Mirrors/cyber_threat_intelligence
6
0
Fork 0
mirror of https://github.com/vuldb/cyber_threat_intelligence synced 2024-06-29 02:12:51 +00:00
Code Issues Packages Projects Releases Wiki Activity
a4924b8159
cyber_threat_intelligence/actors/Norway Unknown
History
Marc Ruef a4924b8159 Update August 2023
2023-08-01 08:06:09 +02:00
..
README.md Update August 2023 2023-08-01 08:06:09 +02:00

README.md

Norway Unknown - Cyber Threat Intelligence

These indicators were reported, collected, and generated during the VulDB CTI analysis of the actor known as Norway Unknown. The activity monitoring correlates data from social media, forums, chat rooms, and darknet markets. It helps to determine associated actors, specific activities, expected intentions, emerging research, and ongoing attacks. Our unique predictive model uses big data to forecast activities and their characteristics.

Live data and more analysis capabilities are available at https://vuldb.com/?actor.norway_unknown

Countries

These countries are directly (e.g. origin of attacks) or indirectly (e.g. access by proxy) associated with Norway Unknown:

There are 26 more country items available. Please use our online service to access the data.

IOC - Indicator of Compromise

These indicators of compromise (IOC) indicate associated network resources which are known to be part of research and attack activities of Norway Unknown.

