Mirrors/cyber_threat_intelligence
6
0
Fork 0
mirror of https://github.com/vuldb/cyber_threat_intelligence synced 2024-06-27 09:28:52 +00:00
Code Issues Packages Projects Releases Wiki Activity
9acd7aff46
cyber_threat_intelligence/actors/Czechia Unknown
History
Marc Ruef 819a7a8241 Update January 2024
2024-01-26 07:53:33 +01:00
..
README.md Update January 2024 2024-01-26 07:53:33 +01:00

README.md

Czechia Unknown - Cyber Threat Intelligence

These indicators were reported, collected, and generated during the VulDB CTI analysis of the actor known as Czechia Unknown. The activity monitoring correlates data from social media, forums, chat rooms, and darknet markets. It helps to determine associated actors, specific activities, expected intentions, emerging research, and ongoing attacks. Our unique predictive model uses big data to forecast activities and their characteristics.

Live data and more analysis capabilities are available at https://vuldb.com/?actor.czechia_unknown

Countries

These countries are directly (e.g. origin of attacks) or indirectly (e.g. access by proxy) associated with Czechia Unknown:

There are 28 more country items available. Please use our online service to access the data.

IOC - Indicator of Compromise

These indicators of compromise (IOC) indicate associated network resources which are known to be part of research and attack activities of Czechia Unknown.

