Mirrors/cyber_threat_intelligence
6
0
Fork 0
mirror of https://github.com/vuldb/cyber_threat_intelligence synced 2024-07-03 08:58:21 +00:00
Code Issues Packages Projects Releases Wiki Activity
6ff7b0fc1f
cyber_threat_intelligence/actors/Switzerland Unknown
History
Marc Ruef 6ff7b0fc1f Update
2022-11-26 12:43:44 +01:00
..
README.md Update 2022-11-26 12:43:44 +01:00

README.md

Switzerland Unknown - Cyber Threat Intelligence

These indicators were reported, collected, and generated during the VulDB CTI analysis of the actor known as Switzerland Unknown. The activity monitoring correlates data from social media, forums, chat rooms, and darknet markets. It helps to determine associated actors, specific activities, expected intentions, emerging research, and ongoing attacks. Our unique predictive model uses big data to forecast activities and their characteristics.

Live data and more analysis capabilities are available at https://vuldb.com/?actor.switzerland_unknown

Countries

These countries are directly (e.g. origin of attacks) or indirectly (e.g. access by proxy) associated with Switzerland Unknown:

There are 25 more country items available. Please use our online service to access the data.

IOC - Indicator of Compromise

These indicators of compromise (IOC) indicate associated network resources which are known to be part of research and attack activities of Switzerland Unknown.

