Mirrors/cyber_threat_intelligence
6
0
Fork 0
mirror of https://github.com/vuldb/cyber_threat_intelligence synced 2024-06-30 19:03:00 +00:00
Code Issues Packages Projects Releases Wiki Activity
d310d3c976
cyber_threat_intelligence/actors/Czechia Unknown
History
Marc Ruef ba159a068d Update
2023-01-13 23:50:29 +01:00
..
README.md Update 2023-01-13 23:50:29 +01:00

README.md

Czechia Unknown - Cyber Threat Intelligence

These indicators were reported, collected, and generated during the VulDB CTI analysis of the actor known as Czechia Unknown. The activity monitoring correlates data from social media, forums, chat rooms, and darknet markets. It helps to determine associated actors, specific activities, expected intentions, emerging research, and ongoing attacks. Our unique predictive model uses big data to forecast activities and their characteristics.

Live data and more analysis capabilities are available at https://vuldb.com/?actor.czechia_unknown

Countries

These countries are directly (e.g. origin of attacks) or indirectly (e.g. access by proxy) associated with Czechia Unknown:

There are 21 more country items available. Please use our online service to access the data.

IOC - Indicator of Compromise

These indicators of compromise (IOC) indicate associated network resources which are known to be part of research and attack activities of Czechia Unknown.