ID IP address Hostname Campaign Confidence
1 2.16.2.0 a2-16-2-0.deploy.static.akamaitechnologies.com - High
2 2.16.24.0 a2-16-24-0.deploy.static.akamaitechnologies.com - High
3 2.16.44.0 a2-16-44-0.deploy.static.akamaitechnologies.com - High
4 2.16.60.4 a2-16-60-4.deploy.static.akamaitechnologies.com - High
5 2.16.60.12 a2-16-60-12.deploy.static.akamaitechnologies.com - High
6 2.16.60.20 a2-16-60-20.deploy.static.akamaitechnologies.com - High
7 2.16.60.28 a2-16-60-28.deploy.static.akamaitechnologies.com - High
8 2.16.60.30 a2-16-60-30.deploy.static.akamaitechnologies.com - High
9 2.16.60.68 a2-16-60-68.deploy.static.akamaitechnologies.com - High
10 2.16.60.76 a2-16-60-76.deploy.static.akamaitechnologies.com - High
11 2.16.60.84 a2-16-60-84.deploy.static.akamaitechnologies.com - High
12 2.16.60.92 a2-16-60-92.deploy.static.akamaitechnologies.com - High
13 2.16.60.100 a2-16-60-100.deploy.static.akamaitechnologies.com - High
14 2.16.60.108 a2-16-60-108.deploy.static.akamaitechnologies.com - High
15 2.16.60.116 a2-16-60-116.deploy.static.akamaitechnologies.com - High
16 2.16.60.119 a2-16-60-119.deploy.static.akamaitechnologies.com - High
17 2.16.60.124 a2-16-60-124.deploy.static.akamaitechnologies.com - High
18 2.16.60.126 a2-16-60-126.deploy.static.akamaitechnologies.com - High
19 2.16.60.132 a2-16-60-132.deploy.static.akamaitechnologies.com - High
20 2.16.60.140 a2-16-60-140.deploy.static.akamaitechnologies.com - High
21 2.16.60.148 a2-16-60-148.deploy.static.akamaitechnologies.com - High
22 2.16.60.156 a2-16-60-156.deploy.static.akamaitechnologies.com - High
23 2.16.60.164 a2-16-60-164.deploy.static.akamaitechnologies.com - High
24 2.16.98.0 a2-16-98-0.deploy.static.akamaitechnologies.com - High
25 2.21.74.0 a2-21-74-0.deploy.static.akamaitechnologies.com - High
26 2.23.8.0 a2-23-8-0.deploy.static.akamaitechnologies.com - High
27 2.56.20.0 - - High
28 2.58.12.0 - - High
29 2.58.176.0 - - High
30 5.1.56.0 - - High
31 5.22.152.0 - - High
32 5.34.168.0 - - High
33 5.39.13.216 - - High
34 5.39.19.84 - - High
35 5.39.37.0 - - High
36 5.39.49.32 - - High
37 5.39.49.224 ip224.ip-5-39-49.eu - High
38 5.39.53.80 ip80.ip-5-39-53.eu - High
39 5.39.63.184 fatrareal.sk - High
40 5.39.103.96 - - High
41 5.39.200.0 - - High
42 5.43.224.0 - - High
43 5.45.56.0 - - High
44 5.45.60.0 - - High
45 5.45.63.0 - - High
46 5.53.8.0 - - High
47 5.59.8.0 - - High
48 5.59.10.0 - - High
49 5.59.32.0 - - High
50 5.59.34.0 - - High
51 5.59.38.0 - - High
52 5.59.52.0 - - High
53 5.59.78.0 - - High
54 5.59.96.0 - - High
55 5.59.97.0 - - High
56 5.59.98.0 - - High
57 5.59.104.0 - - High
58 5.59.180.0 - - High
59 5.59.188.0 - - High
60 5.59.196.0 dhcp-0-196-59-5.metro86.ru - High
61 5.59.208.0 dhcp-0-208-59-5.metro86.ru - High
62 5.59.224.0 - - High
63 5.62.28.0 - - High
64 5.62.32.0 - - High
65 5.62.36.0 - - High
66 5.62.50.0 - - High
67 5.62.52.0 - - High
68 5.62.60.0 - - High
69 5.62.61.64 r-64-61-62-5.consumer-pool.prcdn.net - High
70 5.62.61.252 r-252.61.62.5.ptr.avast.com - High
71 5.101.92.0 subnet.llhost-inc.com - High
72 5.102.48.0 0.48.102.5.client.nordic.tel - High
73 5.104.16.0 5-104-16-0.members.slavicin.unart.cz - High
74 5.132.142.0 - - High
75 5.135.0.0 ip0.ip-5-135-0.eu - High
76 5.135.20.128 ip128.ip-5-135-20.eu - High
77 5.135.28.4 williams.eddiechow.com - High
78 5.135.29.240 ip240.ip-5-135-29.eu - High
79 5.135.30.192 - - High