ID IP address Hostname Campaign Confidence
1 2.56.40.0 - - High
2 2.59.28.0 - - High
3 2.59.96.0 - - High
4 2.59.120.0 - - High
5 5.1.96.0 - - High
6 5.1.112.0 - - High
7 5.23.22.0 - - High
8 5.39.2.205 ip205.ip-5-39-2.eu - High
9 5.39.56.32 - - High
10 5.39.103.56 - - High
11 5.44.112.0 - - High
12 5.53.104.0 - - High
13 5.57.200.0 - - High
14 5.61.224.0 0.224.61.5.rev.dfinet.net - High
15 5.102.32.0 - - High
16 5.102.144.0 - - High
17 5.104.88.0 - - High
18 5.132.141.0 - - High
19 5.132.156.0 - - High
20 5.133.32.0 - - High
21 5.134.24.0 0.24.134.5.reverse.netplusfr.net - High
22 5.144.0.0 - - High
23 5.144.32.0 - - High
24 5.145.0.0 - - High
25 5.145.64.0 - - High
26 5.145.96.0 - - High
27 5.148.160.0 - - High
28 5.149.0.0 - - High
29 5.149.16.0 - - High
30 5.149.32.0 - - High
31 5.152.184.0 - - High
32 5.153.112.0 - - High
33 5.153.240.0 - - High
34 5.172.128.0 - - High
35 5.175.217.0 - - High
36 5.180.116.0 - - High
37 5.180.132.0 - - High
38 5.182.248.0 - - High
39 5.183.0.0 - - High
40 5.187.56.0 - - High
41 5.196.103.136 toiture-45.fr - High
42 5.226.144.0 - - High
43 5.249.168.0 - - High
44 5.252.136.0 - - High
45 5.253.208.0 - - High
46 5.255.146.112 - - High
47 8.39.215.0 - - High
48 8.42.55.0 - - High
49 13.104.130.0 - - High
50 13.104.144.0 - - High
51 13.104.211.192 - - High
52 13.104.212.0 - - High
53 13.107.194.44 - - High
54 13.107.194.52 - - High
55 17.67.80.0 - - High
56 17.70.56.0 - - High
57 17.70.72.0 - - High
58 17.70.104.0 - - High
59 17.71.104.0 - - High
60 17.77.48.0 - - High
61 20.150.55.0 - - High
62 20.150.59.0 - - High
63 20.190.183.0 - - High
64 20.190.184.0 - - High
65 23.0.174.76 a23-0-174-76.deploy.static.akamaitechnologies.com - High
66 23.0.174.84 a23-0-174-84.deploy.static.akamaitechnologies.com - High
67 23.0.174.92 a23-0-174-92.deploy.static.akamaitechnologies.com - High
68 23.0.174.100 a23-0-174-100.deploy.static.akamaitechnologies.com - High
69 23.0.174.108 a23-0-174-108.deploy.static.akamaitechnologies.com - High
70 23.0.174.116 a23-0-174-116.deploy.static.akamaitechnologies.com - High
71 23.0.174.124 a23-0-174-124.deploy.static.akamaitechnologies.com - High
72 23.0.174.132 a23-0-174-132.deploy.static.akamaitechnologies.com - High
73 23.10.249.52 a23-10-249-52.deploy.static.akamaitechnologies.com - High
74 23.10.249.60 a23-10-249-60.deploy.static.akamaitechnologies.com - High
75 23.10.249.68 a23-10-249-68.deploy.static.akamaitechnologies.com - High
76 23.10.249.76 a23-10-249-76.deploy.static.akamaitechnologies.com - High
77 23.10.249.84 a23-10-249-84.deploy.static.akamaitechnologies.com - High
78 23.10.249.92 a23-10-249-92.deploy.static.akamaitechnologies.com - High
79 23.10.249.100 a23-10-249-100.deploy.static.akamaitechnologies.com - High
80 23.10.249.108 a23-10-249-108.deploy.static.akamaitechnologies.com - High
81 23.10.249.110 a23-10-249-110.deploy.static.akamaitechnologies.com - High
82 23.10.249.116 a23-10-249-116.deploy.static.akamaitechnologies.com - High
83 23.27.244.0 - - High
84 23.103.132.192 - - High
85 31.3.128.0 0-128-3-31.static.exion.ch - High
86 31.6.9.0 - - High
87 31.6.30.0 - - High
88 31.6.41.0 - - High
89 31.6.42.0 - - High
90 31.6.44.0 - - High
91 31.6.48.0 - - High
92 31.7.56.0 hostedby.privatelayer.com - High
93 31.10.31.134 31-10-31-134-docsis.tv-com.li - High
94 31.10.31.244 31-10-31-244-docsis.tv-com.li - High
95 31.10.128.0 31-10-128-0.cgn.dynamic.upc.ch - High
96 31.11.0.0 - - High
97 31.24.8.0 - - High
98 31.25.120.0 - - High
99 31.31.48.0 - - High
100 31.40.236.0 - - High
101 31.44.32.0 - - High
102 31.44.109.0 lan-31-44-109-0.vln.penki.lt - High