ID IP address Hostname Campaign Confidence
1 1.174.207.0 1-174-207-0.dynamic-ip.hinet.net - High
2 2.18.172.0 a2-18-172-0.deploy.static.akamaitechnologies.com - High
3 2.57.28.0 - - High
4 2.58.24.0 - - High
5 2.148.0.0 2.148.0.0.tmi.telenormobil.no - High
6 4.177.0.0 - - High
7 4.179.0.0 - - High
8 4.219.0.0 - - High
9 4.220.0.0 - - High
10 4.235.0.0 - - High
11 5.22.232.0 - - High
12 5.22.236.0 - - High
13 5.22.238.0 - - High
14 5.23.18.0 - - High
15 5.23.18.42 - - High
16 5.44.64.0 - - High
17 5.45.152.0 - - High
18 5.83.224.0 - - High
19 5.100.176.0 - - High
20 5.145.152.0 - - High
21 5.152.136.0 - - High
22 5.153.104.0 - - High
23 5.157.49.0 - - High
24 5.158.192.0 - - High
25 5.172.182.0 - - High
26 5.181.232.0 - - High
27 5.183.100.0 - - High
28 5.226.160.0 - - High
29 5.249.224.0 - - High
30 5.249.240.0 - - High
31 5.249.248.0 - - High
32 5.249.252.0 - - High
33 5.249.254.0 - - High
34 5.252.244.0 - - High
35 8.41.36.0 - - High
36 8.247.216.0 - - High
37 8.248.224.0 - - High
38 8.253.244.0 - - High
39 8.254.102.0 - - High
40 8.254.152.0 - - High
41 8.254.198.0 - - High
42 8.254.229.0 - - High
43 8.254.252.0 - - High
44 13.104.138.0 - - High
45 13.104.140.14 - - High
46 13.104.140.123 - - High
47 13.104.140.124 - - High
48 13.104.153.48 - - High
49 13.104.153.96 - - High
50 13.104.155.0 - - High
51 13.104.158.0 - - High
52 13.104.158.32 - - High
53 13.104.170.0 - - High
54 13.104.185.192 - - High
55 13.104.217.128 - - High
56 13.104.218.0 - - High
57 13.104.254.160 - - High
58 13.104.254.208 - - High
59 13.104.255.16 - - High
60 13.104.255.32 - - High
61 13.105.80.192 - - High
62 13.105.81.0 - - High
63 13.105.89.140 - - High
64 13.105.97.0 - - High
65 13.105.97.96 - - High
66 13.105.97.128 - - High
67 13.105.165.0 - - High
68 13.106.167.50 - - High
69 13.106.167.52 - - High
70 13.106.238.4 - - High
71 13.106.238.252 - - High
72 13.106.239.0 - - High
73 13.106.239.250 - - High
74 13.106.239.252 - - High
75 13.107.194.76 - - High
76 13.107.194.80 - - High
77 13.107.194.244 - - High
78 13.107.194.248 - - High
79 13.248.101.224 - - High
80 13.248.120.0 - - High
81 14.137.184.0 ecs-14-137-184-0.compute.hwclouds-dns.com - High
82 15.158.75.0 - - High
83 15.158.149.0 - - High
84 17.72.97.0 - - High
85 17.77.132.0 - - High
86 20.38.120.0 - - High
87 20.47.48.0 - - High
88 20.60.15.0 - - High
89 20.60.206.0 - - High
90 20.95.65.0 - - High
91 20.100.0.0 - - High
92 20.135.58.0 - - High
93 20.135.158.0 - - High
94 20.135.160.0 - - High
95 20.150.0.0 - - High
96 20.150.53.0 - - High
97 20.150.56.0 - - High
98 20.150.121.0 - - High
99 20.157.2.0 - - High
100 20.157.165.0 - - High
101 20.190.185.0 - - High
102 20.190.186.0 - - High
103 20.209.24.0 - - High
104 20.251.0.0 - - High
105 21.89.11.139 - - High
106 23.33.119.0 a23-33-119-0.deploy.static.akamaitechnologies.com - High
107 23.36.76.0 a23-36-76-0.deploy.static.akamaitechnologies.com - High
108 23.36.79.0 a23-36-79-0.deploy.static.akamaitechnologies.com - High
109 23.38.200.0 a23-38-200-0.deploy.static.akamaitechnologies.com - High
110 23.50.5.0 a23-50-5-0.deploy.static.akamaitechnologies.com - High
111 23.50.6.0 a23-50-6-0.deploy.static.akamaitechnologies.com - High
112 23.52.32.0 a23-52-32-0.deploy.static.akamaitechnologies.com - High
113 23.52.34.0 a23-52-34-0.deploy.static.akamaitechnologies.com - High
114 23.103.135.136 - - High
115 23.103.135.152 - - High
116 23.132.185.0 norway.customer.23.132.185.0.rdns.as211144.com - High
117 23.154.177.0 - - High
118 23.154.177.72 - - High
119 23.154.177.80 - - High
120 23.154.177.96 - - High
121 23.154.177.128 - - High
122 23.193.113.0 a23-193-113-0.deploy.static.akamaitechnologies.com - High
123 23.195.254.0 a23-195-254-0.deploy.static.akamaitechnologies.com - High
124 23.236.228.40 - - High
125 23.250.26.104 - - High
126 31.6.57.0 - - High
127 31.24.66.240 240.66.24.31.in-addr.zone - High
128 31.24.128.0 - - High
129 31.25.216.0 - - High
130 31.45.0.0 - - High
131 31.129.112.0 - - High
132 31.129.114.0 - - High
133 31.129.116.0 - - High
134 31.135.2.0 - - High
135 31.169.48.0 - - High
136 31.169.48.64 - - High
137 31.169.48.98 - - High
138 31.169.48.100 - - High
139 31.169.48.104 - - High
140 31.169.48.112 - - High
141 31.169.48.117 te-1-1.egh-sin.blix.com - High
142 31.169.48.120 - - High
143 31.169.48.130 - - High
144 31.169.48.132 - - High
145 31.169.48.136 - - High
146 31.169.48.144 - - High
147 31.169.48.160 100ge-be2-ncs-dpu-osl.blix.com - High
148 31.169.48.168 - - High