80 5.135.49.160 ip160.ip-5-135-49.eu - High
81 5.135.67.8 s3.all4rc.ru - High
82 5.135.104.128 hello.omwings.hu - High
83 5.135.115.224 ip224.ip-5-135-115.eu - High
84 5.135.192.224 ip224.ip-5-135-192.eu - High
85 5.135.197.228 - - High
86 5.135.204.128 ip128.ip-5-135-204.eu - High
87 5.135.242.240 ip240.ip-5-135-242.eu - High
88 5.145.104.0 - - High
89 5.154.136.0 - - High
90 5.157.1.0 undefined.hostname.localhost - High
91 5.157.25.0 - - High
92 5.180.196.0 - - High
93 5.180.200.0 net-address200.net.rozhled.net - High
94 5.181.92.0 cust.uvtnet.cz - High
95 5.181.244.0 - - High
96 5.182.148.0 gw2-ttc.zcom.cz - High
97 5.182.186.0 - - High
98 5.182.192.0 - - High
99 5.182.198.0 - - High
100 5.183.12.0 5-183-12-0.static.wolfnet.cz - High
101 5.188.194.0 - - High
102 5.189.252.0 subnet.reserved.ispsystem.net - High
103 5.196.109.32 ray.flyrange.top - High
104 5.196.115.96 itt.semagasin.rest - High
105 5.196.129.240 mongo24.write.cz - High
106 5.196.131.188 ip188.ip-5-196-131.eu - High
107 5.196.184.28 - - High
108 5.196.186.112 ip112.ip-5-196-186.eu - High
109 5.196.187.240 tools-11.xo7.fr - High
110 5.196.194.48 ip48.ip-5-196-194.eu - High
111 5.196.199.120 greeka.greeka.com - High
112 5.196.239.128 ip128.ip-5-196-239.eu - High
113 5.196.248.0 xpertreality.sk - High
114 5.198.128.0 mfonline.cz - High
115 5.231.26.0 - - High
116 5.252.40.0 - - High
117 5.254.60.0 - - High
118 8.40.30.0 - - High
119 11.13.15.17 - - High
120 13.32.147.0 server-13-32-147-0.prg50.r.cloudfront.net - High
121 13.226.89.0 server-13-226-89-0.prg50.r.cloudfront.net - High
122 14.137.176.0 ecs-14-137-176-0.compute.hwclouds-dns.com - High
123 17.66.100.0 - - High
124 17.66.104.0 - - High
125 17.67.200.0 - - High
126 17.72.76.0 - - High
127 23.48.16.0 a23-48-16-0.deploy.static.akamaitechnologies.com - High
128 23.73.140.0 a23-73-140-0.deploy.static.akamaitechnologies.com - High
129 23.75.64.0 a23-75-64-0.deploy.static.akamaitechnologies.com - High
130 23.212.110.0 a23-212-110-0.deploy.static.akamaitechnologies.com - High
131 23.219.91.92 a23-219-91-92.deploy.static.akamaitechnologies.com - High
132 23.219.91.100 a23-219-91-100.deploy.static.akamaitechnologies.com - High
133 23.219.91.108 a23-219-91-108.deploy.static.akamaitechnologies.com - High
134 23.219.91.116 a23-219-91-116.deploy.static.akamaitechnologies.com - High
135 23.219.91.124 a23-219-91-124.deploy.static.akamaitechnologies.com - High
136 23.219.91.132 a23-219-91-132.deploy.static.akamaitechnologies.com - High
137 23.219.91.140 a23-219-91-140.deploy.static.akamaitechnologies.com - High
138 23.219.91.148 a23-219-91-148.deploy.static.akamaitechnologies.com - High
139 23.219.91.156 a23-219-91-156.deploy.static.akamaitechnologies.com - High
140 31.6.21.0 - - High
141 31.6.29.0 - - High
142 31.6.38.0 - - High
143 31.7.240.0 - - High
144 31.10.56.0 0.56.10.31.client.nordic.tel - High
145 31.14.72.0 - - High
146 31.15.8.0 net.v150.active24.cz - High
147 31.28.128.0 - - High
148 31.30.0.0 - - High
149 31.31.72.0 - - High
150 31.31.224.0 - - High
151 31.41.200.0 - - High
152 31.47.96.0 - - High
153 31.130.168.0 - - High
154 31.132.16.0 31-132-16-0.ip.jes.cz - High
155 31.133.8.0 - - High
156 31.134.216.0 - - High
157 31.148.0.0 static-31-148-0-0.netbynet.ru - High
158 31.148.20.0 - - High
159 31.148.24.0 - - High
160 31.148.40.0 - - High
161 31.148.48.0 - - High
162 31.148.50.0 - - High
