49 KiB
Romania Unknown - Cyber Threat Intelligence
These indicators were reported, collected, and generated during the VulDB CTI analysis of the actor known as Romania Unknown. The activity monitoring correlates data from social media, forums, chat rooms, and darknet markets. It helps to determine associated actors, specific activities, expected intentions, emerging research, and ongoing attacks. Our unique predictive model uses big data to forecast activities and their characteristics.
Live data and more analysis capabilities are available at https://vuldb.com/?actor.romania_unknown
Countries
These countries are directly (e.g. origin of attacks) or indirectly (e.g. access by proxy) associated with Romania Unknown:
There are 32 more country items available. Please use our online service to access the data.
IOC - Indicator of Compromise
These indicators of compromise (IOC) indicate associated network resources which are known to be part of research and attack activities of Romania Unknown.
ID | IP address | Hostname | Campaign | Confidence |
---|---|---|---|---|
1 | 2.56.148.0 | - | - | High |
2 | 2.56.166.0 | - | - | High |
3 | 2.57.120.0 | - | - | High |
4 | 2.57.144.0 | - | - | High |
5 | 2.58.128.0 | - | - | High |
6 | 2.59.8.0 | - | - | High |
7 | 2.59.10.0 | - | - | High |
8 | 2.59.12.0 | - | - | High |
9 | 5.2.128.0 | static-5-2-128-0.rdsnet.ro | - | High |
10 | 5.12.0.0 | 5-12-0-0.residential.rdsnet.ro | - | High |
11 | 5.35.208.0 | - | - | High |
12 | 5.62.61.104 | r-104-61-62-5.consumer-pool.prcdn.net | - | High |
13 | 5.62.63.80 | r-80-63-62-5.consumer-pool.prcdn.net | - | High |
14 | 5.83.32.0 | - | - | High |
15 | 5.101.45.0 | - | - | High |
16 | 5.101.92.0 | subnet.llhost-inc.com | - | High |
17 | 5.104.158.0 | - | - | High |
18 | 5.154.170.0 | - | - | High |
19 | 5.154.172.0 | - | - | High |
20 | 5.154.175.0 | - | - | High |
21 | 5.154.176.0 | - | - | High |
22 | 5.154.180.0 | - | - | High |
23 | 5.154.185.0 | - | - | High |
24 | 5.154.186.0 | - | - | High |
25 | 5.154.190.0 | - | - | High |
26 | 5.154.224.0 | - | - | High |
27 | 5.154.226.0 | host-5-154-226-0.zadata.de | - | High |
28 | 5.154.230.0 | host-5-154-230-0.zadata.de | - | High |
29 | 5.154.233.0 | - | - | High |
30 | 5.154.234.0 | - | - | High |
31 | 5.154.236.0 | - | - | High |
32 | 5.154.241.0 | - | - | High |
33 | 5.154.243.0 | - | - | High |
34 | 5.154.252.0 | - | - | High |
35 | 5.157.128.0 | - | - | High |
36 | 5.180.156.0 | - | - | High |
37 | 5.181.68.0 | - | - | High |
38 | 5.183.168.0 | - | - | High |
39 | 5.183.208.0 | - | - | High |
40 | 5.188.178.0 | - | - | High |
41 | 5.188.205.0 | - | - | High |
42 | 5.189.217.0 | subnet.reserved.ispsystem.net | - | High |
43 | 5.252.178.0 | 5-252-178-0.mivocloud.com | - | High |
44 | 5.253.52.0 | - | - | High |
45 | 5.253.124.0 | - | - | High |
46 | 5.253.188.0 | - | - | High |
47 | 5.254.48.0 | - | - | High |
48 | 5.254.52.0 | - | - | High |
49 | 5.254.54.0 | - | - | High |
50 | 5.254.56.0 | - | - | High |
51 | 5.254.65.0 | - | - | High |
52 | 5.254.65.8 | - | - | High |
53 | 5.254.65.10 | fra-in3-01rs.voxility.net | - | High |
54 | 5.254.65.12 | - | - | High |
55 | 5.254.65.16 | - | - | High |
56 | 5.254.65.32 | - | - | High |
57 | 5.254.65.64 | - | - | High |
58 | 5.254.65.128 | - | - | High |
59 | 5.254.66.0 | protected.javapipe.com | - | High |
60 | 5.254.69.0 | - | - | High |
61 | 5.254.73.0 | - | - | High |
62 | 5.254.73.128 | - | - | High |
63 | 5.254.73.192 | - | - | High |