149 31.169.48.178 - - High
150 31.169.48.180 - - High
151 31.169.48.184 - - High
152 31.169.48.192 - - High
153 31.169.48.208 - - High
154 31.169.48.214 - - High
155 31.169.48.216 - - High
156 31.169.48.224 - - High
157 31.169.49.0 - - High
158 31.169.50.0 - - High
159 31.169.52.0 - - High
160 31.185.24.0 - - High
161 31.186.88.0 - - High
162 31.204.72.0 31-204-72-0.bb.cust.telefiber.no - High
163 31.208.144.0 31-208-144-0.cust.bredband2.com - High
164 31.211.168.0 - - High
165 32.42.29.144 - - High
166 32.106.116.0 bb.32-106-116-0.osl.no.prserv.net - High
167 32.106.156.0 - - High
168 32.106.165.0 bb32-106-165-0.cop.dk.prserv.net - High
169 34.99.44.0 0.44.99.34.bc.googleusercontent.com - Medium
170 34.103.36.0 0.36.103.34.bc.googleusercontent.com - Medium
171 35.248.6.180 - - High
172 35.248.6.188 - - High
173 35.248.10.0 - - High
174 37.18.48.0 - - High
175 37.18.64.0 - - High
176 37.26.208.0 - - High
177 37.28.128.0 - - High
178 37.32.48.0 - - High
179 37.44.128.0 - - High
180 37.72.187.0 - - High
181 37.120.149.0 fhu0.startouch.us - High
182 37.120.203.0 - - High
183 37.123.131.31 bc90.A498.priv.bahnhof.se - High
184 37.123.131.34 h-37-123-131-34.A498.priv.bahnhof.se - High
185 37.123.135.192 netid83.A137.corp.bahnhof.se - High
186 37.143.48.0 - - High
187 37.148.144.0 - - High
188 37.191.128.0 net.d1-r2.fiber.lynet.no - High
189 37.200.0.0 - - High
190 37.202.24.0 - - High
191 37.202.56.0 - - High
192 37.202.62.0 - - High
193 37.230.184.0 - - High
194 37.252.112.0 - - High
195 37.252.208.0 - - High
196 37.252.210.0 - - High
197 37.252.212.0 - - High
198 37.252.215.0 - - High
199 37.253.0.0 37.253.0.0.tmi.telenormobil.no - High
200 40.82.84.0 - - High
201 40.82.112.0 - - High
202 40.90.1.170 - - High
203 40.90.1.172 - - High
204 40.90.65.29 - - High
205 40.90.65.30 - - High
206 40.92.55.0 - - High
207 40.92.56.0 - - High
208 40.92.86.0 - - High
209 40.93.88.0 - - High
210 40.95.56.0 - - High
211 40.95.85.0 - - High
212 40.99.149.120 - - High
213 40.99.196.16 - - High
214 40.99.198.0 - - High
215 40.99.198.128 - - High
216 40.99.199.96 - - High
217 40.99.200.0 - - High
218 40.99.202.0 - - High
219 40.99.215.0 - - High
220 40.107.224.0 - - High
221 40.119.104.0 - - High
222 40.126.57.0 - - High
223 40.126.57.32 - - High
224 40.126.58.0 - - High
225 40.126.58.32 - - High
226 40.126.200.0 - - High
227 44.141.124.0 - - High
228 44.141.125.0 - - High
229 44.141.132.0 - - High
230 44.141.140.0 - - High
231 45.8.8.0 - - High
232 45.8.220.0 - - High
233 45.12.70.168 most-trim.alltieinc.com - High
234 45.12.71.168 - - High
235 45.12.223.0 - - High
236 45.13.72.0 - - High
237 45.13.75.64 - - High
238 45.13.126.0 - - High
239 45.13.191.0 - - High
240 45.14.52.0 45.14.52.0.static.lyse.net - High
241 45.15.108.0 - - High
242 45.66.128.0 - - High
243 45.67.8.0 - - High
244 45.67.160.0 - - High
245 45.80.144.0 - - High
246 45.84.38.0 - - High
247 45.86.236.0 - - High
248 45.87.175.0 - - High
249 45.88.116.0 - - High
250 45.89.99.0 - - High
251 45.89.192.0 - - High
252 45.89.232.0 - - High
253 45.90.36.0 - - High
254 45.91.126.0 - - High
255 45.91.126.32 - - High
256 45.91.126.68 - - High
257 45.91.126.208 gre8.edge01-terrahost.no.as208627.net - High
258 45.91.126.210 gre4.core02-arendal.no.as208627.net - High
259 45.91.126.214 gre2.edge08-clouvider.de.as208627.net - High
260 45.91.126.217 gre1.edge04-hostzealot.se.as208627.net - High
261 45.91.126.219 gre4.edge05-combahton.de.as208627.net - High
262 45.91.126.222 gre1.edge01-terrahost.no.as208627.net - High
263 45.91.126.224 gre4.edge01-terrahost.no.as208627.net - High
264 45.91.126.229 gre2.edge01-terrahost.no.as208627.net - High
265 45.91.126.230 gre3.edge01-terrahost.no.as208627.net - High
266 45.91.126.232 gre2.edge02-fjordane.no.as208627.net - High
267 45.91.126.236 gre7.edge01-terrahost.no.as208627.net - High
268 45.91.126.240 lo.rr2.as208627.net - High
269 45.91.126.243 lo.edge05-vsys.fr.as208627.net - High
270 45.91.126.247 - - High
271 45.91.126.248 lo.edge01-terrahost.no.as208627.net - High
272 45.91.126.252 - - High
273 45.91.126.254 lo.core01-arendal.no.as208627.net - High
274 45.91.204.0 - - High
275 45.92.228.0 - - High
276 45.93.140.0 - - High
277 45.128.17.0 - - High
278 45.128.18.0 - - High
279 45.133.195.0 - - High
280 45.134.89.0 - - High
281 45.134.208.0 - - High
282 45.135.139.0 - - High
283 45.135.156.0 - - High
284 45.136.80.0 - - High
285 45.136.176.0 - - High
286 45.137.203.0 - - High