103 31.44.110.0 lan-31-44-110-0.vln.penki.lt - High
104 31.44.189.0 - - High
105 31.130.224.0 - - High
106 31.132.8.0 - - High
107 31.133.128.0 - - High
108 31.164.0.0 - - High
109 31.171.144.0 - - High
110 31.171.240.0 host-0-240-171-31.cloudsigma.net - High
111 31.193.208.0 - - High
112 31.216.40.0 - - High
113 31.222.24.0 - - High
114 32.106.104.0 - - High
115 32.106.106.0 slip32-106-106-0.zur.ch.prserv.net - High
116 32.106.134.0 - - High
117 32.116.32.0 - - High
118 34.65.219.150 150.219.65.34.bc.googleusercontent.com - Medium
119 34.99.190.0 0.190.99.34.bc.googleusercontent.com - Medium
120 34.103.132.0 0.132.103.34.bc.googleusercontent.com - Medium
121 34.103.206.0 0.206.103.34.bc.googleusercontent.com - Medium
122 34.124.64.0 0.64.124.34.bc.googleusercontent.com - Medium
123 34.124.68.0 0.68.124.34.bc.googleusercontent.com - Medium
124 37.0.32.0 - - High
125 37.17.232.0 - - High
126 37.35.104.0 - - High
127 37.35.112.0 - - High
128 37.46.144.0 - - High
129 37.59.76.140 - - High
130 37.59.236.160 - - High
131 37.110.200.0 - - High
132 37.120.137.0 wsb0.strainloss.us - High
133 37.120.213.0 - - High
134 37.122.128.0 - - High
135 37.128.176.0 - - High
136 37.131.184.0 LEUNET-NET-4.184.131.37.in-addr.arpa - High
137 37.153.80.0 - - High
138 37.153.100.0 - - High
139 37.153.102.64 - - High
140 37.153.102.128 - - High
141 37.153.103.0 - - High
142 37.153.104.0 - - High
143 37.153.112.0 - - High
144 37.203.248.0 - - High
145 37.209.176.0 - - High
146 37.230.178.0 - - High
147 37.233.120.0 - - High
148 37.235.50.0 - - High
149 37.247.94.250 37-247-94-250.natip.skydsl.eu - High
150 37.252.128.0 - - High
151 40.66.104.0 - - High
152 40.82.104.0 - - High
153 40.90.3.0 - - High
154 40.90.19.32 - - High
155 40.90.30.128 - - High
156 40.90.128.192 - - High
157 40.92.92.0 - - High
158 40.93.96.0 - - High
159 40.95.49.0 - - High
160 40.95.92.0 - - High
161 40.107.23.0 mail-eopbgr230000.outbound.protection.outlook.com - High
162 40.107.24.0 mail-eopbgr240000.outbound.protection.outlook.com - High
163 40.119.80.0 - - High
164 40.126.55.0 - - High
165 40.126.55.32 - - High
166 40.126.56.0 - - High
167 40.126.56.32 - - High
168 40.126.194.0 - - High
169 45.8.240.0 - - High
170 45.9.76.0 - - High
171 45.9.160.0 - - High
172 45.10.168.0 - - High
173 45.10.176.0 - - High
174 45.11.128.0 - - High
175 45.11.220.0 - - High
176 45.12.70.43 totalling.get-eye.com - High
177 45.12.70.254 word-netbios.globalhilive.com - High
178 45.12.71.43 - - High
179 45.12.71.251 - - High
180 45.12.71.252 - - High
181 45.12.71.254 - - High
182 45.12.120.0 - - High
183 45.12.206.0 - - High
184 45.12.222.0 - - High
185 45.13.204.0 - - High
186 45.13.216.0 - - High
187 45.14.60.0 - - High
188 45.14.128.0 - - High
189 45.15.80.0 - - High
190 45.15.188.0 - - High
191 45.66.4.0 - - High
192 45.66.172.0 - - High
193 45.66.220.0 - - High
194 45.66.232.0 - - High
195 45.67.48.0 - - High
196 45.80.16.0 - - High
197 45.80.136.0 - - High
198 45.81.68.0 - - High
199 45.82.36.0 - - High
200 45.82.220.0 - - High
201 45.83.68.0 - - High
202 45.85.92.0 - - High
203 45.85.96.0 - - High
204 45.86.15.0 - - High
205 45.86.132.0 - - High
206 45.86.216.0 - - High
207 45.87.72.0 - - High
208 45.87.156.0 - - High
209 45.88.200.0 - - High
210 45.89.0.0 - - High
211 45.90.8.0 - - High
212 45.91.92.0 - - High
213 45.91.161.0 - - High
214 45.91.228.0 - - High
215 45.92.20.0 - - High
216 45.92.108.0 - - High
217 45.93.88.0 - - High
218 45.94.88.0 - - High
219 45.94.137.0 - - High
220 45.95.100.0 - - High
221 45.128.164.0 - - High
222 45.128.252.0 - - High