163 31.148.64.0 - - High
164 31.148.96.0 - - High
165 31.148.128.0 31.148.128.0.serverel.net - High
166 31.148.168.0 - - High
167 31.148.170.0 - - High
168 31.148.174.0 - - High
169 31.148.196.0 - - High
170 31.148.200.0 - - High
171 31.148.212.0 - - High
172 31.148.216.0 - - High
173 31.148.224.0 - - High
174 31.148.244.0 - - High
175 31.169.128.0 ip-31-169-128-0.net.vodafone.cz - High
176 31.170.176.0 - - High
177 31.177.24.0 - - High
178 31.184.236.0 - - High
179 31.186.184.0 - - High
180 31.192.64.0 - - High
181 31.222.0.0 isp-31-222-0-0.saowifi.net - High
182 31.222.8.0 isp-31-222-8-0.saowifi.net - High
183 31.222.14.0 isp-31-222-14-0.saowifi.net - High
184 31.222.66.0 - - High
185 31.222.68.0 - - High
186 32.42.29.152 - - High
187 32.106.155.0 - - High
188 34.99.144.0 0.144.99.34.bc.googleusercontent.com - Medium
189 34.99.216.0 0.216.99.34.bc.googleusercontent.com - Medium
190 34.103.160.0 0.160.103.34.bc.googleusercontent.com - Medium
191 34.103.225.0 0.225.103.34.bc.googleusercontent.com - Medium
192 37.0.113.0 - - High
193 37.9.192.0 - - High
194 37.19.192.0 cwc-mia.cdn77.com - High
195 37.44.16.0 - - High
196 37.44.208.0 - - High
197 37.46.80.0 unasigned-0-80-46-37.hosting90.net - High
198 37.46.208.0 - - High
199 37.48.0.0 37-48-0-0.nat.epc.tmcz.cz - High
200 37.59.68.160 - - High
201 37.59.85.104 ip104.ip-37-59-85.eu - High
202 37.59.88.88 - - High
203 37.59.129.224 ip224.ip-37-59-129.eu - High
204 37.59.137.116 - - High
205 37.59.162.184 - - High
206 37.59.165.224 ip224.ip-37-59-165.eu - High
207 37.59.174.48 ip48.ip-37-59-174.eu - High
208 37.59.186.44 ip44.ip-37-59-186.eu - High
209 37.59.219.64 - - High
210 37.59.223.64 ip64.ip-37-59-223.eu - High
211 37.59.225.148 - - High
212 37.59.248.240 ip240.ip-37-59-248.eu - High
213 37.59.248.242 ip242.ip-37-59-248.eu - High
214 37.77.145.0 - - High
215 37.77.149.0 - - High
216 37.77.224.0 - - High
217 37.140.220.0 - - High
218 37.143.112.0 - - High
219 37.156.187.0 - - High
220 37.157.192.0 - - High
221 37.187.188.72 rev.testalldom.eu - High
222 37.188.128.0 37-188-128-0.red.o2.cz - High
223 37.205.8.0 - - High
224 37.221.68.0 - - High
225 37.221.71.0 - - High
226 37.221.88.0 - - High
227 37.221.116.0 - - High
228 37.221.240.0 network.srv.tlapnet.cz - High
229 37.235.96.0 - - High
230 37.235.99.0 - - High
231 37.235.100.0 - - High
232 37.235.104.0 - - High
233 37.235.108.0 - - High
234 37.235.109.0 - - High
235 37.235.110.0 - - High
236 37.235.111.0 - - High
237 40.69.244.0 - - High
238 43.113.224.0 - - High
239 45.8.40.0 - - High
240 45.10.97.0 45.10.97.0.websupport.eu - High
241 45.10.191.0 - - High
242 45.10.234.0 - - High
243 45.11.132.0 - - High
244 45.12.70.56 csmacd-data.get-eye.com - High
245 45.12.71.56 - - High
246 45.13.75.0 - - High
247 45.14.16.0 - - High
248 45.14.156.0 - - High
249 45.15.41.0 - - High
250 45.15.56.0 - - High
251 45.64.114.128 - - High
252 45.66.52.0 - - High
253 45.66.118.0 host.odtn.ru - High
254 45.67.13.0 - - High
255 45.67.140.0 - - High
256 45.80.248.0 - - High
257 45.81.92.0 - - High
258 45.81.96.0 unn-45.81.96.0.zcom.cz - High
259 45.82.81.0 - - High
260 45.82.152.0 - - High
261 45.82.156.0 - - High
262 45.82.232.0 - - High
263 45.83.8.0 - - High
264 45.83.112.0 45-83-112-0.upcloudnet.com - High
265 45.83.124.0 - - High
266 45.83.132.0 - - High
267 45.83.136.0 - - High
268 45.83.144.0 - - High
269 45.83.152.0 - - High