64 | 5.254.73.208 | - | - | High |
65 | 5.254.73.224 | - | - | High |
66 | 5.254.78.80 | - | - | High |
67 | 5.254.83.0 | - | - | High |
68 | 5.254.92.0 | - | - | High |
69 | 5.254.96.0 | - | - | High |
70 | 5.254.112.224 | - | - | High |
71 | 5.254.113.0 | - | - | High |
72 | 5.254.116.0 | - | - | High |
73 | 5.254.118.0 | - | - | High |
74 | 5.254.125.0 | - | - | High |
75 | 8.43.226.0 | - | - | High |
76 | 23.229.117.0 | - | - | High |
77 | 31.5.0.0 | - | - | High |
78 | 31.6.14.0 | - | - | High |
79 | 31.14.8.0 | - | - | High |
80 | 31.14.10.0 | - | - | High |
81 | 31.14.12.0 | 0-namebox.ro | - | High |
82 | 31.14.16.0 | 31.14.16.0.banat-net.ro | - | High |
83 | 31.14.24.0 | - | - | High |
84 | 31.14.34.0 | - | - | High |
85 | 31.14.36.0 | - | - | High |
86 | 31.14.40.0 | - | - | High |
87 | 31.14.45.0 | - | - | High |
88 | 31.14.49.0 | - | - | High |
89 | 31.14.53.0 | - | - | High |
90 | 31.14.54.0 | - | - | High |
91 | 31.14.56.0 | cw31-ad-ef0.romania-webhosting.com | - | High |
92 | 31.14.64.0 | - | - | High |
93 | 31.14.68.0 | - | - | High |
94 | 31.14.100.0 | - | - | High |
95 | 31.14.102.0 | - | - | High |
96 | 31.14.104.0 | - | - | High |
97 | 31.14.160.0 | - | - | High |
98 | 31.14.163.0 | - | - | High |
99 | 31.14.192.0 | - | - | High |
100 | 31.14.218.0 | - | - | High |
101 | 31.14.220.0 | - | - | High |
102 | 31.14.224.0 | - | - | High |
103 | 31.14.232.0 | - | - | High |
104 | 31.14.236.0 | - | - | High |
105 | 31.14.252.0 | no-rdns.clues.ro | - | High |
106 | 31.14.254.0 | - | - | High |
107 | 31.42.128.0 | - | - | High |
108 | 31.46.44.0 | - | - | High |
109 | 31.47.208.0 | - | - | High |
110 | 31.130.240.0 | - | - | High |
111 | 31.131.8.0 | - | - | High |
112 | 31.131.40.0 | no-reverse.techno-blade.net | - | High |
113 | 31.131.160.0 | - | - | High |
114 | 31.132.192.0 | - | - | High |
115 | 31.133.24.0 | mx1.pancakecorn.com | - | High |
116 | 31.133.192.0 | - | - | High |
117 | 31.135.0.0 | - | - | High |
118 | 31.220.128.0 | - | - | High |
119 | 34.99.178.0 | 0.178.99.34.bc.googleusercontent.com | - | Medium |
120 | 34.99.250.0 | 0.250.99.34.bc.googleusercontent.com | - | Medium |
121 | 34.103.194.0 | 0.194.103.34.bc.googleusercontent.com | - | Medium |
122 | 37.35.32.0 | - | - | High |
123 | 37.35.183.138 | 138.183.35.37.dynamic.jazztel.es | - | High |
124 | 37.43.3.0 | - | - | High |
125 | 37.59.149.28 | logs.nethink.com | - | High |
126 | 37.97.112.0 | - | - | High |
127 | 37.97.120.0 | - | - | High |
128 | 37.120.129.0 | - | - | High |
129 | 37.120.140.0 | - | - | High |
130 | 37.120.146.0 | - | - | High |
131 | 37.120.150.0 | rfl0.rottenspite.us | - | High |
132 | 37.120.157.0 | - | - | High |
133 | 37.120.206.0 | - | - | High |
134 | 37.120.214.0 | - | - | High |
135 | 37.120.224.0 | - | - | High |
136 | 37.128.224.0 | - | - | High |
137 | 37.143.160.0 | - | - | High |
138 | 37.153.133.0 | - | - | High |
139 | 37.153.136.0 | - | - | High |
140 | 37.153.140.0 | 0.140.153.37.rev.aif.tel | - | High |
141 | 37.153.152.0 | - | - | High |
142 | 37.156.4.0 | - | - | High |
143 | 37.156.7.0 | - | - | High |
144 | 37.156.32.0 | - | - | High |
145 | 37.156.35.0 | - | - | High |
146 | 37.156.36.0 | - | - | High |
147 | 37.156.67.0 | - | - | High |
148 | 37.156.68.0 | - | - | High |
149 | 37.156.71.0 | - | - | High |
150 | 37.156.172.0 | - | - | High |
151 | 37.156.174.0 | 37-156-174-0.virtualsolution.net | - | High |
152 | 37.156.180.0 | cw37-aef-ah00.romania-webhosting.com | - | High |
