - | High
|
|
117 | [62.221.128.0](https://vuldb.com/?ip.62.221.128.0) | unknown.crc.bg | - | High
|
|
118 | [63.172.48.27](https://vuldb.com/?ip.63.172.48.27) | - | - | High
|
|
119 | [74.80.77.0](https://vuldb.com/?ip.74.80.77.0) | - | - | High
|
|
120 | [77.70.0.0](https://vuldb.com/?ip.77.70.0.0) | - | - | High
|
|
121 | [77.71.0.0](https://vuldb.com/?ip.77.71.0.0) | n1.bgwan.com | - | High
|
|
122 | [77.72.85.0](https://vuldb.com/?ip.77.72.85.0) | - | - | High
|
|
123 | [77.76.0.0](https://vuldb.com/?ip.77.76.0.0) | - | - | High
|
|
124 | [77.76.128.0](https://vuldb.com/?ip.77.76.128.0) | - | - | High
|
|
125 | [77.77.0.0](https://vuldb.com/?ip.77.77.0.0) | - | - | High
|
|
126 | [77.77.128.0](https://vuldb.com/?ip.77.77.128.0) | - | - | High
|
|
127 | [77.77.160.0](https://vuldb.com/?ip.77.77.160.0) | - | - | High
|
|
128 | [77.77.168.0](https://vuldb.com/?ip.77.77.168.0) | - | - | High
|
|
129 | [77.77.168.64](https://vuldb.com/?ip.77.77.168.64) | - | - | High
|
|
130 | [77.77.168.88](https://vuldb.com/?ip.77.77.168.88) | - | - | High
|
|
131 | [77.77.168.96](https://vuldb.com/?ip.77.77.168.96) | - | - | High
|
|
132 | [77.77.168.128](https://vuldb.com/?ip.77.77.168.128) | - | - | High
|
|
133 | [77.77.169.0](https://vuldb.com/?ip.77.77.169.0) | - | - | High
|
|
134 | [77.77.170.0](https://vuldb.com/?ip.77.77.170.0) | - | - | High
|
|
135 | [77.77.172.0](https://vuldb.com/?ip.77.77.172.0) | - | - | High
|
|
136 | [77.77.176.0](https://vuldb.com/?ip.77.77.176.0) | - | - | High
|
|
137 | [77.77.178.0](https://vuldb.com/?ip.77.77.178.0) | - | - | High
|
|
138 | [77.77.179.0](https://vuldb.com/?ip.77.77.179.0) | - | - | High
|
|
139 | [77.77.179.128](https://vuldb.com/?ip.77.77.179.128) | - | - | High
|
|
140 | [77.77.179.192](https://vuldb.com/?ip.77.77.179.192) | - | - | High
|
|
141 | [77.77.179.208](https://vuldb.com/?ip.77.77.179.208) | - | - | High
|
|
142 | [77.77.179.224](https://vuldb.com/?ip.77.77.179.224) | - | - | High
|
|
143 | [77.77.179.240](https://vuldb.com/?ip.77.77.179.240) | - | - | High
|
|
144 | [77.77.180.0](https://vuldb.com/?ip.77.77.180.0) | - | - | High
|
|
145 | [77.77.184.0](https://vuldb.com/?ip.77.77.184.0) | - | - | High
|
|
146 | [77.78.0.0](https://vuldb.com/?ip.77.78.0.0) | - | - | High
|
|
147 | [77.78.128.0](https://vuldb.com/?ip.77.78.128.0) | - | - | High
|
|
148 | [77.83.112.0](https://vuldb.com/?ip.77.83.112.0) | - | - | High
|
|
149 | [77.85.0.0](https://vuldb.com/?ip.77.85.0.0) | - | - | High
|
|
150 | [77.95.232.0](https://vuldb.com/?ip.77.95.232.0) | - | - | High
|
|
151 | [77.104.128.0](https://vuldb.com/?ip.77.104.128.0) | ip-77-104-128-0.siteground.com | - | High
|
|
152 | [77.220.196.0](https://vuldb.com/?ip.77.220.196.0) | - | - | High