223 45.129.224.0 45-129-224-0.as58280.net - High
224 45.134.17.0 - - High
225 45.134.88.0 - - High
226 45.134.132.0 - - High
227 45.138.176.0 - - High
228 45.139.128.0 - - High
229 45.140.100.0 frtls-cog-a9h2.as29075.net - High
230 45.140.216.0 - - High
231 45.141.52.0 - - High
232 45.141.96.0 - - High
233 45.142.224.0 - - High
234 45.143.124.0 - - High
235 45.143.156.0 - - High
236 45.143.212.0 - - High
237 45.146.204.0 - - High
238 45.147.40.0 - - High
239 45.147.216.0 - - High
240 45.148.4.0 45-148-4-0.cust.pvdatanet.com - High
241 45.148.236.0 - - High
242 45.149.236.0 - - High
243 45.151.212.0 - - High
244 45.153.40.0 - - High
245 45.153.136.0 - - High
246 45.154.244.0 - - High
247 45.155.76.0 - - High
248 45.157.188.0 - - High
249 46.14.0.0 - - High
250 46.16.152.0 - - High
251 46.16.200.0 - - High
252 46.19.136.0 hostedby.privatelayer.com - High
253 46.20.240.0 - - High
254 46.20.244.0 - - High
255 46.20.245.0 - - High
256 46.20.245.192 - - High
257 46.20.246.0 - - High
258 46.20.246.128 - - High
259 46.20.246.192 - - High
260 46.20.248.0 - - High
261 46.21.16.0 - - High
262 46.22.16.0 - - High
263 46.28.200.0 hosted-by.solarcom.ch - High
264 46.58.16.0 - - High
265 46.102.152.0 - - High
266 46.126.0.0 46-126-0-0.dynamic.hispeed.ch - High
267 46.140.0.0 - - High
268 46.175.8.0 - - High
269 46.189.67.220 - - High
270 46.227.224.0 - - High
271 46.231.200.0 - - High
272 46.232.176.0 - - High
273 46.234.32.0 - - High
274 46.235.56.0 - - High
275 46.235.144.0 - - High
276 46.243.216.0 - - High
277 46.245.144.0 - - High
278 46.245.184.0 - - High
279 46.253.176.0 46-253-176-0.static.monzoon.net - High
280 46.255.168.0 - - High
281 51.68.185.112 ip112.ip-51-68-185.eu - High
282 51.68.245.128 - - High
283 51.107.0.0 - - High
284 51.107.136.0 - - High
285 51.107.144.0 switzerlandw02.rnm.core.windows.net - High
286 51.107.160.0 - - High
287 51.107.200.0 - - High
288 51.107.224.0 - - High
289 51.154.0.0 - - High
290 52.97.181.0 - - High
291 52.97.183.224 - - High
292 52.97.185.0 - - High
293 52.97.186.0 - - High
294 52.97.186.128 - - High
295 52.97.186.192 - - High
296 52.97.232.192 - - High
297 52.101.153.0 - - High
298 52.101.154.0 - - High
299 52.103.154.0 - - High
300 52.104.8.0 - - High
301 52.105.5.0 - - High
302 52.105.8.0 - - High
303 52.108.75.0 - - High
304 52.108.200.0 - - High
305 52.114.226.0 - - High
306 52.114.230.0 - - High
307 52.239.250.0 - - High
308 52.253.165.0 - - High
309 52.253.166.0 - - High
310 52.253.175.0 - - High
311 52.253.176.0 - - High
312 54.36.132.208 ip208.ip-54-36-132.eu - High
313 57.79.0.0 - - High
314 57.188.8.0 - - High
315 57.190.16.0 - - High
316 57.190.32.0 - - High
317 57.190.64.0 - - High
318 57.190.128.0 - - High
319 62.2.0.0 - - High
320 62.12.33.128 - - High
321 62.12.128.0 - - High
322 62.32.0.0 c-62-32-0-0.customer.ggaweb.ch - High
323 62.48.0.0 - - High
324 62.48.96.0 - - High
325 62.50.75.0 static-62-50-75-0.irtnet.net - High
326 62.65.128.0 - - High
327 62.108.128.0 - - High
328 62.112.14.0 - - High
329 62.112.128.0 - - High
330 62.121.192.0 - - High
331 62.146.152.0 net-0-152-146-62.ipxserver.de - High
332 62.167.0.0 - - High
333 62.171.0.0 pub-62-171-0-0.dh-hfc.datazug.ch - High
334 62.179.116.0 62-179-116-0.ch-zrh01a-ra1.aorta.net - High
335 62.182.184.0 - - High
336 62.184.128.0 - - High
337 62.184.128.32 - - High
338 62.184.160.0 - - High
339 62.184.168.128 - - High
340 62.184.172.0 - - High
341 62.184.173.64 - - High
342 62.184.175.0 - - High
343 62.184.177.0 - - High
344 62.184.178.112 - - High
345 62.184.240.0 - - High
346 62.184.244.0 - - High
347 62.184.246.0 - - High