153 | 37.156.224.0 | - | - | High |
154 | 37.156.227.0 | - | - | High |
155 | 37.156.244.0 | network.mi.dc3.vhosting-it.com | - | High |
156 | 37.221.160.0 | - | - | High |
157 | 37.221.168.0 | - | - | High |
158 | 37.251.128.0 | - | - | High |
159 | 37.251.160.0 | - | - | High |
160 | 37.251.192.0 | - | - | High |
161 | 37.251.208.0 | - | - | High |
162 | 37.251.248.0 | - | - | High |
163 | 44.182.52.0 | - | - | High |
164 | 45.8.44.0 | - | - | High |
165 | 45.9.176.0 | - | - | High |
166 | 45.10.96.0 | - | - | High |
167 | 45.11.181.0 | - | - | High |
168 | 45.12.56.0 | - | - | High |
169 | 45.12.70.190 | gall-preamble.alltieinc.com | - | High |
170 | 45.12.71.190 | - | - | High |
171 | 45.12.240.0 | 45.12.240.0.g.network | - | High |
172 | 45.13.36.0 | - | - | High |
173 | 45.13.136.0 | - | - | High |
174 | 45.13.176.0 | - | - | High |
175 | 45.13.212.0 | - | - | High |
176 | 45.14.56.0 | - | - | High |
177 | 45.14.100.0 | - | - | High |
178 | 45.14.148.0 | o0.p40.mailjet.com | - | High |
179 | 45.14.236.0 | - | - | High |
180 | 45.15.20.0 | - | - | High |
181 | 45.43.65.0 | - | - | High |
182 | 45.67.36.0 | - | - | High |
183 | 45.80.148.0 | - | - | High |
184 | 45.80.150.0 | - | - | High |
185 | 45.80.200.0 | - | - | High |
186 | 45.80.244.0 | 45.80.244.0.g.network | - | High |
187 | 45.81.161.0 | - | - | High |
188 | 45.82.24.0 | - | - | High |
189 | 45.83.56.0 | 45-83-56-0.virtualsolution.net | - | High |
190 | 45.83.89.0 | - | - | High |
191 | 45.83.224.0 | - | - | High |
192 | 45.86.136.0 | - | - | High |
193 | 45.86.144.0 | 45-86-144-0.virtualsolution.net | - | High |
194 | 45.86.220.0 | - | - | High |
195 | 45.86.240.0 | - | - | High |
196 | 45.87.120.0 | undefined.hostname.localhost | - | High |
197 | 45.88.172.0 | - | - | High |
198 | 45.89.164.0 | - | - | High |
199 | 45.89.173.0 | - | - | High |
200 | 45.89.175.0 | - | - | High |
201 | 45.90.128.0 | - | - | High |
202 | 45.90.140.0 | - | - | High |
203 | 45.91.4.0 | wehost.ro | - | High |
204 | 45.91.36.0 | - | - | High |
205 | 45.91.40.0 | - | - | High |
206 | 45.93.128.0 | - | - | High |
207 | 45.93.196.0 | - | - | High |
208 | 45.93.216.0 | - | - | High |
209 | 45.95.220.0 | - | - | High |
210 | 45.95.228.0 | - | - | High |
211 | 45.95.244.0 | - | - | High |
212 | 45.128.116.0 | - | - | High |
213 | 45.128.168.0 | - | - | High |
214 | 45.129.64.0 | - | - | High |
215 | 45.131.92.0 | - | - | High |
216 | 45.131.104.0 | - | - | High |
217 | 45.131.128.0 | - | - | High |
218 | 45.131.140.0 | - | - | High |
219 | 45.131.224.0 | - | - | High |
220 | 45.133.120.0 | 45.133.120.0.g.network | - | High |
221 | 45.133.128.0 | 45.133.128.0.g.network | - | High |
222 | 45.133.136.0 | - | - | High |
223 | 45.133.152.0 | - | - | High |
224 | 45.133.180.0 | - | - | High |
225 | 45.134.160.0 | - | - | High |
226 | 45.135.224.0 | - | - | High |
227 | 45.136.40.0 | - | - | High |
228 | 45.137.0.0 | - | - | High |
229 | 45.138.64.0 | - | - | High |
230 | 45.139.68.0 | - | - | High |
231 | 45.139.232.0 | - | - | High |
232 | 45.140.104.0 | - | - | High |
233 | 45.142.8.0 | - | - | High |
234 | 45.143.172.0 | - | - | High |
235 | 45.143.228.0 | - | - | High |
236 | 45.145.16.0 | - | - | High |
237 | 45.145.48.0 | 45.145.48.0.g.network | - | High |
238 | 45.147.60.0 | - | - | High |
239 | 45.148.200.0 | - | - | High |
240 | 45.149.20.0 | - | - | High |
241 | 45.150.4.0 | - | - | High |
242 | 45.150.80.0 | - | - | High |