270 45.83.212.0 - - High
271 45.84.164.0 - - High
272 45.85.172.0 - - High
273 45.85.252.0 - - High
274 45.86.48.0 - - High
275 45.86.50.0 - - High
276 45.87.12.0 - - High
277 45.87.116.0 - - High
278 45.87.236.0 - - High
279 45.88.152.0 - - High
280 45.89.44.0 - - High
281 45.90.100.0 - - High
282 45.91.0.0 r0.mtu.cz - High
283 45.91.28.0 - - High
284 45.91.180.0 - - High
285 45.92.42.0 - - High
286 45.92.236.0 - - High
287 45.93.152.0 r1.msk.cz - High
288 45.95.72.0 - - High
289 45.129.24.0 - - High
290 45.129.104.0 - - High
291 45.129.106.0 - - High
292 45.129.156.0 - - High
293 45.130.248.0 - - High
294 45.132.0.0 - - High
295 45.132.148.0 - - High
296 45.132.160.0 - - High
297 45.134.148.0 - - High
298 45.134.214.0 unn-45-134-214-0.cdn77.com - High
299 45.134.216.0 216-0.ip.nettv.uz - High
300 45.135.84.0 - - High
301 45.135.152.0 - - High
302 45.135.180.0 ip-45-135-180-0.vps.vpinet.cz - High
303 45.136.152.0 unn-45-136-152-0.datapacket.com - High
304 45.137.128.0 45-137-128-0.telecombusinessforme.net - High
305 45.138.104.0 - - High
306 45.139.36.0 - - High
307 45.139.44.0 - - High
308 45.139.56.0 - - High
309 45.139.64.0 45-139-64-0.cloud-info.net - High
310 45.139.88.0 - - High
311 45.139.224.0 - - High
312 45.140.24.0 - - High
313 45.140.40.0 - - High
314 45.140.240.0 - - High
315 45.141.248.0 - - High
316 45.142.48.0 - - High
317 45.142.116.0 - - High
318 45.143.240.0 - - High
319 45.145.220.0 - - High
320 45.146.108.0 - - High
321 45.147.164.0 45-147-164-0.telecombusinessforme.net - High
322 45.148.80.0 unassigned-45.148.80.0.active24.cz - High
323 45.149.130.0 - - High
324 45.150.36.0 ip-45-150-36-0.vps.vpinet.cz - High
325 45.151.52.0 - - High
326 45.153.160.0 - - High
327 45.153.192.0 tlapnet-192-0.cust.tlapnet.cz - High
328 45.155.12.0 - - High
329 45.156.44.0 - - High
330 45.156.112.0 - - High
331 45.158.88.0 - - High
332 45.158.200.0 - - High
333 45.158.224.0 45-158-224-0.serversfinder.com - High
334 45.159.108.0 - - High
335 45.159.116.0 0.116.159.45.client.nordic.tel - High
336 46.8.8.0 - - High
337 46.13.0.0 - - High
338 46.16.120.0 - - High
339 46.23.48.0 - - High
340 46.23.128.0 - - High
341 46.28.104.0 - - High
342 46.29.4.0 - - High
343 46.29.184.0 - - High
344 46.29.224.0 ip-0-224.static.ccinternet.cz - High
345 46.30.64.0 - - High
346 46.30.88.0 - - High
347 46.30.144.0 - - High
348 46.30.232.0 - - High
349 46.33.96.0 - - High
350 46.36.32.0 0-32.gtt-net.cz - High
351 46.36.40.0 - - High
352 46.39.160.0 - - High
353 46.47.128.0 - - High
354 46.105.94.184 ip184.ip-46-105-94.eu - High
355 46.105.135.156 156eu.god4.net - High
356 46.105.158.216 - - High
357 46.105.160.224 hyperlink-smtp16.viewwonsms.com - High
358 46.105.172.92 - - High
359 46.105.172.228 - - High
360 46.105.215.192 ip192.ip-46-105-215.eu - High
361 46.105.218.128 blue-arrow12.tooles.info - High
362 46.105.245.164 - - High
363 46.105.251.0 - - High
364 46.105.255.220 - - High
365 46.135.0.0 - - High
366 46.149.112.0 - - High
367 46.167.192.0 ip-46-167-192-0.net.vodafone.cz - High
368 46.173.192.0 - - High
369 46.174.16.0 - - High
370 46.174.32.0 - - High
371 46.174.56.0 - - High
372 46.174.152.0 0.152.174.46.mjanik.net - High
373 46.175.88.0 - - High
374 46.175.176.0 - - High
375 46.183.56.0 0.56.183.46.client.nordic.tel - High
376 46.183.64.0 - - High
377 46.189.67.120 - - High
378 46.226.16.0 ttcas16net.ttc.cz - High