348 62.184.248.0 - - High
349 62.185.1.192 - - High
350 62.185.5.64 - - High
351 62.185.5.80 - - High
352 62.185.41.192 - - High
353 62.185.48.32 - - High
354 62.185.64.0 - - High
355 62.185.65.0 - - High
356 62.185.66.0 - - High
357 62.185.66.128 - - High
358 62.185.67.0 - - High
359 62.185.68.0 - - High
360 62.185.73.0 - - High
361 62.185.74.0 - - High
362 62.185.76.0 - - High
363 62.185.76.128 - - High
364 62.185.76.176 - - High
365 62.185.77.0 - - High
366 62.185.78.0 - - High
367 62.185.78.64 - - High
368 62.185.78.128 - - High
369 62.185.78.224 - - High
370 62.185.79.0 - - High
371 62.185.84.48 - - High
372 62.185.120.32 - - High
373 62.185.121.0 - - High
374 62.185.122.0 - - High
375 62.185.124.0 - - High
376 62.185.125.0 - - High
377 62.185.125.64 - - High
378 62.185.125.128 - - High
379 62.185.126.0 - - High
380 62.185.130.128 - - High
381 62.185.140.0 - - High
382 62.185.145.160 - - High
383 62.185.195.224 - - High
384 62.185.200.64 - - High
385 62.185.244.0 - - High
386 62.186.3.16 - - High
387 62.186.64.0 - - High
388 62.186.64.224 - - High
389 62.186.65.0 - - High
390 62.186.66.0 - - High
391 62.186.67.0 - - High
392 62.186.67.128 - - High
393 62.186.68.0 - - High
394 62.186.70.0 - - High
395 62.186.74.0 - - High
396 62.186.104.128 - - High
397 62.186.137.192 - - High
398 62.186.180.32 - - High
399 62.186.180.136 - - High
400 62.186.196.0 - - High
401 62.186.198.0 - - High
402 62.186.199.0 - - High
403 62.186.237.0 - - High
404 62.187.54.0 - - High
405 62.187.172.0 - - High
406 62.187.176.0 - - High
407 62.187.230.0 - - High
408 62.192.0.0 - - High
409 62.192.168.0 - - High
410 62.192.180.0 - - High
411 62.202.0.0 - - High
412 62.204.96.0 0-96-204-62-static.dsl.fcom.ch - High
413 62.220.128.0 - - High
414 62.229.0.0 - - High
415 62.240.192.0 - - High
416 63.165.239.97 - - High
417 64.39.102.0 - - High
418 64.110.28.0 - - High
419 64.110.32.0 - - High
420 64.110.48.0 64-110-48-0.dynamic.open5g.com - High
421 64.110.50.0 - - High
422 64.110.64.0 - - High
423 64.125.175.0 64.125.175.0.t01667-01.above.net - High
424 64.211.110.0 - - High
425 65.18.128.0 - - High
426 66.78.20.0 - - High
427 66.133.6.0 - - High
428 66.133.8.0 - - High
429 66.133.13.0 - - High
430 66.133.57.0 - - High
431 66.133.58.0 - - High
432 67.227.70.0 - - High
433 68.70.192.0 - - High
434 68.70.200.0 - - High
435 68.70.202.0 - - High
436 68.70.204.0 - - High
437 69.46.90.0 - - High
438 74.80.88.0 - - High
439 74.121.140.0 - - High
440 74.125.60.16 - - High
441 74.125.61.16 - - High
442 77.32.224.0 - - High
443 77.56.0.0 77-56-0-0.dclient.hispeed.ch - High
444 77.67.33.0 - - High
445 77.67.104.240 - - High
446 77.67.105.100 - - High
447 77.72.64.0 - - High
448 77.72.164.160 - - High
449 77.72.167.128 - - High
450 77.72.176.0 - - High
451 77.73.240.0 - - High
452 77.74.0.0 - - High
453 77.74.56.0 c-77-74-56-0.customer.ggaweb.ch - High
454 77.74.80.0 - - High
455 77.74.96.0 - - High
456 77.74.168.0 - - High
457 77.75.112.0 - - High
458 77.95.120.0 - - High
459 77.109.128.0 - - High
460 77.111.228.0 - - High
461 77.111.232.0 0.232.111.77.dynamic.waly.ch - High
462 77.232.73.198 - - High
463 77.234.56.0 - - High
464 77.237.192.0 - - High
465 77.239.32.0 - - High
466 77.242.160.0 - - High
467 77.244.48.0 - - High
468 77.245.16.0 - - High
469 77.245.176.0 net.77.245.176.0.databaar.ch - High
470 77.246.128.0 - - High
471 78.40.72.0 - - High
472 78.40.72.48 - - High
473 78.40.72.64 - - High
474 78.40.72.128 - - High
475 78.40.73.0 - - High
476 78.40.74.0 - - High
477 78.40.76.0 - - High
478 78.110.128.0 - - High
479 78.155.0.0 - - High
480 79.98.188.0 - - High
