mirror of
https://github.com/vuldb/cyber_threat_intelligence
synced 2024-07-03 08:58:21 +00:00
77 lines
5.2 KiB
Markdown
77 lines
5.2 KiB
Markdown
# Aland Unknown - Cyber Threat Intelligence
|
|
|
|
These _indicators_ were reported, collected, and generated during the [VulDB CTI analysis](https://vuldb.com/?kb.cti) of the actor known as [Aland Unknown](https://vuldb.com/?actor.aland_unknown). The _activity monitoring_ correlates data from social media, forums, chat rooms, and darknet markets. It helps to determine associated actors, specific activities, expected intentions, emerging research, and ongoing attacks. Our unique _predictive model_ uses _big data_ to forecast activities and their characteristics.
|
|
|
|
_Live data_ and more _analysis capabilities_ are available at [https://vuldb.com/?actor.aland_unknown](https://vuldb.com/?actor.aland_unknown)
|
|
|
|
## IOC - Indicator of Compromise
|
|
|
|
These _indicators of compromise_ (IOC) indicate associated network resources which are known to be part of research and attack activities of Aland Unknown.
|
|
|
|
ID | IP address | Hostname | Campaign | Confidence
|
|
-- | ---------- | -------- | -------- | ----------
|
|
1 | [5.62.61.248](https://vuldb.com/?ip.5.62.61.248) | r-248-61-62-5.consumer-pool.prcdn.net | - | High
|
|
2 | [5.62.63.244](https://vuldb.com/?ip.5.62.63.244) | r-244-63-62-5.consumer-pool.prcdn.net | - | High
|
|
3 | [45.12.70.15](https://vuldb.com/?ip.45.12.70.15) | straggler.get-eye.com | - | High
|
|
4 | [45.12.71.15](https://vuldb.com/?ip.45.12.71.15) | - | - | High
|
|
5 | [46.36.201.221](https://vuldb.com/?ip.46.36.201.221) | - | - | High
|
|
6 | [46.36.201.222](https://vuldb.com/?ip.46.36.201.222) | - | - | High
|
|
7 | [46.36.201.224](https://vuldb.com/?ip.46.36.201.224) | - | - | High
|
|
8 | [79.133.0.0](https://vuldb.com/?ip.79.133.0.0) | - | - | High
|
|
9 | [82.199.160.0](https://vuldb.com/?ip.82.199.160.0) | - | - | High
|
|
10 | [82.199.161.0](https://vuldb.com/?ip.82.199.161.0) | - | - | High
|
|
11 | [82.199.161.128](https://vuldb.com/?ip.82.199.161.128) | 82-199-161-128.bredband.aland.net | - | High
|
|
12 | [82.199.161.192](https://vuldb.com/?ip.82.199.161.192) | 82-199-161-192.bredband.aland.net | - | High
|
|
13 | [82.199.162.0](https://vuldb.com/?ip.82.199.162.0) | - | - | High
|
|
14 | [82.199.163.0](https://vuldb.com/?ip.82.199.163.0) | - | - | High
|
|
15 | [82.199.163.64](https://vuldb.com/?ip.82.199.163.64) | 82-199-163-64.paf.com | - | High
|
|
16 | [82.199.163.128](https://vuldb.com/?ip.82.199.163.128) | 82-199-163-128.mtel.aland.fi | - | High
|
|
17 | [82.199.164.0](https://vuldb.com/?ip.82.199.164.0) | - | - | High
|
|
18 | [82.199.168.0](https://vuldb.com/?ip.82.199.168.0) | - | - | High
|
|
19 | [82.199.176.0](https://vuldb.com/?ip.82.199.176.0) | - | - | High
|
|
20 | [82.199.178.0](https://vuldb.com/?ip.82.199.178.0) | - | - | High
|
|
21 | [82.199.179.0](https://vuldb.com/?ip.82.199.179.0) | - | - | High
|
|
22 | [82.199.179.128](https://vuldb.com/?ip.82.199.179.128) | - | - | High
|
|
23 | [82.199.180.0](https://vuldb.com/?ip.82.199.180.0) | - | - | High
|
|
24 | [82.199.184.0](https://vuldb.com/?ip.82.199.184.0) | - | - | High
|
|
25 | [82.199.185.0](https://vuldb.com/?ip.82.199.185.0) | - | - | High
|
|
26 | [82.199.185.16](https://vuldb.com/?ip.82.199.185.16) | 82-199-185-16.havsvidden.ax | - | High
|
|
27 | [82.199.185.32](https://vuldb.com/?ip.82.199.185.32) | - | - | High
|
|
28 | [82.199.185.48](https://vuldb.com/?ip.82.199.185.48) | - | - | High
|
|
29 | [82.199.185.64](https://vuldb.com/?ip.82.199.185.64) | - | - | High
|
|
30 | [83.145.3.90](https://vuldb.com/?ip.83.145.3.90) | - | - | High
|
|
31 | [91.105.208.0](https://vuldb.com/?ip.91.105.208.0) | - | - | High
|
|
32 | [185.36.148.0](https://vuldb.com/?ip.185.36.148.0) | - | - | High
|
|
33 | [185.84.30.0](https://vuldb.com/?ip.185.84.30.0) | - | - | High
|
|
34 | [185.98.228.0](https://vuldb.com/?ip.185.98.228.0) | - | - | High
|
|
35 | [185.134.100.8](https://vuldb.com/?ip.185.134.100.8) | - | - | High
|
|
36 | [185.217.4.0](https://vuldb.com/?ip.185.217.4.0) | - | - | High
|
|
37 | [193.181.196.0](https://vuldb.com/?ip.193.181.196.0) | - | - | High
|
|
38 | [193.234.48.0](https://vuldb.com/?ip.193.234.48.0) | - | - | High
|
|
39 | [194.50.99.15](https://vuldb.com/?ip.194.50.99.15) | - | - | High
|
|
40 | [194.50.111.15](https://vuldb.com/?ip.194.50.111.15) | - | - | High
|
|
41 | [194.71.144.0](https://vuldb.com/?ip.194.71.144.0) | - | - | High
|
|
42 | [194.110.176.0](https://vuldb.com/?ip.194.110.176.0) | - | - | High
|
|
43 | [194.110.178.0](https://vuldb.com/?ip.194.110.178.0) | - | - | High
|
|
44 | ... | ... | ... | ...
|
|
|
|
There are 171 more IOC items available. Please use our online service to access the data.
|
|
|
|
## References
|
|
|
|
The following list contains _external sources_ which discuss the actor and the associated activities:
|
|
|
|
* https://github.com/firehol/blocklist-ipsets/blob/master/geolite2_country/country_ax.netset
|
|
* https://github.com/firehol/blocklist-ipsets/blob/master/ipip_country/ipip_country_ax.netset
|
|
|
|
## Literature
|
|
|
|
The following _articles_ explain our unique predictive cyber threat intelligence:
|
|
|
|
* [VulDB Cyber Threat Intelligence Documentation](https://vuldb.com/?kb.cti)
|
|
* [Cyber Threat Intelligence - Early Anticipation of Attacks](https://www.scip.ch/en/?labs.20201022)
|
|
|
|
## License
|
|
|
|
(c) [1997-2023](https://vuldb.com/?kb.changelog) by [vuldb.com](https://vuldb.com/?kb.about). All data on this page is shared under the license [CC BY-NC-SA 4.0](https://creativecommons.org/licenses/by-nc-sa/4.0/). Questions? Check the [FAQ](https://vuldb.com/?kb.faq), read the [documentation](https://vuldb.com/?kb) or [contact us](https://vuldb.com/?contact)!
|