287 45.137.208.0 - - High
288 45.137.209.8 - - High
289 45.137.209.16 - - High
290 45.137.209.36 - - High
291 45.137.209.48 - - High
292 45.137.209.56 - - High
293 45.137.209.60 - - High
294 45.137.209.64 - - High
295 45.137.209.128 - - High
296 45.137.210.2 - - High
297 45.137.210.4 - - High
298 45.137.210.8 - - High
299 45.137.210.16 - - High
300 45.137.210.32 - - High
301 45.137.210.64 - - High
302 45.137.210.128 - - High
303 45.137.211.0 - - High
304 45.138.212.0 - - High
305 45.138.236.0 0.45-138-236.static.xfiber.net - High
306 45.139.84.0 - - High
307 45.140.0.0 customer.upheads.0.0.140.45 - High
308 45.144.76.0 - - High
309 45.147.28.0 - - High
310 45.148.18.16 - - High
311 45.148.18.32 - - High
312 45.148.18.64 - - High
313 45.148.18.128 - - High
314 45.152.48.0 dhcp45152480.blix.com - High
315 45.153.104.0 - - High
316 45.153.244.0 - - High
317 45.154.52.0 - - High
318 45.154.207.0 - - High
319 45.154.232.0 - - High
320 45.158.92.0 - - High
321 45.192.131.0 - - High
322 45.192.136.0 - - High
323 46.9.0.0 - - High
324 46.15.0.0 telia-2e0f00-0.connect.netcom.no - High
325 46.16.48.0 - - High
326 46.17.16.0 - - High
327 46.19.16.0 - - High
328 46.29.216.0 - - High
329 46.31.184.0 - - High
330 46.46.192.0 - - High
331 46.66.0.0 46.66.0.0.tmi.telenormobil.no - High
332 46.156.0.0 46.156.0.0.tmi.telenormobil.no - High
333 46.183.168.0 - - High
334 46.212.0.0 cm-46.212.0.0.get.no - High
335 46.226.8.0 - - High
336 46.226.24.0 - - High
337 46.227.192.0 - - High
338 46.228.48.0 46-228-48-0.bb.cust.hknett.no - High
339 46.230.128.0 - - High
340 46.230.160.0 - - High
341 46.236.70.208 h46-236-70-208.cust.bredband2.com - High
342 46.246.26.0 c-46-246-26-0.ip4.frootvpn.com - High
343 46.246.120.136 - - High
344 46.246.122.0 - - High
345 46.249.224.0 - - High
346 46.250.192.0 9enq0.ip.hatteland.com - High
347 46.252.7.0 - - High
348 46.255.16.0 - - High
349 46.255.184.0 - - High
350 46.255.188.0 46-255-188-0.10gb.es - High
351 51.10.0.8 - - High
352 51.10.0.12 - - High
353 51.13.0.0 - - High
354 51.13.16.0 - - High
355 51.13.32.0 - - High
356 51.13.64.0 - - High
357 51.13.128.0 - - High
358 51.107.208.0 - - High
359 51.107.240.0 - - High
360 51.120.0.0 - - High
361 51.120.128.0 - - High
362 51.120.192.0 - - High
363 51.120.224.0 norwayw02.rnm.core.windows.net - High
364 51.120.240.0 - - High
365 51.174.0.0 0.51-174-0.customer.lyse.net - High
366 52.93.138.0 - - High
367 52.94.44.224 - - High
368 52.94.45.128 - - High
369 52.94.160.0 - - High
370 52.97.227.0 - - High
371 52.97.228.80 - - High
372 52.97.229.0 - - High
373 52.97.229.128 - - High
374 52.97.229.192 - - High
375 52.97.229.224 - - High
376 52.97.230.0 - - High
377 52.97.230.128 - - High
378 52.98.145.0 - - High
379 52.98.145.32 - - High
380 52.98.145.128 - - High
381 52.98.145.144 - - High
382 52.98.145.160 - - High
383 52.98.145.192 - - High
384 52.98.154.240 - - High
385 52.98.156.64 - - High
386 52.98.234.32 - - High
387 52.98.236.104 - - High
388 52.98.236.160 - - High
389 52.98.236.192 - - High
390 52.98.236.224 - - High
391 52.98.238.248 - - High
392 52.98.239.0 - - High
393 52.98.239.32 - - High
394 52.100.204.0 - - High
395 52.101.86.0 - - High
396 52.101.147.0 - - High
397 52.104.37.0 - - High
398 52.104.42.0 - - High
399 52.105.18.0 - - High
400 52.105.40.0 - - High
401 52.105.159.0 - - High
402 52.107.243.48 - - High
403 52.107.243.96 - - High
404 52.108.77.0 - - High
405 52.108.98.0 - - High
406 52.108.177.0 - - High
407 52.108.198.0 - - High
408 52.109.86.0 - - High
409 52.109.144.0 - - High
410 52.111.197.0 - - High
411 52.111.198.0 - - High
412 52.114.234.0 - - High
413 52.114.238.0 - - High
414 52.123.243.48 - - High
415 52.123.243.96 - - High
416 52.124.237.0 - - High
417 52.253.167.0 - - High
418 52.253.168.0 - - High
419 52.253.177.0 - - High
420 52.253.178.0 - - High
421 54.230.80.0 server-54-230-80-0.osl50.r.cloudfront.net - High
422 54.230.109.0 server-54-230-109-0.osl50.r.cloudfront.net - High
423 54.230.110.0 server-54-230-110-0.osl50.r.cloudfront.net - High
424 54.230.216.0 server-54-230-216-0.osl50.r.cloudfront.net - High
425 54.230.241.0 server-54-230-241-0.osl50.r.cloudfront.net - High
426 54.230.245.0 server-54-230-245-0.osl50.r.cloudfront.net - High
427 54.239.58.0 - - High
428 54.239.62.32 - - High
429 54.239.142.0 server-54-239-142-0.osl50.r.cloudfront.net - High
430 54.240.174.0 server-54-240-174-0.osl50.r.cloudfront.net - High
431 57.86.96.0 - - High
432 62.16.128.0 - - High