481 79.99.232.0 - - High
482 79.134.224.0 - - High
483 79.134.225.0 - - High
484 79.134.225.128 - - High
485 79.134.226.0 - - High
486 79.134.228.0 - - High
487 79.134.232.0 link000-10g-null.fink-telecom.com - High
488 79.134.240.0 - - High
489 79.141.80.0 - - High
490 79.142.69.0 - - High
491 79.142.79.0 ch-net.as51430.net - High
492 79.142.128.0 c-79-142-128-0.customer.ggaweb.ch - High
493 80.67.82.4 a80-67-82-4.deploy.static.akamaitechnologies.com - High
494 80.67.82.12 a80-67-82-12.deploy.static.akamaitechnologies.com - High
495 80.67.82.20 a80-67-82-20.deploy.static.akamaitechnologies.com - High
496 80.67.82.28 a80-67-82-28.deploy.static.akamaitechnologies.com - High
497 80.67.82.36 a80-67-82-36.deploy.static.akamaitechnologies.com - High
498 80.67.82.44 a80-67-82-44.deploy.static.akamaitechnologies.com - High
499 80.67.82.52 a80-67-82-52.deploy.static.akamaitechnologies.com - High
500 80.67.82.60 a80-67-82-60.deploy.static.akamaitechnologies.com - High
501 80.67.144.0 - - High
502 80.70.161.16 - - High
503 80.74.128.0 - - High
504 80.75.112.0 - - High
505 80.75.192.0 - - High
506 80.76.0.0 - - High
507 80.80.224.0 - - High
508 80.83.32.0 - - High
509 80.86.192.0 - - High
510 80.89.208.0 - - High
511 80.94.144.0 80-94-144-0.icrc.org - High
512 80.169.232.192 - - High
513 80.169.233.0 - - High
514 80.169.240.0 - - High
515 80.187.111.14 tmo-111-14.customers.d1-online.com - High
516 80.208.128.0 0-128-208-80.dyn.fiber.qlnet.ch - High
517 80.218.0.0 - - High
518 80.231.8.128 - - High
519 80.238.128.0 - - High
520 80.239.234.64 80-239-234-64.teliacarrier-cust.com - High
521 80.239.247.0 80-239-247-0.teliacarrier-cust.com - High
522 80.241.96.0 - - High
523 80.242.192.0 - - High
524 80.243.208.0 - - High
525 80.248.192.0 - - High
526 80.253.80.0 - - High
527 80.254.64.0 80-254-64-0.static.monzoon.net - High
528 80.254.155.0 - - High
529 80.254.160.0 - - High
530 80.255.7.64 - - High
531 80.255.12.128 - - High
532 80.255.96.0 - - High
533 81.2.149.84 - - High
534 81.6.0.0 - - High
535 81.6.155.160 - - High
536 81.7.224.0 81-7-224-0.static.upc.ch - High
537 81.13.128.0 - - High
538 81.17.16.0 hostedby.privatelayer.com - High
539 81.18.16.0 - - High
540 81.23.64.0 - - High
541 81.29.144.0 - - High
542 81.62.0.0 0.0.62.81.dynamic.wline.res.cust.swisscom.ch - High
543 81.88.176.0 - - High
544 81.90.184.0 - - High
545 81.92.17.240 - - High
546 81.92.96.0 - - High
547 81.94.96.0 - - High
548 81.95.7.184 - - High
549 81.163.196.0 - - High
550 81.171.52.64 unknown.puregig.net - High
551 81.171.53.64 unknown.puregig.net - High
552 81.173.80.0 - - High
553 81.201.192.0 - - High
554 81.221.0.0 - - High
555 82.102.24.0 - - High
556 82.130.64.0 matl-hci-dock-1-a.ethz.ch - High
557 82.136.64.0 dzrc6331buewe.static-hfc.datazug.ch - High
558 82.146.192.0 00.192.146.82.reverse.gruyere-energie.ch - High
559 82.163.137.228 - - High
560 82.192.224.0 c-82-192-224-0.customer.ggaweb.ch - High
561 82.195.187.19 - - High
562 82.195.224.0 gic-net-224-000.genotec.ch - High
563 82.197.160.0 - - High
564 82.199.128.0 - - High
565 82.199.130.0 - - High
566 82.199.132.0 - - High
567 82.199.136.0 - - High
568 82.199.144.0 - - High
569 82.199.148.0 - - High
570 82.199.151.0 - - High
571 82.199.152.0 - - High
572 82.220.0.0 - - High
573 83.68.192.0 - - High
574 83.76.0.0 0.0.76.83.dynamic.wline.res.cust.swisscom.ch - High
575 83.97.80.0 - - High
576 83.97.120.0 - - High
577 83.137.6.187 - - High
578 83.137.6.188 - - High
579 83.137.24.0 - - High
580 83.137.72.0 - - High
581 83.142.88.0 - - High
582 83.143.72.0 - - High
583 83.143.119.64 cruz.mmgsc.org - High