|
|
153 | [77.236.160.0](https://vuldb.com/?ip.77.236.160.0) | - | - | High
|
|
154 | [77.238.64.0](https://vuldb.com/?ip.77.238.64.0) | - | - | High
|
|
155 | [77.244.192.0](https://vuldb.com/?ip.77.244.192.0) | net192-ip0.linkbg.com | - | High
|
|
156 | [77.246.208.0](https://vuldb.com/?ip.77.246.208.0) | - | - | High
|
|
157 | [78.40.136.0](https://vuldb.com/?ip.78.40.136.0) | - | - | High
|
|
158 | [78.83.0.0](https://vuldb.com/?ip.78.83.0.0) | - | - | High
|
|
159 | [78.90.0.0](https://vuldb.com/?ip.78.90.0.0) | - | - | High
|
|
160 | [78.108.240.0](https://vuldb.com/?ip.78.108.240.0) | - | - | High
|
|
161 | [78.128.0.0](https://vuldb.com/?ip.78.128.0.0) | - | - | High
|
|
162 | [78.128.64.0](https://vuldb.com/?ip.78.128.64.0) | - | - | High
|
|
163 | [78.128.96.0](https://vuldb.com/?ip.78.128.96.0) | - | - | High
|
|
164 | [78.128.112.0](https://vuldb.com/?ip.78.128.112.0) | - | - | High
|
|
165 | [78.128.120.0](https://vuldb.com/?ip.78.128.120.0) | - | - | High
|
|
166 | [78.128.124.0](https://vuldb.com/?ip.78.128.124.0) | - | - | High
|
|
167 | [78.128.126.0](https://vuldb.com/?ip.78.128.126.0) | - | - | High
|
|
168 | [78.130.128.0](https://vuldb.com/?ip.78.130.128.0) | - | - | High
|
|
169 | [78.142.0.0](https://vuldb.com/?ip.78.142.0.0) | - | - | High
|
|
170 | [78.154.0.0](https://vuldb.com/?ip.78.154.0.0) | - | - | High
|
|
171 | [78.159.128.0](https://vuldb.com/?ip.78.159.128.0) | - | - | High
|
|
172 | [78.159.136.0](https://vuldb.com/?ip.78.159.136.0) | - | - | High
|
|
173 | [78.159.149.0](https://vuldb.com/?ip.78.159.149.0) | - | - | High
|
|
174 | [78.159.150.0](https://vuldb.com/?ip.78.159.150.0) | - | - | High
|
|
175 | [78.159.152.0](https://vuldb.com/?ip.78.159.152.0) | - | - | High
|
|
176 | [79.98.104.0](https://vuldb.com/?ip.79.98.104.0) | - | - | High
|
|
177 | [79.100.0.0](https://vuldb.com/?ip.79.100.0.0) | - | - | High
|
|
178 | [79.110.112.0](https://vuldb.com/?ip.79.110.112.0) | - | - | High
|
|
179 | [79.124.0.0](https://vuldb.com/?ip.79.124.0.0) | - | - | High
|
|
180 | [79.124.64.0](https://vuldb.com/?ip.79.124.64.0) | - | - | High
|
|
181 | [79.124.72.0](https://vuldb.com/?ip.79.124.72.0) | - | - | High
|
|
182 | [79.124.76.0](https://vuldb.com/?ip.79.124.76.0) | - | - | High
|
|
183 | [79.124.78.0](https://vuldb.com/?ip.79.124.78.0) | - | - | High
|
|
184 | [79.124.80.0](https://vuldb.com/?ip.79.124.80.0) | - | - | High
|
|
185 | [79.132.0.0](https://vuldb.com/?ip.79.132.0.0) | - | - | High
|
|
186 | [79.134.48.0](https://vuldb.com/?ip.79.134.48.0) | - | - | High
|
|
187 | [79.134.160.0](https://vuldb.com/?ip.79.134.160.0) | - | - | High
|
|
188 | [79.142.70.0](https://vuldb.com/?ip.79.142.70.0) | bg.as51430.net | - | High