ID IP address Hostname Campaign Confidence
1 2.16.60.4 a2-16-60-4.deploy.static.akamaitechnologies.com - High
2 2.16.60.12 a2-16-60-12.deploy.static.akamaitechnologies.com - High
3 2.16.60.20 a2-16-60-20.deploy.static.akamaitechnologies.com - High
4 2.16.60.28 a2-16-60-28.deploy.static.akamaitechnologies.com - High
5 2.16.60.30 a2-16-60-30.deploy.static.akamaitechnologies.com - High
6 2.16.60.68 a2-16-60-68.deploy.static.akamaitechnologies.com - High
7 2.16.60.76 a2-16-60-76.deploy.static.akamaitechnologies.com - High
8 2.16.60.84 a2-16-60-84.deploy.static.akamaitechnologies.com - High
9 2.16.60.92 a2-16-60-92.deploy.static.akamaitechnologies.com - High
10 2.16.60.100 a2-16-60-100.deploy.static.akamaitechnologies.com - High
11 2.16.60.108 a2-16-60-108.deploy.static.akamaitechnologies.com - High
12 2.16.60.116 a2-16-60-116.deploy.static.akamaitechnologies.com - High
13 2.16.60.119 a2-16-60-119.deploy.static.akamaitechnologies.com - High
14 2.16.60.124 a2-16-60-124.deploy.static.akamaitechnologies.com - High
15 2.16.60.126 a2-16-60-126.deploy.static.akamaitechnologies.com - High
16 2.16.60.132 a2-16-60-132.deploy.static.akamaitechnologies.com - High
17 2.16.60.140 a2-16-60-140.deploy.static.akamaitechnologies.com - High
18 2.16.60.148 a2-16-60-148.deploy.static.akamaitechnologies.com - High
19 2.16.60.156 a2-16-60-156.deploy.static.akamaitechnologies.com - High
20 2.16.60.164 a2-16-60-164.deploy.static.akamaitechnologies.com - High
21 2.56.20.0 - - High
22 2.58.12.0 - - High
23 2.58.176.0 - - High
24 5.1.56.0 - - High
25 5.22.152.0 - - High
26 5.39.13.216 - - High
27 5.39.19.84 - - High
28 5.39.37.0 - - High
29 5.39.49.32 - - High
30 5.39.49.224 ip224.ip-5-39-49.eu - High
31 5.39.53.80 ip80.ip-5-39-53.eu - High
32 5.39.63.184 fatrareal.sk - High
33 5.39.103.96 - - High
34 5.39.200.0 - - High
35 5.43.224.0 - - High
36 5.45.56.0 - - High
37 5.45.63.0 - - High
38 5.53.8.0 - - High
39 5.59.8.0 - - High
40 5.59.10.0 - - High
41 5.59.32.0 - - High
42 5.59.38.0 - - High
43 5.59.52.0 - - High
44 5.59.97.0 - - High
45 5.59.98.0 - - High
46 5.59.104.0 - - High
47 5.59.180.0 - - High
48 5.59.188.0 - - High
49 5.62.28.0 - - High
50 5.62.32.0 - - High
51 5.62.36.0 - - High
52 5.62.52.0 - - High
53 5.62.60.0 - - High
54 5.62.61.64 r-64-61-62-5.consumer-pool.prcdn.net - High
55 5.62.61.252 r-252.61.62.5.ptr.avast.com - High
56 5.101.92.0 subnet.llhost-inc.com - High
57 5.102.48.0 0.48.102.5.client.nordic.tel - High
58 5.104.16.0 5-104-16-0.members.slavicin.unart.cz - High
59 5.132.142.0 - - High
60 5.135.0.0 ip0.ip-5-135-0.eu - High
61 5.135.20.128 ip128.ip-5-135-20.eu - High
62 5.135.28.4 williams.eddiechow.com - High
63 5.135.29.240 ip240.ip-5-135-29.eu - High
64 5.135.30.192 - - High
65 5.135.49.160 ip160.ip-5-135-49.eu - High
66 5.135.67.8 s3.all4rc.ru - High
67 5.135.104.128 hello.omwings.hu - High
68 5.135.115.224 ip224.ip-5-135-115.eu - High
69 5.135.192.224 ip224.ip-5-135-192.eu - High
70 5.135.197.228 - - High
71 5.135.204.128 ip128.ip-5-135-204.eu - High
72 5.135.242.240 ip240.ip-5-135-242.eu - High
73 5.145.104.0 - - High
74 5.157.1.0 undefined.hostname.localhost - High
75 5.157.25.0 - - High
76 5.180.196.0 - - High
77 5.180.200.0 net-address200.net.rozhled.net - High
78 5.181.92.0 cust.uvtnet.cz - High
79 5.181.244.0 - - High
80 5.182.148.0 gw2-ttc.zcom.cz - High
81 5.182.186.0 - - High
82 5.182.192.0 - - High
83 5.182.198.0 - - High
84 5.183.12.0 5-183-12-0.static.wolfnet.cz - High
85 5.188.194.0 - - High
86 5.189.252.0 subnet.reserved.ispsystem.net - High
87 5.196.109.32 ray.flyrange.top - High
88 5.196.115.96 itt.semagasin.rest - High
89 5.196.129.240 mongo24.write.cz - High
90 5.196.131.188 ip188.ip-5-196-131.eu - High
91 5.196.184.28 - - High
92 5.196.186.112 ip112.ip-5-196-186.eu - High
93 5.196.187.240 tools-11.xo7.fr - High
94 5.196.194.48 ip48.ip-5-196-194.eu - High
95 5.196.199.120 greeka.greeka.com - High
96 5.196.239.128 ip128.ip-5-196-239.eu - High
97 5.196.248.0 xpertreality.sk - High
98 5.198.128.0 mfonline.cz - High
99 5.231.26.0 - - High
100 5.252.40.0 - - High