584 83.144.192.0 - - High
585 83.150.0.0 - - High
586 83.151.82.144 - - High
587 83.151.85.0 - - High
588 83.151.86.0 - - High
589 83.166.128.0 - - High
590 83.172.192.0 - - High
591 83.173.192.0 0.192.173.83.static.wline.lns.sme.cust.swisscom.ch - High
592 83.219.100.0 - - High
593 83.219.112.0 - - High
594 83.222.128.0 - - High
595 83.228.128.0 - - High
596 83.231.149.232 cpe0007570-switzerland-nat1.sys.ntt.eu - High
597 84.16.64.0 - - High
598 84.17.52.0 - - High
599 84.19.140.146 - - High
600 84.20.32.0 - - High
601 84.39.112.0 - - High
602 84.39.114.0 - - High
603 84.39.117.0 - - High
604 84.39.117.32 - - High
605 84.39.117.48 - - High
606 84.39.117.56 56.117.39.84.in-addr.arpa - High
607 84.39.117.58 58.117.39.84.in-addr.arpa - High
608 84.39.117.60 60.117.39.84.in-addr.arpa - High
609 84.39.117.64 - - High
610 84.39.117.128 - - High
611 84.39.118.0 - - High
612 84.39.144.0 - - High
613 84.55.192.0 - - High
614 84.72.0.0 - - High
615 84.226.0.0 - - High
616 84.241.64.0 - - High
617 84.246.232.0 - - High
618 84.253.0.0 - - High
619 84.254.80.0 0.80.254.84.ftth.as8758.net - High
620 84.254.96.0 - - High
621 85.0.0.0 0.0.0.85.dynamic.wline.res.cust.swisscom.ch - High
622 85.10.245.144 net-core3-zurich-dc2.firestorm.ch - High
623 85.10.245.188 net-core1-zurich-dc2.firestorm.ch - High
624 85.31.207.208 - - High
625 85.90.0.0 0.0.90.85.reverse.netplusfr.net - High
626 85.115.62.0 - - High
627 85.118.216.0 - - High
628 85.119.0.0 - - High
629 85.119.232.0 - - High
630 85.158.12.0 - - High
631 85.158.24.0 - - High
632 85.158.232.0 - - High
633 85.184.244.0 - - High
634 85.184.252.0 - - High
635 85.195.192.0 - - High
636 85.217.160.0 - - High
637 85.217.172.0 - - High
638 85.217.184.0 - - High
639 85.218.0.0 - - High
640 85.235.88.0 - - High
641 86.111.128.0 - - High
642 86.116.0.0 - - High
643 87.102.128.0 - - High
644 87.117.70.0 - - High
645 87.117.120.0 - - High
646 87.236.200.0 - - High
647 87.237.168.0 - - High
648 87.239.188.72 s0275ce0.r205.ixn.zur.ch.iptp.net - High
649 87.239.200.0 - - High
650 87.239.208.0 - - High
651 87.239.224.0 - - High
652 87.245.64.0 - - High
653 87.248.120.0 - - High
654 88.84.0.0 cable-static-0-0.rsnweb.ch - High
655 88.85.0.0 - - High
656 88.151.144.0 dynamic-88-151-144-0.ptr.as35518.net - High
657 88.202.88.0 88-202-88-0.ip.skylogicnet.com - High
658 88.213.128.0 dynamic-88-213-128-0.ptr.as35518.net - High
659 88.214.4.0 - - High
660 88.218.24.0 - - High
661 89.28.152.0 - - High
662 89.32.250.0 - - High
663 89.36.170.0 netid.170-0-24.dub3.computerline.net - High
664 89.43.116.0 - - High
665 89.45.84.0 - - High
666 89.46.116.0 - - High
667 89.145.164.0 - - High
668 89.163.170.240 98.361.071.042.static.rdns-uclo.net - High
669 89.186.192.0 - - High
670 89.186.208.0 cable-static-208-0.rsnweb.ch - High
671 89.187.165.0 - - High
672 89.190.144.0 - - High
673 89.200.220.0 - - High
674 89.202.154.16 - - High
675 89.202.186.133 - - High
676 89.202.186.248 - - High
677 89.206.64.0 net-89-206-64-0-y02--22.uzh.ch - High
678 89.207.8.0 - - High
679 89.207.224.0 - - High
680 89.217.0.0 - - High
681 89.236.128.0 0-128-236-89.dyn.fiber.qlnet.ch - High
682 89.248.32.0 - - High
683 89.248.158.0 - - High
684 89.249.32.0 - - High
685 89.251.240.0 - - High
686 91.90.193.0 subnet.spec.friendhosting.net - High
687 91.92.71.0 host-0-71-92-91.cloudsigma.net - High
688 91.92.116.0 - - High
689 91.92.140.0 - - High
690 91.92.152.0 - - High
691 91.92.200.0 - - High
692 91.92.224.0 - - High
693 91.102.192.0 - - High
694 91.108.184.0 - - High
695 91.108.184.128 - - High
696 ... ... ... ...