|
|
189 | [80.72.64.0](https://vuldb.com/?ip.80.72.64.0) | - | - | High
|
|
190 | [80.76.48.0](https://vuldb.com/?ip.80.76.48.0) | hosted-by.technox.com.tr | - | High
|
|
191 | [80.78.224.0](https://vuldb.com/?ip.80.78.224.0) | - | - | High
|
|
192 | [80.80.128.0](https://vuldb.com/?ip.80.80.128.0) | - | - | High
|
|
193 | [80.84.137.0](https://vuldb.com/?ip.80.84.137.0) | - | - | High
|
|
194 | [80.95.16.0](https://vuldb.com/?ip.80.95.16.0) | - | - | High
|
|
195 | [80.248.224.146](https://vuldb.com/?ip.80.248.224.146) | - | - | High
|
|
196 | [80.253.48.0](https://vuldb.com/?ip.80.253.48.0) | - | - | High
|
|
197 | [81.2.149.124](https://vuldb.com/?ip.81.2.149.124) | - | - | High
|
|
198 | [81.161.240.0](https://vuldb.com/?ip.81.161.240.0) | - | - | High
|
|
199 | [82.101.64.0](https://vuldb.com/?ip.82.101.64.0) | - | - | High
|
|
200 | [82.102.23.0](https://vuldb.com/?ip.82.102.23.0) | nche0.pelibi.com | - | High
|
|
201 | [82.103.64.0](https://vuldb.com/?ip.82.103.64.0) | - | - | High
|
|
202 | [82.118.224.0](https://vuldb.com/?ip.82.118.224.0) | - | - | High
|
|
203 | [82.118.228.0](https://vuldb.com/?ip.82.118.228.0) | - | - | High
|
|
204 | [82.118.231.0](https://vuldb.com/?ip.82.118.231.0) | 82.118.231.0.telecom-bg.com | - | High
|
|
205 | [82.118.232.0](https://vuldb.com/?ip.82.118.232.0) | 82.118.232.0.telecom-bg.com | - | High
|
|
206 | [82.118.236.0](https://vuldb.com/?ip.82.118.236.0) | - | - | High
|
|
207 | [82.118.240.0](https://vuldb.com/?ip.82.118.240.0) | siteground-office.net | - | High
|
|
208 | [82.119.64.0](https://vuldb.com/?ip.82.119.64.0) | 82.119.64.0.telecom-bg.com | - | High
|
|
209 | [82.137.64.0](https://vuldb.com/?ip.82.137.64.0) | - | - | High
|
|
210 | [82.146.0.0](https://vuldb.com/?ip.82.146.0.0) | - | - | High
|
|
211 | [82.147.128.0](https://vuldb.com/?ip.82.147.128.0) | - | - | High
|
|
212 | [82.195.187.17](https://vuldb.com/?ip.82.195.187.17) | - | - | High
|
|
213 | [83.97.24.0](https://vuldb.com/?ip.83.97.24.0) | - | - | High
|
|
214 | [83.97.64.0](https://vuldb.com/?ip.83.97.64.0) | - | - | High
|
|
215 | [83.142.16.0](https://vuldb.com/?ip.83.142.16.0) | - | - | High
|
|
216 | [83.142.48.0](https://vuldb.com/?ip.83.142.48.0) | 83-142-48-0.dynamic-pool.mclaut.net | - | High
|
|
217 | [83.143.144.0](https://vuldb.com/?ip.83.143.144.0) | - | - | High
|
|
218 | [83.143.176.0](https://vuldb.com/?ip.83.143.176.0) | - | - | High
|
|
219 | [83.143.248.0](https://vuldb.com/?ip.83.143.248.0) | - | - | High
|
|
220 | [83.148.64.0](https://vuldb.com/?ip.83.148.64.0) | - | - | High
|
|
221 | [83.150.216.0](https://vuldb.com/?ip.83.150.216.0) | - | - | High
|
|
222 | [83.222.160.0](https://vuldb.com/?ip.83.222.160.0) | - | - | High