243 | 45.150.252.0 | - | - | High |
244 | 45.152.232.0 | 45.152.232.0.g.network | - | High |
245 | 45.153.88.0 | s8-0.gazduirejocuri.ro | - | High |
246 | 45.156.236.0 | - | - | High |
247 | 45.158.132.0 | - | - | High |
248 | 45.158.212.0 | - | - | High |
249 | 45.159.120.0 | - | - | High |
250 | 45.159.132.0 | - | - | High |
251 | 46.19.104.0 | - | - | High |
252 | 46.20.128.0 | - | - | High |
253 | 46.51.108.0 | - | - | High |
254 | 46.97.0.0 | - | - | High |
255 | 46.102.0.0 | - | - | High |
256 | 46.102.64.0 | - | - | High |
257 | 46.102.101.0 | host-46-102-101-0.access.redder.net | - | High |
258 | 46.102.104.0 | 46.102.104.0.gazduiresite.ro | - | High |
259 | 46.102.108.0 | - | - | High |
260 | 46.102.118.0 | - | - | High |
261 | 46.102.144.0 | - | - | High |
262 | 46.102.153.0 | - | - | High |
263 | 46.102.155.0 | - | - | High |
264 | 46.102.156.0 | - | - | High |
265 | 46.102.168.0 | - | - | High |
266 | 46.102.173.0 | - | - | High |
267 | 46.102.175.0 | - | - | High |
268 | 46.102.190.0 | - | - | High |
269 | 46.102.232.0 | - | - | High |
270 | 46.102.236.0 | - | - | High |
271 | 46.102.238.0 | - | - | High |
272 | 46.102.249.0 | 0-123-static.mxserver.ro | - | High |
273 | 46.102.250.0 | - | - | High |
274 | 46.102.254.0 | - | - | High |
275 | 46.108.39.49 | - | - | High |
276 | 46.148.113.0 | subnet.reserved.ispsystem.net | - | High |
277 | 46.151.32.0 | - | - | High |
278 | 46.151.160.0 | - | - | High |
279 | 46.151.224.0 | - | - | High |
280 | 46.173.240.0 | - | - | High |
281 | 46.174.144.0 | 46.174.144.0.emag.ro | - | High |
282 | 46.174.200.0 | - | - | High |
283 | 46.214.0.0 | 46-214-0-0.next-gen.ro | - | High |
284 | 46.232.208.0 | - | - | High |
285 | 46.243.112.0 | - | - | High |
286 | 46.243.223.0 | - | - | High |
287 | 57.90.176.0 | - | - | High |
288 | 62.67.16.216 | - | - | High |
289 | 62.121.64.0 | - | - | High |
290 | 62.140.26.0 | - | - | High |
291 | 62.140.26.128 | - | - | High |
292 | 62.140.26.192 | - | - | High |
293 | 62.140.26.208 | - | - | High |
294 | 62.140.26.224 | - | - | High |
295 | 62.140.27.0 | - | - | High |
296 | 62.140.27.64 | - | - | High |
297 | 62.140.27.96 | - | - | High |
298 | 62.140.27.112 | - | - | High |
299 | 62.140.27.124 | - | - | High |
300 | 62.140.27.128 | - | - | High |
301 | 62.186.77.64 | - | - | High |
302 | 62.186.102.224 | - | - | High |
303 | 62.187.218.0 | - | - | High |
304 | 62.216.64.0 | - | - | High |
305 | 62.217.192.0 | - | - | High |
306 | 62.231.64.0 | 62-231-64-0.rdsnet.ro | - | High |
307 | 63.167.243.0 | - | - | High |
308 | 64.43.64.0 | - | - | High |
309 | 66.102.34.0 | - | - | High |
310 | 69.4.94.48 | 48.94.4.69.in-addr.arpa | - | High |
311 | 69.41.54.0 | - | - | High |
312 | 69.41.56.0 | - | - | High |
313 | 69.41.60.0 | - | - | High |
314 | 77.36.0.0 | ip-77-36-0-0.gvm.ro | - | High |
315 | 77.67.54.96 | - | - | High |
316 | 77.67.104.64 | - | - | High |
317 | 77.81.0.0 | - | - | High |
318 | 77.81.2.0 | - | - | High |
319 | 77.81.4.0 | 77.81.4.0.netromholding.ro | - | High |
320 | 77.81.8.0 | - | - | High |
321 | 77.81.16.0 | - | - | High |
322 | 77.81.48.0 | 77.81.48.0.static.netlog.ro | - | High |
323 | 77.81.64.0 | - | - | High |
324 | 77.81.72.0 | - | - | High |
325 | 77.81.74.0 | - | - | High |
326 | 77.81.87.0 | - | - | High |
327 | 77.81.88.0 | - | - | High |
328 | 77.81.92.0 | - | - | High |
329 | 77.81.97.0 | unused.simoshop.ro | - | High |
330 | 77.81.98.0 | no-rdns.clues.ro | - | High |
331 | 77.81.100.0 | - | - | High |