101 5.254.60.0 - - High
102 8.40.30.0 - - High
103 11.13.15.17 - - High
104 17.67.200.0 - - High
105 17.72.76.0 - - High
106 23.219.91.92 a23-219-91-92.deploy.static.akamaitechnologies.com - High
107 23.219.91.100 a23-219-91-100.deploy.static.akamaitechnologies.com - High
108 23.219.91.108 a23-219-91-108.deploy.static.akamaitechnologies.com - High
109 23.219.91.116 a23-219-91-116.deploy.static.akamaitechnologies.com - High
110 23.219.91.124 a23-219-91-124.deploy.static.akamaitechnologies.com - High
111 23.219.91.132 a23-219-91-132.deploy.static.akamaitechnologies.com - High
112 23.219.91.140 a23-219-91-140.deploy.static.akamaitechnologies.com - High
113 23.219.91.148 a23-219-91-148.deploy.static.akamaitechnologies.com - High
114 23.219.91.156 a23-219-91-156.deploy.static.akamaitechnologies.com - High
115 31.6.29.0 - - High
116 31.6.38.0 - - High
117 31.7.240.0 - - High
118 31.10.56.0 0.56.10.31.client.nordic.tel - High
119 31.14.72.0 - - High
120 31.15.8.0 net.v150.active24.cz - High
121 31.28.128.0 - - High
122 31.30.0.0 - - High
123 31.31.72.0 - - High
124 31.31.224.0 - - High
125 31.41.200.0 - - High
126 31.47.96.0 - - High
127 31.130.168.0 - - High
128 31.132.16.0 31-132-16-0.ip.jes.cz - High
129 31.133.8.0 - - High
130 31.134.216.0 - - High
131 31.148.0.0 static-31-148-0-0.netbynet.ru - High
132 31.148.20.0 - - High
133 31.148.24.0 - - High
134 31.148.48.0 - - High
135 31.148.96.0 - - High
136 31.148.128.0 31.148.128.0.serverel.net - High
137 31.148.168.0 - - High
138 31.148.196.0 - - High
139 31.148.200.0 - - High
140 31.148.212.0 - - High
141 31.148.216.0 - - High
142 31.148.244.0 - - High
143 31.169.128.0 ip-31-169-128-0.net.vodafone.cz - High
144 31.170.176.0 - - High
145 31.177.24.0 - - High
146 31.186.184.0 - - High
147 31.192.64.0 - - High
148 31.222.0.0 isp-31-222-0-0.saowifi.net - High
149 32.42.29.152 - - High
150 34.99.144.0 0.144.99.34.bc.googleusercontent.com - Medium
151 34.99.216.0 0.216.99.34.bc.googleusercontent.com - Medium
152 34.103.160.0 0.160.103.34.bc.googleusercontent.com - Medium
153 37.9.192.0 - - High
154 37.44.16.0 - - High
155 37.44.208.0 - - High
156 37.46.80.0 unasigned-0-80-46-37.hosting90.net - High
157 37.46.208.0 - - High
158 37.48.0.0 37-48-0-0.nat.epc.tmcz.cz - High
159 37.59.68.160 - - High
160 37.59.85.104 ip104.ip-37-59-85.eu - High
161 37.59.88.88 - - High
162 37.59.129.224 ip224.ip-37-59-129.eu - High
163 37.59.137.116 - - High
164 37.59.162.184 - - High
165 37.59.165.224 ip224.ip-37-59-165.eu - High
166 37.59.174.48 ip48.ip-37-59-174.eu - High
167 37.59.186.44 ip44.ip-37-59-186.eu - High
168 37.59.219.64 - - High
169 37.59.223.64 ip64.ip-37-59-223.eu - High
170 37.59.225.148 - - High
171 37.59.248.240 ip240.ip-37-59-248.eu - High
172 37.59.248.242 ip242.ip-37-59-248.eu - High
173 37.77.224.0 - - High
174 37.143.112.0 - - High
175 37.157.192.0 - - High
176 37.187.188.72 rev.testalldom.eu - High
177 37.188.128.0 37-188-128-0.red.o2.cz - High
178 37.205.8.0 - - High
179 37.221.68.0 - - High
180 37.221.88.0 - - High
181 37.221.116.0 - - High
182 37.221.240.0 network.srv.tlapnet.cz - High
183 37.235.96.0 - - High
184 37.235.104.0 - - High
185 37.235.108.0 - - High
186 37.235.110.0 - - High
187 43.113.224.0 - - High
188 45.8.40.0 - - High
189 45.11.132.0 - - High
190 45.12.70.56 csmacd-data.get-eye.com - High
191 45.12.71.56 - - High
192 45.13.75.0 - - High
193 45.14.16.0 - - High
194 45.14.156.0 - - High
195 45.15.56.0 - - High
196 45.64.114.128 - - High
197 45.66.52.0 - - High
198 45.67.13.0 - - High
199 45.67.140.0 - - High
200 45.80.248.0 - - High
201 45.81.92.0 - - High
202 45.81.96.0 unn-45.81.96.0.zcom.cz - High
203 45.82.81.0 - - High
204 45.82.156.0 - - High
205 45.82.232.0 - - High
206 45.83.8.0 - - High
207 45.83.112.0 45-83-112-0.upcloudnet.com - High
208 45.83.124.0 - - High
209 45.83.132.0 - - High
210 45.83.136.0 - - High
211 45.83.144.0 - - High
212 45.83.152.0 - - High
213 45.83.212.0 - - High
214 45.84.164.0 - - High
215 45.85.172.0 - - High
216 45.85.252.0 - - High
217 45.86.48.0 - - High
218 45.87.12.0 - - High