|
|
223 | [83.222.166.0](https://vuldb.com/?ip.83.222.166.0) | - | - | High
|
|
224 | [83.222.168.0](https://vuldb.com/?ip.83.222.168.0) | - | - | High
|
|
225 | [83.222.176.0](https://vuldb.com/?ip.83.222.176.0) | - | - | High
|
|
226 | [83.228.0.0](https://vuldb.com/?ip.83.228.0.0) | - | - | High
|
|
227 | [84.1.42.0](https://vuldb.com/?ip.84.1.42.0) | ktv54012A00.fixip.t-online.hu | - | High
|
|
228 | [84.1.43.0](https://vuldb.com/?ip.84.1.43.0) | ktv54012B00.fixip.t-online.hu | - | High
|
|
229 | [84.1.43.64](https://vuldb.com/?ip.84.1.43.64) | ktv54012B40.fixip.t-online.hu | - | High
|
|
230 | [84.1.43.67](https://vuldb.com/?ip.84.1.43.67) | ktv54012B43.fixip.t-online.hu | - | High
|
|
231 | [84.1.43.68](https://vuldb.com/?ip.84.1.43.68) | ktv54012B44.fixip.t-online.hu | - | High
|
|
232 | [84.1.43.72](https://vuldb.com/?ip.84.1.43.72) | ktv54012B48.fixip.t-online.hu | - | High
|
|
233 | [84.1.43.80](https://vuldb.com/?ip.84.1.43.80) | ktv54012B50.fixip.t-online.hu | - | High
|
|
234 | [84.1.43.96](https://vuldb.com/?ip.84.1.43.96) | ktv54012B60.fixip.t-online.hu | - | High
|
|
235 | [84.1.43.128](https://vuldb.com/?ip.84.1.43.128) | ktv54012B80.fixip.t-online.hu | - | High
|
|
236 | [84.1.44.0](https://vuldb.com/?ip.84.1.44.0) | net44-ip0.suvorovo.org | - | High
|
|
237 | [84.1.154.0](https://vuldb.com/?ip.84.1.154.0) | - | - | High
|
|
238 | [84.1.240.0](https://vuldb.com/?ip.84.1.240.0) | - | - | High
|
|
239 | [84.2.74.0](https://vuldb.com/?ip.84.2.74.0) | - | - | High
|
|
240 | ... | ... | ... | ...
|
|
|
|
There are 958 more IOC items available. Please use our online service to access the data.
|
|
|
|
## TTP - Tactics, Techniques, Procedures
|
|
|
|
_Tactics, techniques, and procedures_ (TTP) summarize the suspected MITRE ATT&CK techniques used by _Bulgaria Unknown_. This data is unique as it uses our predictive model for actor profiling.
|
|
|
|
ID | Technique | Weakness | Description | Confidence
|
|
-- | --------- | -------- | ----------- | ----------
|
|
1 | T1006 | CWE-21, CWE-22, CWE-37 | Pathname Traversal | High
|
|
2 | T1055 | CWE-74 | Injection | High
|
|
3 | T1059 | CWE-88, CWE-94, CWE-1321 | Cross Site Scripting | High
|
|
4 | T1059.007 | CWE-79, CWE-80 | Cross Site Scripting | High
|
|
5 | T1068 | CWE-264, CWE-269, CWE-284 | Execution with Unnecessary Privileges | High
|
|
6 | ... | ... | ... | ...
|
|
|
|
There are 19 more TTP items available. Please use our online service to access the data.
|
|
|
|
## IOA - Indicator of Attack
|
|
|
|
These _indicators of attack_ (IOA) list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration by Bulgaria Unknown. This data is unique as it uses our predictive model for actor profiling.