332 | 77.81.104.0 | - | - | High |
333 | 77.81.122.0 | - | - | High |
334 | 77.81.136.0 | - | - | High |
335 | 77.81.140.0 | - | - | High |
336 | 77.81.142.0 | - | - | High |
337 | 77.81.164.0 | - | - | High |
338 | 77.81.166.0 | - | - | High |
339 | 77.81.176.0 | - | - | High |
340 | 77.81.184.0 | - | - | High |
341 | 77.81.190.0 | - | - | High |
342 | 77.83.220.0 | - | - | High |
343 | 77.83.243.0 | - | - | High |
344 | 77.83.248.0 | - | - | High |
345 | 77.87.88.0 | - | - | High |
346 | 77.93.160.0 | - | - | High |
347 | 77.232.192.0 | - | - | High |
348 | 78.31.56.0 | - | - | High |
349 | 78.31.128.0 | netcorr.com | - | High |
350 | 78.31.164.0 | - | - | High |
351 | 78.96.0.0 | - | - | High |
352 | 78.108.217.0 | - | - | High |
353 | 79.110.23.0 | - | - | High |
354 | 79.110.26.0 | - | - | High |
355 | 79.110.52.0 | - | - | High |
356 | 79.112.0.0 | 79-112-0-000.iasi.fiberlink.ro | - | High |
357 | 79.143.49.0 | - | - | High |
358 | 79.180.175.219 | bzq-79-180-175-219.red.bezeqint.net | - | High |
359 | 80.74.48.0 | 000-048-074-080.ip-addr.inexio.net | - | High |
360 | 80.86.97.203 | - | - | High |
361 | 80.86.99.0 | - | - | High |
362 | 80.86.100.0 | AuctionWatch-NET.iNES.RO | - | High |
363 | 80.86.104.0 | Dialup-Pool.iNES.RO | - | High |
364 | 80.86.112.0 | - | - | High |
365 | 80.96.0.0 | - | - | High |
366 | 80.231.208.0 | if-be-5-100.ecore1.bu0-bucharest.as6453.net | - | High |
367 | 80.248.224.140 | - | - | High |
368 | 81.2.149.116 | - | - | High |
369 | 81.12.128.0 | - | - | High |
370 | 81.18.64.0 | - | - | High |
371 | 81.22.144.0 | 81-22-144-0.next-gen.ro | - | High |
372 | 81.24.16.0 | ip4-81-24-16-0.euroweb.ro | - | High |
373 | 81.26.156.0 | - | - | High |
374 | 81.26.158.0 | - | - | High |
375 | 81.89.0.0 | - | - | High |
376 | 81.161.0.0 | - | - | High |
377 | 81.161.48.0 | - | - | High |
378 | 81.161.59.0 | - | - | High |
379 | 81.180.0.0 | - | - | High |
380 | 81.180.80.0 | - | - | High |
381 | 81.180.96.0 | - | - | High |
382 | 81.180.128.0 | - | - | High |
383 | 81.181.0.0 | - | - | High |
384 | 81.196.0.0 | static-81-196-0-0.rdsnet.ro | - | High |
385 | 82.76.0.0 | 82-76-0-0.rdsnet.ro | - | High |
386 | 82.137.0.0 | 82-137-0-0.rdsnet.ro | - | High |
387 | 82.208.128.0 | - | - | High |
388 | 82.210.128.0 | - | - | High |
389 | 83.97.20.0 | 0.20.97.83.ro.ovo.sc | - | High |
390 | 83.97.22.0 | - | - | High |
391 | 83.103.128.0 | - | - | High |
392 | 83.150.236.0 | route.microhost.pl | - | High |
393 | 83.166.192.0 | - | - | High |
394 | 84.1.102.0 | - | - | High |
395 | 84.1.105.120 | - | - | High |
396 | 84.2.24.2 | - | - | High |
397 | 84.47.132.0 | - | - | High |
398 | 84.47.146.0 | - | - | High |
399 | 84.47.154.0 | - | - | High |
400 | 84.47.166.0 | - | - | High |
401 | 84.47.179.0 | - | - | High |
402 | 84.47.184.0 | - | - | High |
403 | 84.47.189.0 | - | - | High |
404 | 84.117.0.0 | - | - | High |
405 | 84.232.128.0 | 84-232-128-0.dynamic.brasov.rdsnet.ro | - | High |
406 | 84.234.96.0 | - | - | High |
407 | 84.239.0.0 | - | - | High |
408 | 84.239.32.0 | - | - | High |
409 | 84.239.40.0 | - | - | High |
410 | 84.239.44.0 | - | - | High |
411 | 84.239.46.0 | - | - | High |
412 | 84.239.48.0 | - | - | High |
413 | 84.243.64.0 | - | - | High |
414 | 84.247.1.0 | - | - | High |
415 | 84.247.16.0 | rev-dns-0.shift.ro | - | High |
416 | 84.247.22.0 | - | - | High |
417 | 84.247.28.0 | - | - | High |
418 | 84.247.36.0 | - | - | High |
419 | 84.247.46.0 | - | - | High |