379 46.227.8.0 - - High
380 46.227.168.0 - - High
381 46.228.16.0 - - High
382 46.229.112.0 - - High
383 46.231.72.0 0.72.231.46.client.nordic.tel - High
384 46.234.96.0 - - High
385 46.234.104.0 - - High
386 46.234.108.0 - - High
387 46.234.110.0 - - High
388 46.234.112.0 - - High
389 46.234.160.0 - - High
390 46.243.0.0 - - High
391 46.243.48.0 net-46-243-48-0.vshosting.cz - High
392 46.252.224.0 - - High
393 46.253.96.0 - - High
394 46.254.64.0 - - High
395 46.255.8.0 - - High
396 46.255.224.0 - - High
397 50.7.185.0 50-7-185-0.host-engine.com - High
398 50.7.194.0 - - High
399 50.7.224.0 - - High
400 50.7.228.0 - - High
401 50.7.234.0 - - High
402 50.7.238.0 - - High
403 50.7.240.0 - - High
404 50.7.255.0 - - High
405 51.38.1.64 ip64.ip-51-38-1.eu - High
406 51.38.17.96 mta4.techeventmedia.com - High
407 51.38.22.0 ip0.ip-51-38-22.eu - High
408 51.38.96.240 ip240.ip-51-38-96.eu - High
409 51.38.110.224 hosted-by.100up.org - High
410 51.38.121.16 ip16.ip-51-38-121.eu - High
411 51.38.122.28 ip28.ip-51-38-122.eu - High
412 51.38.169.192 ip192.ip-51-38-169.eu - High
413 51.38.206.96 ip96.ip-51-38-206.eu - High
414 51.68.58.128 dns1.goldenmarket.net - High
415 51.68.163.160 ip160.ip-51-68-163.eu - High
416 51.68.170.240 ip240.ip-51-68-170.eu - High
417 51.68.185.144 seopapese.guru - High
418 51.75.83.96 ip96.ip-51-75-83.eu - High
419 51.75.84.64 ip64.ip-51-75-84.eu - High
420 51.75.87.96 ip96.ip-51-75-87.eu - High
421 51.75.153.144 ip144.ip-51-75-153.eu - High
422 51.75.215.32 ip32.ip-51-75-215.eu - High
423 51.77.25.32 - - High
424 51.77.72.224 - - High
425 51.77.74.208 ip208.ip-51-77-74.eu - High
426 51.77.79.48 - - High
427 51.77.90.144 ip144.ip-51-77-90.eu - High
428 51.77.90.240 ip240.ip-51-77-90.eu - High
429 51.77.92.176 ip176.ip-51-77-92.eu - High
430 51.77.234.96 ip96.ip-51-77-234.eu - High
431 51.83.113.176 - - High
432 51.83.113.192 - - High
433 51.89.13.16 ip16.ip-51-89-13.eu - High
434 51.89.16.80 ip80.ip-51-89-16.eu - High
435 51.89.24.48 ip48.ip-51-89-24.eu - High
436 51.89.25.112 ip112.ip-51-89-25.eu - High
437 51.89.30.48 ip48.ip-51-89-30.eu - High
438 51.89.33.96 ip96.ip-51-89-33.eu - High
439 51.89.38.0 ip0.ip-51-89-38.eu - High
440 51.89.51.192 ip192.ip-51-89-51.eu - High
441 51.89.52.176 ip176.ip-51-89-52.eu - High
442 51.89.85.48 ip48.ip-51-89-85.eu - High
443 51.89.122.128 ip128.ip-51-89-122.eu - High
444 51.91.168.160 ip160.ip-51-91-168.eu - High
445 51.91.180.128 ip128.ip-51-91-180.eu - High
446 51.91.203.32 - - High
447 51.178.235.128 ip128.ip-51-178-235.eu - High
448 51.254.10.152 ip152.ip-51-254-10.eu - High
449 51.254.14.252 ip252.ip-51-254-14.eu - High
450 51.254.25.112 ip112.ip-51-254-25.eu - High
451 51.254.50.96 vps2.catinthebox.cz - High
452 51.254.73.208 ip208.ip-51-254-73.eu - High
453 51.254.79.12 ip12.ip-51-254-79.eu - High
454 51.254.109.96 ip96.ip-51-254-109.eu - High
455 51.254.146.176 enterprise-51.254.146.176.exon.io - High
456 51.254.158.224 ip224.ip-51-254-158.eu - High
457 51.254.164.8 ip8.ip-51-254-164.eu - High
458 51.254.165.0 ip0.ip-51-254-165.eu - High
459 51.254.181.32 ip32.ip-51-254-181.eu - High
460 51.254.195.240 ip240.ip-51-254-195.eu - High
461 51.254.228.152 vpnout102-108-1-cz.ciberprotector.com - High
462 51.254.233.92 ip92.ip-51-254-233.eu - High
463 51.254.238.64 ip64.ip-51-254-238.eu - High
464 51.254.242.208 ip208.ip-51-254-242.eu - High