433 62.24.32.0 - - High
434 62.24.48.0 - - High
435 62.24.56.0 - - High
436 62.24.60.0 - - High
437 62.24.60.128 128.62-24-60.net.avur.no - High
438 62.24.60.192 192.62-24-60.net.avur.no - High
439 62.24.60.200 200.62-24-60.net.avur.no - High
440 62.24.60.202 202.62-24-60.net.avur.no - High
441 62.24.60.204 204.62-24-60.net.avur.no - High
442 62.24.60.208 208.62-24-60.net.avur.no - High
443 62.24.60.224 224.62-24-60.net.avur.no - High
444 62.24.61.0 - - High
445 62.24.61.128 128.62-24-61.net.avur.no - High
446 62.24.61.192 192.62-24-61.net.avur.no - High
447 62.24.61.200 be0-0-0-2-1.osl-1.net.avur.no - High
448 62.24.61.202 202.62-24-61.net.avur.no - High
449 62.24.61.204 204.62-24-61.net.avur.no - High
450 62.24.61.208 208.62-24-61.net.avur.no - High
451 62.24.61.224 224.62-24-61.net.avur.no - High
452 62.24.62.0 - - High
453 62.50.160.0 - - High
454 62.63.0.0 - - High
455 62.65.23.0 - - High
456 62.65.23.114 one2com.no - High
457 62.65.28.0 - - High
458 62.65.28.64 64.28.65.62.host.wineasy.se - High
459 62.65.30.0 - - High
460 62.65.31.1 - - High
461 62.67.17.136 - - High
462 62.67.17.248 - - High
463 62.67.73.0 - - High
464 62.70.0.0 - - High
465 62.70.16.0 - - High
466 62.70.20.0 - - High
467 62.70.23.0 - - High
468 62.70.24.0 - - High
469 62.70.32.0 - - High
470 62.70.48.0 - - High
471 62.70.53.0 - - High
472 62.70.54.0 - - High
473 62.70.56.0 - - High
474 62.70.58.0 - - High
475 62.70.58.128 - - High
476 62.70.58.192 - - High
477 62.70.58.224 - - High
478 62.70.58.248 - - High
479 62.70.59.0 - - High
480 62.70.60.0 - - High
481 62.70.63.0 - - High
482 62.70.64.0 - - High
483 62.70.96.0 - - High
484 62.70.100.0 - - High
485 62.70.102.0 - - High
486 62.70.103.0 - - High
487 62.70.103.128 - - High
488 62.70.103.144 - - High
489 62.70.103.168 - - High
490 62.70.103.176 - - High
491 62.70.103.192 - - High
492 62.70.104.0 - - High
493 62.70.112.0 - - High
494 62.70.128.0 - - High
495 62.73.192.0 - - High
496 62.89.32.0 - - High
497 62.92.0.0 0.0.92.62.static.cust.telenor.com - High
498 62.92.32.0 0.32.92.62.static.cust.telenor.com - High
499 62.92.40.0 0.40.92.62.static.cust.telenor.com - High
500 62.92.42.0 0.42.92.62.static.cust.telenor.com - High
501 62.92.43.0 0.43.92.62.static.cust.telenor.com - High
502 62.92.43.128 128.43.92.62.static.cust.telenor.com - High
503 62.92.43.224 224.43.92.62.static.cust.telenor.com - High
504 62.92.44.0 0.44.92.62.static.cust.telenor.com - High
505 62.92.48.0 0.48.92.62.static.cust.telenor.com - High
506 62.92.64.0 0.64.92.62.static.cust.telenor.com - High
507 62.92.68.0 0.68.92.62.static.cust.telenor.com - High
508 62.92.70.0 0.70.92.62.static.cust.telenor.com - High
509 62.92.71.0 0.71.92.62.static.cust.telenor.com - High
510 62.92.71.32 32.71.92.62.static.cust.telenor.com - High
511 62.92.71.64 64.71.92.62.static.cust.telenor.com - High
512 62.92.71.128 128.71.92.62.static.cust.telenor.com - High
513 62.92.72.0 0.72.92.62.static.cust.telenor.com - High
514 62.92.74.0 0.74.92.62.static.cust.telenor.com - High
515 62.92.75.0 0.75.92.62.static.cust.telenor.com - High
516 62.92.75.32 32.75.92.62.static.cust.telenor.com - High
517 62.92.75.48 48.75.92.62.static.cust.telenor.com - High
518 62.92.75.64 64.75.92.62.static.cust.telenor.com - High
519 62.92.75.128 128.75.92.62.static.cust.telenor.com - High
520 62.92.76.0 - - High
521 62.92.78.0 0.78.92.62.static.cust.telenor.com - High
522 62.92.78.48 48.78.92.62.static.cust.telenor.com - High
523 62.92.78.64 64.78.92.62.static.cust.telenor.com - High
524 62.92.78.128 128.78.92.62.static.cust.telenor.com - High
525 62.92.79.0 0.79.92.62.static.cust.telenor.com - High
526 62.92.80.0 0.80.92.62.static.cust.telenor.com - High
527 62.92.96.0 0.96.92.62.static.cust.telenor.com - High
528 62.92.100.0 0.100.92.62.static.cust.telenor.com - High
529 62.92.102.0 0.102.92.62.static.cust.telenor.com - High
530 62.92.102.128 128.102.92.62.static.cust.telenor.com - High
531 62.92.102.192 192.102.92.62.static.cust.telenor.com - High
532 62.92.102.224 224.102.92.62.static.cust.telenor.com - High
533 62.92.102.240 240.102.92.62.static.cust.telenor.com - High
534 62.92.102.248 248.102.92.62.static.cust.telenor.com - High
535 62.92.103.0 0.103.92.62.static.cust.telenor.com - High
536 62.92.104.0 - - High
537 62.92.112.0 - - High
538 62.92.128.0 0.128.92.62.static.cust.telenor.com - High
539 62.97.160.0 - - High
540 62.97.192.0 - - High
541 62.101.192.0 - - High
542 62.101.208.0 c00D0653E.static.as2116.net - High