There are 2779 more IOC items available. Please use our online service to access the data.

TTP - Tactics, Techniques, Procedures

Tactics, techniques, and procedures (TTP) summarize the suspected MITRE ATT&CK techniques used by Switzerland Unknown. This data is unique as it uses our predictive model for actor profiling.

ID Technique Weakness Description Confidence
1 T1006 CWE-21, CWE-22, CWE-23 Pathname Traversal High
2 T1040 CWE-294 Authentication Bypass by Capture-replay High
3 T1055 CWE-74 Injection High
4 T1059 CWE-94, CWE-1321 Cross Site Scripting High
5 T1059.007 CWE-79, CWE-80, CWE-87 Cross Site Scripting High
6 ... ... ... ...

There are 18 more TTP items available. Please use our online service to access the data.

IOA - Indicator of Attack

These indicators of attack (IOA) list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration by Switzerland Unknown. This data is unique as it uses our predictive model for actor profiling.

ID Type Indicator Confidence
1 File .php.gif Medium
2 File //proc/kcore Medium
3 File /Admin/add-student.php High
4 File /admin/login.php High
5 File /Admin/login.php High
6 File /admin/students/manage.php High
7 File /admin/students/view_student.php High
8 File /admin/submit-articles High
9 File /api/user/password/sent-reset-email High
10 File /api/user/upsert/<uuid> High
11 File /apilog.php Medium
12 File /cgi-bin/wlogin.cgi High
13 File /connectors/index.php High
14 File /dashboard/updatelogo.php High
15 File /employeeview.php High
16 File /etc/openshift/server_priv.pem High
17 File /forum/away.php High
18 File /h/calendar Medium
19 File /h/compose Medium
20 File /h/search?action=voicemail&action=listen High
21 File /index.asp Medium
22 File /index.php Medium
23 File /items/view_item.php High
24 File /jfinal_cms/system/role/list High
25 File /loginVaLidation.php High
26 File /manage-apartment.php High
27 File /manager/index.php High
28 File /medical/inventories.php High
29 File /mkshop/Men/profile.php High
30 File /modules/profile/index.php High
31 File /modules/projects/vw_files.php High
32 File /modules/public/calendar.php High
33 File /newsDia.php Medium
34 File /Noxen-master/users.php High
35 File /opac/Actions.php?a=login High
36 File /opt/zimbra/jetty/webapps/zimbra/public High
37 File /out.php Medium
38 File /pages/animals.php High
39 File /php-sms/classes/Master.php High
40 File /php-sms/classes/SystemSettings.php High
41 File /php_action/createOrder.php High
42 File /php_action/editProductImage.php High
43 File /ResiotQueryDBActive High
44 File /sacco_shield/manage_user.php High
45 File /secure/QueryComponent!Default.jspa High
46 File /SetTriggerWPS/PIN High
47 File /spip.php Medium
48 File /sqlitemanager/main.php?dbsel=-1%20or%2072%20=%2072 High
49 File /src/png2swf.c High
50 File /staff/bookdetails.php High
51 File /tos/index.php?app/app_start_stop High
52 File /uncpath/ Medium
53 File /user/update_booking.php High
54 File /var/log/qualys/qualys-cloud-agent-scan.log High
55 File /Wedding-Management-PHP/admin/photos_add.php High
56 File /wordpress/wp-admin/options-general.php High
57 File adclick.php Medium
58 File add-patient.php High
59 ... ... ...

There are 516 more IOA items available (file, library, argument, input value, pattern, network port). Please use our online service to access the data.

References

The following list contains external sources which discuss the actor and the associated activities:

Literature

The following articles explain our unique predictive cyber threat intelligence:

License

(c) 1997-2022 by vuldb.com. All data on this page is shared under the license CC BY-NC-SA 4.0. Questions? Check the FAQ, read the documentation or contact us!