465 51.254.246.128 ip128.ip-51-254-246.eu - High
466 51.255.17.32 mt12.webmarketsale.com - High
467 51.255.21.228 vpnout101-108-1-cz.ciberprotector.com - High
468 51.255.53.160 ip160.ip-51-255-53.eu - High
469 51.255.59.220 - - High
470 51.255.105.112 ip112.ip-51-255-105.eu - High
471 51.255.112.80 ip80.ip-51-255-112.eu - High
472 51.255.122.136 ip136.ip-51-255-122.eu - High
473 51.255.122.224 n6.dicio.cz - High
474 51.255.133.224 blue-arrow13.tooles.info - High
475 51.255.150.160 ip160.ip-51-255-150.eu - High
476 51.255.219.176 ip176.ip-51-255-219.eu - High
477 52.124.187.0 server-52-124-187-0.prg50.r.cloudfront.net - High
478 54.36.15.192 ip192.ip-54-36-15.eu - High
479 54.36.28.128 ip128.ip-54-36-28.eu - High
480 54.36.66.160 ip160.ip-54-36-66.eu - High
481 54.36.87.192 ip192.ip-54-36-87.eu - High
482 54.36.156.128 ip128.ip-54-36-156.eu - High
483 54.36.195.160 ip160.ip-54-36-195.eu - High
484 54.36.232.208 ip208.ip-54-36-232.eu - High
485 54.37.36.64 ip64.ip-54-37-36.eu - High
486 54.37.120.240 ip240.ip-54-37-120.eu - High
487 54.37.178.224 ip224.ip-54-37-178.eu - High
488 54.37.182.224 ip224.ip-54-37-182.eu - High
489 54.37.188.48 ip48.ip-54-37-188.eu - High
490 54.37.196.48 eastwick.flyconnekt.top - High
491 54.37.202.80 gw-de.iniba.eu - High
492 54.37.209.224 - - High
493 54.37.217.192 ip192.ip-54-37-217.eu - High
494 54.38.9.96 ip96.ip-54-38-9.eu - High
495 54.38.22.96 ip96.ip-54-38-22.eu - High
496 54.38.116.0 ip0.ip-54-38-116.eu - High
497 54.38.127.32 ip32.ip-54-38-127.eu - High
498 54.38.155.64 ip64.ip-54-38-155.eu - High
499 54.38.161.160 ip160.ip-54-38-161.eu - High
500 54.38.163.32 ip32.ip-54-38-163.eu - High
501 54.38.218.96 ip96.ip-54-38-218.eu - High
502 54.182.255.0 server-54-182-255-0.prg50.r.cloudfront.net - High
503 57.90.80.0 - - High
504 57.188.13.0 - - High
505 62.4.96.0 volbackbone.vol.cz - High
506 62.4.104.0 - - High
507 62.4.117.0 - - High
508 62.4.118.0 - - High
509 62.4.120.0 - - High
510 62.24.64.0 ip-62-24-64-0.net.vodafone.cz - High
511 62.40.64.0 - - High
512 62.44.0.0 - - High
513 62.77.64.0 - - High
514 62.80.80.0 - - High
515 62.80.84.0 - - High
516 62.80.85.0 - - High
517 62.80.85.32 - - High
518 62.80.85.128 - - High
519 62.80.88.0 - - High
520 62.84.128.0 - - High
521 62.106.79.0 62-106-79-0.colchester-fibre.co.uk - High
522 62.109.128.0 - - High
523 62.115.102.16 - - High
524 62.115.136.63 ffm-ipx-i4-link.ip.twelve99.net - High
525 62.115.139.218 s-b3-link.ip.twelve99.net - High
526 62.122.168.0 62.122.168.0.serverel.net - High
527 62.129.32.0 - - High
528 62.141.0.0 - - High
529 62.168.0.0 - - High
530 62.177.64.0 adslplusprgnet.vol.cz - High
531 62.182.232.0 - - High
532 62.185.33.80 - - High
533 62.185.227.0 - - High
534 62.185.227.128 - - High
535 62.185.227.224 - - High
536 62.186.144.0 - - High
537 62.186.145.0 - - High
538 62.187.16.0 - - High
539 62.201.16.0 - - High
540 62.204.53.0 - - High
541 62.204.224.0 TTNET-SERVERS.core.ttnet.cz - High
542 62.209.192.0 - - High
543 62.233.57.0 subnet.ipv4.layer6.net - High
544 62.240.160.0 ip-62-240-160-0.net.vodafone.cz - High
545 62.245.64.0 ip-62-245-64-0.bb.vodafone.cz - High
546 63.163.0.73 - - High
547 63.217.31.0 63-217-31-0.static.pccwglobal.net - High
548 63.218.38.0 63-218-38-static.pccwglobal.net - High
549 63.219.181.0 - - High
550 66.159.223.0 - - High
551 66.185.120.0 - - High
552 69.94.64.0 - - High
553 ... ... ... ...