543 62.101.212.0 c00D4653E.static.as2116.net - High
544 62.101.214.0 c00D6653E.static.as2116.net - High
545 62.101.214.128 c80D6653E.static.as2116.net - High
546 62.101.214.192 cC0D6653E.static.as2116.net - High
547 62.101.214.224 cE0D6653E.static.as2116.net - High
548 62.101.214.240 cF0D6653E.static.as2116.net - High
549 62.101.214.248 cF8D6653E.static.as2116.net - High
550 62.101.214.250 cFAD6653E.static.as2116.net - High
551 62.101.214.252 cFCD6653E.static.as2116.net - High
552 62.101.215.0 c00D7653E.static.as2116.net - High
553 62.101.216.0 c00D8653E.dhcp.as2116.net - High
554 62.101.224.0 c00E0653E.static.as2116.net - High
555 62.102.160.0 - - High
556 62.109.39.0 - - High
557 62.109.39.64 - - High
558 62.113.128.0 heathcomm-net.heathcomm.no - High
559 62.122.248.0 - - High
560 62.128.224.0 - - High
561 62.140.27.0 - - High
562 62.140.27.32 - - High
563 62.140.27.48 - - High
564 62.140.27.56 - - High
565 62.140.27.64 - - High
566 62.140.27.76 - - High
567 62.140.27.80 - - High
568 62.140.27.92 - - High
569 62.140.27.104 - - High
570 62.140.27.112 - - High
571 62.141.128.0 cm-62.141.128.0.get.no - High
572 62.148.32.0 - - High
573 62.176.192.0 narviknett.no - High
574 62.184.247.0 - - High
575 62.185.228.0 - - High
576 62.186.1.192 - - High
577 62.186.7.104 - - High
578 62.186.85.192 - - High
579 62.186.155.0 - - High
580 62.186.156.0 - - High
581 62.186.156.32 - - High
582 62.186.157.0 - - High
583 62.186.157.64 - - High
584 62.186.157.88 - - High
585 62.186.157.96 - - High
586 62.186.157.128 - - High
587 62.186.225.64 - - High
588 62.187.36.0 - - High
589 62.187.37.0 - - High
590 62.187.37.128 - - High
591 62.187.68.0 - - High
592 62.187.68.64 - - High
593 62.187.70.0 - - High
594 62.200.172.0 - - High
595 62.200.173.0 - - High
596 62.200.174.0 - - High
597 62.200.175.0 - - High
598 62.201.42.0 - - High
599 62.204.40.0 - - High
600 62.209.64.0 - - High
601 62.209.164.0 - - High
602 62.241.32.0 - - High
603 62.249.160.0 - - High
604 63.246.38.64 - - High
605 64.28.0.0 - - High
606 64.38.202.0 - - High
607 66.159.214.0 - - High
608 67.17.159.180 - - High
609 68.67.2.0 - - High
610 68.67.10.0 - - High
611 69.64.253.0 - - High
612 69.64.253.48 - - High
613 69.64.253.64 network.wansecurity.net - High
614 70.132.12.0 server-70-132-12-0.osl50.r.cloudfront.net - High
615 74.125.60.120 - - High
616 74.125.61.112 - - High
617 74.240.0.0 - - High
618 77.16.0.0 77.16.0.0.tmi.telenormobil.no - High
619 77.37.112.0 - - High
620 77.40.128.0 - - High
621 77.67.50.224 - - High
622 77.67.54.32 - - High
623 77.67.107.248 - - High
624 77.70.148.0 - - High
625 77.70.152.0 - - High
626 77.70.191.30 - - High
627 77.70.224.0 - - High
628 77.74.160.0 - - High
629 77.74.200.0 - - High
630 77.74.216.0 - - High
631 77.75.208.0 - - High
632 77.83.68.0 - - High
633 77.88.64.0 keystep.no - High
634 77.94.232.0 - - High
635 77.95.72.0 77-95-72-0.bb.cust.hknett.no - High
636 77.106.128.0 ip-0-128-106-77.eidsiva.net - High
637 77.110.192.0 77-110-192-0.inet.signal.no - High
638 77.111.244.0 - - High
639 77.222.160.0 - - High
640 77.222.192.0 - - High
641 77.223.160.0 - - High
642 77.234.48.0 host-77-234-48-0.lynet.no - High
643 77.241.96.0 0.77-241-96.static.xfiber.net - High
644 77.243.185.37 irb-0.agg1.lax1.us.m247.com - High
645 77.246.246.0 - - High
646 77.247.144.0 - - High
647 78.24.144.0 - - High
648 78.26.0.0 - - High
649 78.31.80.0 - - High
650 78.31.207.0 - - High
651 78.41.44.0 - - High
652 78.41.120.0 - - High
653 78.41.136.0 - - High
654 78.91.0.0 - - High
655 78.156.0.0 cm-78.156.0.0.get.no - High
656 78.158.224.0 - - High
657 79.135.0.0 - - High
658 79.141.96.0 ip79-141-96-0.brdy.online - High
659 79.160.0.0 0.79-160-0.customer.lyse.net - High
660 79.160.64.0 0.79-160-64.customer.lyse.net - High
661 79.160.96.0 0.79-160-96.customer.lyse.net - High
662 79.160.112.0 0.79-160-112.customer.lyse.net - High
663 79.160.112.128 128.79-160-112.customer.lyse.net - High
664 79.160.112.192 192.79-160-112.customer.lyse.net - High
665 79.160.112.224 224.79-160-112.customer.lyse.net - High
666 79.160.112.240 240.79-160-112.customer.lyse.net - High
667 79.160.112.244 244.79-160-112.customer.lyse.net - High
668 79.160.112.246 246.79-160-112.customer.lyse.net - High
669 79.160.112.248 248.79-160-112.customer.lyse.net - High
670 79.160.113.0 0.79-160-113.customer.lyse.net - High
671 79.160.114.0 0.79-160-114.customer.lyse.net - High
672 79.160.116.0 0.79-160-116.customer.lyse.net - High