|
|
|
|
ID | Type | Indicator | Confidence
|
|
-- | ---- | --------- | ----------
|
|
1 | File | `%PROGRAMDATA%\CheckPoint\ZoneAlarm\Data\Updates` | High
|
|
2 | File | `.php.gif` | Medium
|
|
3 | File | `/action/iperf` | High
|
|
4 | File | `/action/wirelessConnect` | High
|
|
5 | File | `/Admin/add-student.php` | High
|
|
6 | File | `/admin/delete.php` | High
|
|
7 | File | `/Admin/login.php` | High
|
|
8 | File | `/admin/settings/fields` | High
|
|
9 | File | `/admin/sign/out` | High
|
|
10 | File | `/admin/submit-articles` | High
|
|
11 | File | `/api/discoveries/` | High
|
|
12 | File | `/api/v1/attack` | High
|
|
13 | File | `/api/v1/attack/falco` | High
|
|
14 | File | `/api/v1/attack/token` | High
|
|
15 | File | `/api/v1/bait/set` | High
|
|
16 | File | `/api/v1/chat.getThreadsList` | High
|
|
17 | File | `/api/v2/open/rowsInfo` | High
|
|
18 | File | `/api/v2/open/tablesInfo` | High
|
|
19 | File | `/apilog.php` | Medium
|
|
20 | File | `/bin/proc.cgi` | High
|
|
21 | File | `/buspassms/download-pass.php` | High
|
|
22 | File | `/category.php` | High
|
|
23 | File | `/cgi-bin/wlogin.cgi` | High
|
|
24 | File | `/changePassword` | High
|
|
25 | File | `/cnr` | Low
|
|
26 | File | `/connectors/index.php` | High
|
|
27 | File | `/Core/Ap4File.cpp` | High
|
|
28 | File | `/csms/admin/?page=user/manage_user` | High
|
|
29 | File | `/depotHead/list` | High
|
|
30 | File | `/ebics-server/ebics.aspx` | High
|
|
31 | File | `/employeeview.php` | High
|
|
32 | File | `/etc/version` | Medium
|
|
33 | File | `/forum/away.php` | High
|
|
34 | File | `/goform/fast_setting_wifi_set` | High
|
|
35 | File | `/goform/form2WizardStep4` | High
|
|
36 | File | `/goform/formSetClientState` | High
|
|
37 | File | `/goform/fromSetIpMacBind` | High
|
|
38 | File | `/goform/openSchedWifi/` | High
|
|
39 | File | `/goform/PowerSaveSet` | High
|
|
40 | File | `/goform/setDebugCfg/` | High
|
|
41 | File | `/goform/SetNetControlList` | High
|
|
42 | File | `/h/compose` | Medium
|
|
43 | File | `/index.asp` | Medium
|
|
44 | File | `/index.php` | Medium
|
|
45 | File | `/items/view_item.php` | High
|
|
46 | File | `/jsoa/hntdCustomDesktopActionContent` | High
|
|
47 | File | `/live/GLOBALS` | High
|
|
48 | File | `/login` | Low
|
|
49 | File | `/manager/index.php` | High
|
|
50 | File | `/medical/inventories.php` | High
|
|
51 | File | `/membership_passwordReset.php` | High
|
|
52 | File | `/modules/profile/index.php` | High
|
|
53 | File | `/modules/projects/vw_files.php` | High
|
|
54 | File | `/modules/public/calendar.php` | High
|
|
55 | File | `/newsDia.php` | Medium
|
|
56 | File | `/omos/admin/?page=user/list` | High
|
|
57 | File | `/opt/axess/etc/default/axess` | High
|
|
58 | File | `/opt/axess/var/blobstorage/` | High
|
|
59 | ... | ... | ...
|
|
|
|
There are 512 more IOA items available (file, library, argument, input value, pattern, network port). Please use our online service to access the data.
|
|
|
|
## References
|
|
|
|
The following list contains _external sources_ which discuss the actor and the associated activities:
|
|
|
|
* https://github.com/firehol/blocklist-ipsets/blob/master/geolite2_country/country_bg.netset
|
|
|
|
## Literature
|
|
|
|
The following _articles_ explain our unique predictive cyber threat intelligence:
|
|
|
|
* [VulDB Cyber Threat Intelligence Documentation](https://vuldb.com/?kb.cti)
|
|
* [Cyber Threat Intelligence - Early Anticipation of Attacks](https://www.scip.ch/en/?labs.20201022)
|
|
|
|
## License
|
|
|
|
(c) [1997-2022](https://vuldb.com/?kb.changelog) by [vuldb.com](https://vuldb.com/?kb.about). All data on this page is shared under the license [CC BY-NC-SA 4.0](https://creativecommons.org/licenses/by-nc-sa/4.0/). Questions? Check the [FAQ](https://vuldb.com/?kb.faq), read the [documentation](https://vuldb.com/?kb) or [contact us](https://vuldb.com/?contact)!
|