420 | 84.247.48.0 | - | - | High |
421 | 84.247.54.0 | - | - | High |
422 | 84.247.56.0 | - | - | High |
423 | 84.247.58.0 | - | - | High |
424 | 84.247.60.0 | - | - | High |
425 | 84.247.63.0 | - | - | High |
426 | 84.247.64.0 | - | - | High |
427 | 85.9.0.0 | ip4-85-9-0-0.gtstelecom.ro | - | High |
428 | 85.91.105.0 | - | - | High |
429 | 85.91.107.0 | - | - | High |
430 | 85.91.108.0 | - | - | High |
431 | 85.91.116.0 | - | - | High |
432 | 85.93.0.0 | - | - | High |
433 | 85.120.0.0 | - | - | High |
434 | 85.120.128.0 | - | - | High |
435 | 85.120.160.0 | - | - | High |
436 | 85.120.168.0 | - | - | High |
437 | 85.120.174.0 | - | - | High |
438 | 85.120.176.0 | - | - | High |
439 | 85.120.192.0 | - | - | High |
440 | 85.121.0.0 | - | - | High |
441 | 85.122.0.0 | - | - | High |
442 | 85.158.216.0 | - | - | High |
443 | 85.158.218.0 | - | - | High |
444 | 85.158.220.0 | - | - | High |
445 | 85.186.0.0 | - | - | High |
446 | 85.204.0.0 | - | - | High |
447 | 85.204.16.0 | - | - | High |
448 | 85.204.22.0 | - | - | High |
449 | 85.204.26.0 | - | - | High |
450 | 85.204.32.0 | ip4-85-204-32-0.euroweb.ro | - | High |
451 | 85.204.40.0 | - | - | High |
452 | 85.204.43.0 | unregistered.ges.com.ro | - | High |
453 | 85.204.44.0 | - | - | High |
454 | 85.204.48.0 | - | - | High |
455 | 85.204.52.0 | - | - | High |
456 | 85.204.56.0 | - | - | High |
457 | 85.204.68.0 | - | - | High |
458 | 85.204.73.0 | unregistered.ges.com.ro | - | High |
459 | 85.204.75.0 | ip4-85-204-75-0.gtstelecom.ro | - | High |
460 | 85.204.78.0 | - | - | High |
461 | 85.204.98.0 | - | - | High |
462 | 85.204.100.0 | ip4-85-204-100-0.euroweb.ro | - | High |
463 | 85.204.106.0 | - | - | High |
464 | 85.204.108.0 | - | - | High |
465 | 85.204.110.0 | - | - | High |
466 | 85.204.116.0 | - | - | High |
467 | 85.204.118.0 | - | - | High |
468 | 85.204.122.0 | - | - | High |
469 | 85.204.124.0 | 85-204-124-0.com | - | High |
470 | 85.204.134.0 | - | - | High |
471 | 85.204.138.0 | 85.204.138.0.banat-net.ro | - | High |
472 | 85.204.145.0 | local-B-0.psiline.ro | - | High |
473 | 85.204.146.0 | - | - | High |
474 | 85.204.164.0 | 85-204-164-0.infinitynetwork.ro | - | High |
475 | 85.204.172.0 | - | - | High |
476 | 85.204.184.0 | - | - | High |
477 | 85.204.193.0 | 85-204-193-0.dcn.ro | - | High |
478 | 85.204.196.0 | - | - | High |
479 | 85.204.224.0 | alfa.mediasat.ro | - | High |
480 | 85.204.240.0 | - | - | High |
481 | 85.204.244.0 | - | - | High |
482 | 85.204.246.0 | - | - | High |
483 | 85.204.248.0 | 85.204.248.0.smartolt.com | - | High |
484 | 85.204.250.0 | - | - | High |
485 | 85.204.252.0 | 85.204.252.0.forcehost.ro | - | High |
486 | 85.208.28.0 | - | - | High |
487 | 85.208.36.0 | - | - | High |
488 | 85.255.112.0 | - | - | High |
489 | 86.34.0.0 | - | - | High |
490 | 86.104.3.0 | - | - | High |
491 | 86.104.4.0 | - | - | High |
492 | 86.104.7.0 | - | - | High |
493 | 86.104.8.0 | - | - | High |
494 | 86.104.10.0 | - | - | High |
495 | 86.104.13.0 | - | - | High |
496 | 86.104.16.0 | - | - | High |
497 | 86.104.30.0 | - | - | High |
498 | 86.104.65.0 | - | - | High |
499 | 86.104.66.0 | - | - | High |
500 | 86.104.72.0 | - | - | High |
501 | 86.104.124.0 | - | - | High |
502 | 86.104.128.0 | - | - | High |
503 | 86.104.132.0 | - | - | High |
504 | 86.104.136.0 | - | - | High |
505 | 86.104.144.0 | - | - | High |
506 | 86.104.176.0 | - | - | High |
507 | 86.104.180.0 | - | - | High |
508 | 86.104.182.0 | - | - | High |