There are 2209 more IOC items available. Please use our online service to access the data.

TTP - Tactics, Techniques, Procedures

Tactics, techniques, and procedures (TTP) summarize the suspected MITRE ATT&CK techniques used by Czechia Unknown. This data is unique as it uses our predictive model for actor profiling.

ID Technique Weakness Description Confidence
1 T1006 CWE-21, CWE-22, CWE-23, CWE-24, CWE-425 Pathname Traversal High
2 T1040 CWE-319 Authentication Bypass by Capture-replay High
3 T1055 CWE-74 Injection High
4 T1059 CWE-88, CWE-94, CWE-1321 Cross Site Scripting High
5 T1059.007 CWE-79, CWE-80 Cross Site Scripting High
6 T1068 CWE-264, CWE-269, CWE-284 J2EE Misconfiguration: Weak Access Permissions for EJB Methods High
7 ... ... ... ...

There are 23 more TTP items available. Please use our online service to access the data.

IOA - Indicator of Attack

These indicators of attack (IOA) list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration by Czechia Unknown. This data is unique as it uses our predictive model for actor profiling.

ID Type Indicator Confidence
1 File %SYSTEMDRIVE%\node_modules\.bin\wmic.exe High
2 File /accounts_con/register_account High
3 File /admin/ Low
4 File /admin/action/new-father.php High
5 File /admin/admin_login_process.php High
6 File /admin/bwdates-report-details.php High
7 File /admin/courses/manage_course.php High
8 File /admin/index.php High
9 File /admin/index.php?act=reset_admin_psw High
10 File /admin/manage-users.php High
11 File /Admin/News.php High
12 File /admin/pages/subjects.php High
13 File /admin/pages/yearlevel.php High
14 File /admin/php/crud.php High
15 File /admin/save.php High
16 File /admin/students/manage_academic.php High
17 File /admin/upload/img High
18 File /admin/uploads/ High
19 File /ajax/networking/get_wgkey.php High
20 File /api/log/killJob High
21 File /api/upload.php High
22 File /api/v1/alerts High
23 File /api/v1/terminal/sessions/?limit=1 High
24 File /api2/html/ Medium
25 File /apps/reg_go.php High
26 File /article/DelectArticleById/ High
27 File /b2b-supermarket/shopping-cart High
28 File /base/ecma-helpers.c High
29 File /categorypage.php High
30 File /cgi-bin/ Medium
31 File /cgi-bin/cstecgi.cgi High
32 File /cgi-bin/cstecgi.cgi?action=login High
33 File /cgi-bin/vitogate.cgi High
34 File /change-language/de_DE High
35 File /classes/Master.php?f=delete_reminder High
36 File /config,admin.jsp High
37 File /dashboard?controller=UserCollection::createUser High
38 File /debug/pprof Medium
39 File /dist/index.js High
40 File /emap/devicePoint_addImgIco?hasSubsystem=true High
41 File /fcgi/scrut_fcgi.fcgi High
42 File /file-manager/rename.php High
43 File /forum/away.php High
44 File /geoserver/gwc/rest.html High
45 File /goform/formSysCmd High
46 File /goform/goform_get_cmd_process High
47 File /gracemedia-media-player/templates/files/ajax_controller.php High
48 File /HNAP1 Low
49 File /hosts/firewall/ip High
50 File /index.php/ccm/system/file/upload High
51 ... ... ...

There are 446 more IOA items available (file, library, argument, input value, pattern, network port). Please use our online service to access the data.

References

The following list contains external sources which discuss the actor and the associated activities:

Literature

The following articles explain our unique predictive cyber threat intelligence:

License

(c) 1997-2024 by vuldb.com. All data on this page is shared under the license CC BY-NC-SA 4.0. Questions? Check the FAQ, read the documentation or contact us!