673 79.160.120.0 79.160.120.0.static.lyse.net - High
674 79.160.128.0 0.79-160-128.customer.lyse.net - High
675 79.161.0.0 0.79-161-0.customer.lyse.net - High
676 79.170.80.0 - - High
677 79.171.64.0 0.64-171-79.ipv4.rev.vossfiber.net - High
678 79.171.80.0 - - High
679 79.171.149.24 - - High
680 79.174.16.0 - - High
681 79.174.176.0 - - High
682 80.64.192.0 - - High
683 80.65.48.0 - - High
684 80.65.49.0 - - High
685 80.65.49.32 - - High
686 80.65.49.56 - - High
687 80.65.49.64 - - High
688 80.65.49.128 - - High
689 80.65.50.0 - - High
690 80.65.52.0 - - High
691 80.65.57.0 - - High
692 80.65.58.0 - - High
693 80.65.60.0 - - High
694 80.65.62.0 - - High
695 80.65.62.160 - - High
696 80.65.62.192 - - High
697 80.65.63.0 - - High
698 80.65.63.192 - - High
699 80.67.0.44 80-67-0-44-static.glesys.net - High
700 80.67.0.140 - - High
701 80.67.0.218 be-2-504.cr2.osl1.no.portlane.net - High
702 80.67.4.24 ar2.var1.se.portlane.net - High
703 80.67.4.211 be-2.cr2.fal4.se.portlane.net - High
704 80.67.4.215 be-4.cr2.osl1.no.portlane.net - High
705 80.67.4.219 be-3.cr2.osl1.no.portlane.net - High
706 80.67.7.0 80-67-7-0.static.glesys.net - High
707 80.67.10.144 be-1-1890.cr1.osl1.no.portlane.net - High
708 80.67.36.0 - - High
709 80.69.224.0 - - High
710 80.69.225.0 - - High
711 80.75.220.0 - - High
712 80.77.64.0 - - High
713 80.77.104.0 - - High
714 80.77.106.16 - - High
715 80.77.184.0 - - High
716 80.86.128.0 - - High
717 80.86.208.0 - - High
718 80.89.32.0 - - High
719 80.91.32.0 - - High
720 80.91.224.0 - - High
721 80.91.233.0 - - High
722 80.91.234.0 - - High
723 80.91.239.0 - - High
724 80.202.0.0 - - High
725 80.203.0.0 0.80-203-0.customer.lyse.net - High
726 80.212.0.0 - - High
727 80.231.30.0 - - High
728 80.231.30.32 - - High
729 80.231.30.79 - - High
730 80.231.30.90 - - High
731 80.231.30.92 - - High
732 80.231.30.96 - - High
733 80.231.30.128 - - High
734 80.231.89.0 ix-ge-1-0-4.hcore3.os1-oslo.as6453.net - High
735 80.231.90.0 - - High
736 80.231.152.35 if-et-35-2.hcore3.os1-oslo.as6453.net - High
737 80.232.0.0 - - High
738 80.239.0.0 - - High
739 80.239.140.0 - - High
740 80.239.148.192 - - High
741 80.239.149.88 - - High
742 80.239.159.0 80-239-159-0.teliacarrier-cust.com - High
743 80.239.159.61 80-239-159-61.teliacarrier-cust.com - High
744 80.239.159.62 80-239-159-62.teliacarrier-cust.com - High
745 80.239.159.68 80-239-159-68.teliacarrier-cust.com - High
746 80.239.159.76 80-239-159-76.teliacarrier-cust.com - High
747 80.239.159.84 80-239-159-84.teliacarrier-cust.com - High
748 80.239.159.92 80-239-159-92.teliacarrier-cust.com - High
749 80.239.159.100 80-239-159-100.teliacarrier-cust.com - High
750 80.239.161.92 oso-b1-link.ip.twelve99.net - High
751 80.239.209.0 - - High
752 80.239.234.24 - - High
753 80.239.242.30 - - High
754 80.241.80.0 - - High
755 80.244.77.0 h80-244-77-0.cust.bredband2.com - High
756 80.252.160.105 vl2002.no.osl.dipx.cr0.port80.se - High
757 80.254.32.0 - - High
758 81.0.128.0 - - High
759 81.0.129.0 - - High
760 81.0.129.32 c51008120.inet.catch.no - High
761 81.0.129.40 c51008128.inet.catch.no - High
762 81.0.129.44 c5100812C.inet.catch.no - High
763 81.0.129.46 c5100812E.inet.catch.no - High
764 81.0.129.48 c51008130.inet.catch.no - High
765 81.0.129.64 c51008140.inet.catch.no - High
766 81.0.129.128 c51008180.inet.catch.no - High
767 81.0.130.0 - - High
768 81.0.132.0 - - High
769 81.0.136.0 - - High
770 81.0.144.0 - - High
771 81.0.160.0 - - High
772 81.4.14.0 - - High
773 81.26.32.0 - - High
774 81.27.32.0 - - High
775 81.29.32.0 - - High
776 81.88.64.0 - - High
777 81.92.27.192 - - High
778 81.93.96.0 - - High
779 81.93.160.0 - - High
780 81.166.0.0 0.81-166-0.customer.lyse.net - High
781 81.166.64.0 0.81-166-64.customer.lyse.net - High
782 81.166.96.0 81.166.96.0.static.lyse.net - High
783 81.166.112.0 0.81-166-112.customer.lyse.net - High
784 81.166.120.0 0.81-166-120.customer.lyse.net - High
785 81.166.122.0 0.81-166-122.customer.lyse.net - High
786 81.166.123.0 0.81-166-123.customer.lyse.net - High
787 81.166.123.128 128.81-166-123.customer.lyse.net - High
788 81.166.123.136 136.81-166-123.customer.lyse.net - High
789 81.166.123.140 140.81-166-123.customer.lyse.net - High
790 81.166.123.142 142.81-166-123.customer.lyse.net - High
791 81.166.123.144 144.81-166-123.customer.lyse.net - High
792 81.166.123.154 154.81-166-123.customer.lyse.net - High
793 81.166.123.156 156.81-166-123.customer.lyse.net - High
794 ... ... ... ...