509 | 86.104.184.0 | - | - | High |
510 | 86.104.192.0 | - | - | High |
511 | 86.104.210.0 | - | - | High |
512 | 86.104.214.0 | - | - | High |
513 | 86.104.216.0 | - | - | High |
514 | 86.104.220.0 | - | - | High |
515 | 86.104.227.0 | - | - | High |
516 | 86.104.230.0 | - | - | High |
517 | 86.104.254.0 | static-86.104.254.0.skaleweb.ro | - | High |
518 | 86.105.0.0 | 86-105-0-0.static.razorblue.net.uk | - | High |
519 | 86.105.4.0 | - | - | High |
520 | 86.105.9.0 | - | - | High |
521 | 86.105.14.0 | network.to.dc2.vhosting-it.com | - | High |
522 | 86.105.16.0 | - | - | High |
523 | 86.105.19.0 | - | - | High |
524 | 86.105.25.0 | - | - | High |
525 | 86.105.26.0 | - | - | High |
526 | 86.105.32.0 | - | - | High |
527 | 86.105.64.0 | - | - | High |
528 | 86.105.88.0 | - | - | High |
529 | 86.105.108.0 | client.stsisp.ro | - | High |
530 | 86.105.120.0 | - | - | High |
531 | 86.105.144.0 | - | - | High |
532 | 86.105.151.0 | - | - | High |
533 | 86.105.152.0 | - | - | High |
534 | 86.105.164.0 | undersides-genies-specifiers-appointively.traznet.net | - | High |
535 | 86.105.169.0 | - | - | High |
536 | 86.105.170.0 | - | - | High |
537 | 86.105.180.0 | - | - | High |
538 | 86.105.186.0 | - | - | High |
539 | 86.105.192.0 | network.netbridge.ro | - | High |
540 | 86.105.197.0 | - | - | High |
541 | 86.105.198.0 | - | - | High |
542 | 86.105.204.0 | - | - | High |
543 | 86.105.214.0 | - | - | High |
544 | 86.105.216.0 | client.stsisp.ro | - | High |
545 | 86.105.220.0 | - | - | High |
546 | 86.105.224.0 | - | - | High |
547 | 86.105.226.0 | - | - | High |
548 | 86.105.228.0 | cw86-a0e-bbh0.romania-webhosting.com | - | High |
549 | 86.105.231.0 | - | - | High |
550 | 86.105.233.0 | - | - | High |
551 | 86.105.241.0 | - | - | High |
552 | 86.105.252.0 | - | - | High |
553 | 86.106.8.0 | - | - | High |
554 | 86.106.20.0 | - | - | High |
555 | 86.106.22.0 | 566a1600.rev.snt.net.pl | - | High |
556 | 86.106.26.0 | - | - | High |
557 | 86.106.30.0 | - | - | High |
558 | 86.106.32.0 | - | - | High |
559 | 86.106.72.0 | - | - | High |
560 | 86.106.74.0 | - | - | High |
561 | 86.106.77.0 | - | - | High |
562 | 86.106.78.0 | 86.106.78.0.nconsulting.ro | - | High |
563 | 86.106.80.0 | - | - | High |
564 | 86.106.88.0 | - | - | High |
565 | 86.106.90.0 | - | - | High |
566 | 86.106.97.0 | - | - | High |
567 | 86.106.98.0 | - | - | High |
568 | 86.106.100.0 | - | - | High |
569 | 86.106.103.0 | - | - | High |
570 | 86.106.104.0 | - | - | High |
571 | 86.106.108.0 | - | - | High |
572 | 86.106.112.0 | - | - | High |
573 | 86.106.119.0 | - | - | High |
574 | 86.106.121.0 | - | - | High |
575 | 86.106.124.0 | - | - | High |
576 | 86.106.128.0 | - | - | High |
577 | 86.106.130.0 | - | - | High |
578 | 86.106.132.0 | - | - | High |
579 | 86.106.134.0 | - | - | High |
580 | 86.106.136.0 | no-rdns.ukwsd.com | - | High |
581 | 86.106.143.0 | - | - | High |
582 | 86.106.156.0 | - | - | High |
583 | 86.106.168.0 | - | - | High |
584 | 86.106.173.0 | - | - | High |
585 | 86.106.176.0 | - | - | High |
586 | 86.106.188.0 | clx.netpont.ro | - | High |
587 | 86.106.200.0 | - | - | High |
588 | ... | ... | ... | ... |
There are 2348 more IOC items available. Please use our online service to access the data.
TTP - Tactics, Techniques, Procedures
Tactics, techniques, and procedures (TTP) summarize the suspected MITRE ATT&CK techniques used by Romania Unknown. This data is unique as it uses our predictive model for actor profiling.