There are 3174 more IOC items available. Please use our online service to access the data.

TTP - Tactics, Techniques, Procedures

Tactics, techniques, and procedures (TTP) summarize the suspected MITRE ATT&CK techniques used by Norway Unknown. This data is unique as it uses our predictive model for actor profiling.

ID Technique Weakness Description Confidence
1 T1006 CWE-21, CWE-22, CWE-24, CWE-36, CWE-37 Pathname Traversal High
2 T1040 CWE-319 Authentication Bypass by Capture-replay High
3 T1055 CWE-74 Injection High
4 T1059 CWE-88, CWE-94, CWE-1321 Cross Site Scripting High
5 T1059.007 CWE-79, CWE-80 Cross Site Scripting High
6 ... ... ... ...

There are 20 more TTP items available. Please use our online service to access the data.

IOA - Indicator of Attack

These indicators of attack (IOA) list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration by Norway Unknown. This data is unique as it uses our predictive model for actor profiling.

ID Type Indicator Confidence
1 File //WEB-INF Medium
2 File /?p=products Medium
3 File /about.php Medium
4 File /admin.php/update/getFile.html High
5 File /admin/add_ikev2.php High
6 File /admin/cashadvance_row.php High
7 File /admin/edit_subject.php High
8 File /admin/getallarticleinfo High
9 File /admin/maintenance/view_designation.php High
10 File /admin/products/manage_product.php High
11 File /admin/read.php?mudi=getSignal High
12 File /admin/reg.php High
13 File /admin/userprofile.php High
14 File /api/admin/store/product/list High
15 File /api/baskets/{name} High
16 File /api/stl/actions/search High
17 File /api/v2/cli/commands High
18 File /bin/ate Medium
19 File /bitrix/admin/ldap_server_edit.php High
20 File /booking/show_bookings/ High
21 File /cgi-bin Medium
22 File /cgi-bin/wlogin.cgi High
23 File /company/store High
24 File /Controller/Ajaxfileupload.ashx High
25 File /data/app Medium
26 File /debug/pprof Medium
27 File /dipam/athlete-profile.php High
28 File /dishes.php Medium
29 File /E-mobile/App/System/File/downfile.php High
30 File /env Low
31 File /EventBookingCalendar/load.php?controller=GzFront/action=checkout/cid=1/layout=calendar/show_header=T/local=3 High
32 File /feeds/post/publish High
33 File /forum/away.php High
34 File /h/ Low
35 File /inc/jquery/uploadify/uploadify.php High
36 File /index.php?app=main&func=passport&action=login High
37 File /index.php?page=category_list High
38 File /jobinfo/ Medium
39 File /kelasdosen/data High
40 File /KK_LS9ReportingPortal/GetData High
41 File /licenses Medium
42 File /Moosikay/order.php High
43 File /opac/Actions.php?a=login High
44 File /osm/REGISTER.cmd High
45 File /out.php Medium
46 File /paysystem/datatable.php High
47 File /php-sms/admin/?page=user/manage_user High
48 File /preview.php Medium
49 File /PreviewHandler.ashx High
50 File /reservation/add_message.php High
51 File /reviewer/system/system/admins/manage/users/user-update.php High
52 File /send_order.cgi?parameter=restart High
53 File /Service/ImageStationDataService.asmx High
54 File /student/bookdetails.php High
55 File /templates/importinline.vm High
56 File /tmp Low
57 ... ... ...

There are 498 more IOA items available (file, library, argument, input value, pattern, network port). Please use our online service to access the data.

References

The following list contains external sources which discuss the actor and the associated activities:

Literature

The following articles explain our unique predictive cyber threat intelligence:

License

(c) 1997-2023 by vuldb.com. All data on this page is shared under the license CC BY-NC-SA 4.0. Questions? Check the FAQ, read the documentation or contact us!