ID | Technique | Weakness | Description | Confidence |
---|---|---|---|---|
1 | T1006 | CWE-21, CWE-22, CWE-23 | Pathname Traversal | High |
2 | T1040 | CWE-294 | Authentication Bypass by Capture-replay | High |
3 | T1055 | CWE-74 | Injection | High |
4 | T1059 | CWE-94, CWE-1321 | Cross Site Scripting | High |
5 | T1059.007 | CWE-79, CWE-80, CWE-87 | Cross Site Scripting | High |
6 | ... | ... | ... | ... |
There are 22 more TTP items available. Please use our online service to access the data.
IOA - Indicator of Attack
These indicators of attack (IOA) list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration by Romania Unknown. This data is unique as it uses our predictive model for actor profiling.
ID | Type | Indicator | Confidence |
---|---|---|---|
1 | File | .../gogo/ |
Medium |
2 | File | .github/workflows/combine-prs.yml |
High |
3 | File | /?admin/user.html |
High |
4 | File | /Admin/add-student.php |
High |
5 | File | /admin/addemployee.php |
High |
6 | File | /admin/api/admin/articles/ |
High |
7 | File | /admin/login.php |
High |
8 | File | /Admin/login.php |
High |
9 | File | /admin/students/manage.php |
High |
10 | File | /api/user/upsert/<uuid> |
High |
11 | File | /apilog.php |
Medium |
12 | File | /cgi-bin/wlogin.cgi |
High |
13 | File | /connectors/index.php |
High |
14 | File | /DocSystem/Repos/getReposAllUsers.do |
High |
15 | File | /employeeview.php |
High |
16 | File | /etc/ldap.conf |
High |
17 | File | /etc/shadow |
Medium |
18 | File | /face-recognition-php/facepay-master/camera.php |
High |
19 | File | /forum/away.php |
High |
20 | File | /h/calendar |
Medium |
21 | File | /h/compose |
Medium |
22 | File | /h/search?action=voicemail&action=listen |
High |
23 | File | /hrm/employeeadd.php |
High |
24 | File | /hrm/employeeview.php |
High |
25 | File | /index.php |
Medium |
26 | File | /items/view_item.php |
High |
27 | File | /jsoa/hntdCustomDesktopActionContent |
High |
28 | File | /lookin/info |
Medium |
29 | File | /manager/index.php |
High |
30 | File | /medical/inventories.php |
High |
31 | File | /modules/profile/index.php |
High |
32 | File | /modules/projects/vw_files.php |
High |
33 | File | /modules/public/calendar.php |
High |
34 | File | /MTFWU |
Low |
35 | File | /net/nfc/netlink.c |
High |
36 | File | /newsDia.php |
Medium |
37 | File | /Noxen-master/users.php |
High |
38 | File | /opac/Actions.php?a=login |
High |
39 | File | /out.php |
Medium |
40 | File | /php-sms/classes/Master.php |
High |
41 | File | /php-sms/classes/SystemSettings.php |
High |
42 | File | /php_action/createOrder.php |
High |
43 | File | /php_action/editProductImage.php |
High |
44 | File | /proxy |
Low |
45 | File | /Redcock-Farm/farm/category.php |
High |
46 | File | /reports/rwservlet |
High |
47 | File | /ResiotQueryDBActive |
High |
48 | File | /sacco_shield/manage_user.php |
High |
49 | File | /SetTriggerWPS/PIN |
High |
50 | File | /spip.php |
Medium |
51 | File | /sqlitemanager/main.php?dbsel=-1%20or%2072%20=%2072 |
High |
52 | File | /src/png2swf.c |
High |
53 | File | /staff/bookdetails.php |
High |
54 | File | /tos/index.php?app/app_start_stop |
High |
55 | File | /user/update_booking.php |
High |
56 | File | /vendor/htmlawed/htmlawed/htmLawedTest.php |
High |
57 | File | /Wedding-Management-PHP/admin/photos_add.php |
High |
58 | File | /wordpress/wp-admin/options-general.php |
High |
59 | File | AbstractScheduleJob.java |
High |
60 | File | actionpack/lib/action_dispatch/middleware/templates/routes/_table.html.erb |
High |
61 | File | actionphp/download.File.php |
High |
62 | ... | ... | ... |
There are 543 more IOA items available (file, library, argument, input value, pattern, network port). Please use our online service to access the data.
References
The following list contains external sources which discuss the actor and the associated activities:
Literature
The following articles explain our unique predictive cyber threat intelligence:
- VulDB Cyber Threat Intelligence Documentation
- Cyber Threat Intelligence - Early Anticipation of Attacks
License
(c) 1997-2023 by vuldb.com. All data on this page is shared under the license CC BY-NC-SA 4.0. Questions? Check the FAQ, read the documentation or contact us!