219 45.87.116.0 - - High
220 45.87.236.0 - - High
221 45.88.152.0 - - High
222 45.89.44.0 - - High
223 45.90.100.0 - - High
224 45.91.0.0 r0.mtu.cz - High
225 45.91.28.0 - - High
226 45.91.180.0 - - High
227 45.92.236.0 - - High
228 45.93.152.0 r1.msk.cz - High
229 45.95.72.0 - - High
230 45.129.24.0 - - High
231 45.129.104.0 - - High
232 45.129.156.0 - - High
233 45.130.248.0 - - High
234 45.132.0.0 - - High
235 45.132.148.0 - - High
236 45.132.160.0 - - High
237 45.134.148.0 - - High
238 45.134.216.0 216-0.ip.nettv.uz - High
239 45.135.84.0 - - High
240 45.135.152.0 - - High
241 45.135.180.0 ip-45-135-180-0.vps.vpinet.cz - High
242 45.137.128.0 45-137-128-0.telecombusinessforme.net - High
243 45.138.104.0 - - High
244 45.139.36.0 - - High
245 45.139.44.0 - - High
246 45.139.56.0 - - High
247 45.139.64.0 45-139-64-0.cloud-info.net - High
248 45.139.88.0 - - High
249 45.139.224.0 - - High
250 45.140.24.0 - - High
251 45.140.40.0 - - High
252 45.140.240.0 - - High
253 45.141.248.0 - - High
254 45.142.48.0 - - High
255 45.142.116.0 - - High
256 45.143.240.0 - - High
257 45.145.220.0 - - High
258 45.146.108.0 - - High
259 45.147.164.0 45-147-164-0.telecombusinessforme.net - High
260 45.148.80.0 unassigned-45.148.80.0.active24.cz - High
261 45.149.130.0 - - High
262 45.150.36.0 ip-45-150-36-0.vps.vpinet.cz - High
263 45.151.52.0 - - High
264 45.153.160.0 - - High
265 45.153.192.0 tlapnet-192-0.cust.tlapnet.cz - High
266 45.155.12.0 - - High
267 45.156.44.0 - - High
268 45.156.112.0 - - High
269 45.158.88.0 - - High
270 45.158.200.0 - - High
271 45.158.224.0 45-158-224-0.serversfinder.com - High
272 45.159.108.0 - - High
273 45.159.116.0 0.116.159.45.client.nordic.tel - High
274 46.13.0.0 - - High
275 46.16.120.0 - - High
276 46.23.48.0 - - High
277 46.23.128.0 - - High
278 46.28.104.0 - - High
279 46.29.4.0 - - High
280 46.29.184.0 - - High
281 46.29.224.0 ip-0-224.static.ccinternet.cz - High
282 46.30.64.0 - - High
283 46.30.88.0 - - High
284 46.30.144.0 - - High
285 46.30.232.0 - - High
286 46.33.96.0 - - High
287 46.36.32.0 0-32.gtt-net.cz - High
288 46.39.160.0 - - High
289 46.47.128.0 - - High
290 46.105.94.184 ip184.ip-46-105-94.eu - High
291 46.105.135.156 156eu.god4.net - High
292 46.105.158.216 - - High
293 46.105.160.224 hyperlink-smtp16.viewwonsms.com - High
294 46.105.172.92 - - High
295 46.105.172.228 - - High
296 46.105.215.192 ip192.ip-46-105-215.eu - High
297 46.105.218.128 blue-arrow12.tooles.info - High
298 46.105.245.164 - - High
299 46.105.251.0 - - High
300 46.105.255.220 - - High
301 46.135.0.0 - - High
302 46.149.112.0 - - High
303 46.167.192.0 ip-46-167-192-0.net.vodafone.cz - High
304 46.173.192.0 - - High
305 46.174.16.0 - - High
306 46.174.32.0 - - High
307 46.174.56.0 - - High
308 46.174.152.0 0.152.174.46.mjanik.net - High
309 46.175.88.0 - - High
310 46.175.176.0 - - High
311 46.183.56.0 0.56.183.46.client.nordic.tel - High
312 46.183.64.0 - - High
313 46.189.67.120 - - High
314 46.226.16.0 ttcas16net.ttc.cz - High
315 46.227.8.0 - - High
316 46.227.168.0 - - High
317 46.228.16.0 - - High
318 46.229.112.0 - - High
319 46.231.72.0 0.72.231.46.client.nordic.tel - High
320 46.234.96.0 - - High
321 46.234.160.0 - - High
322 46.243.0.0 - - High
323 46.243.48.0 net-46-243-48-0.vshosting.cz - High
324 46.252.224.0 - - High
325 46.253.96.0 - - High
326 46.254.64.0 - - High
327 46.255.8.0 - - High
328 46.255.224.0 - - High
329 50.7.185.0 50-7-185-0.host-engine.com - High
330 50.7.194.0 - - High
331 50.7.224.0 - - High
332 50.7.228.0 - - High
333 50.7.234.0 - - High
334 50.7.238.0 - - High
335 50.7.240.0 - - High
336 50.7.255.0 - - High
337 51.38.1.64 ip64.ip-51-38-1.eu - High
338 51.38.17.96 mta4.techeventmedia.com - High
339 51.38.22.0 ip0.ip-51-38-22.eu - High
340 51.38.96.240 ip240.ip-51-38-96.eu - High
341 51.38.110.224 hosted-by.100up.org - High
342 51.38.121.16 ip16.ip-51-38-121.eu - High
343 51.38.122.28 ip28.ip-51-38-122.eu - High
344 51.38.169.192 ip192.ip-51-38-169.eu - High
345 51.38.206.96 ip96.ip-51-38-206.eu - High
346 51.68.58.128 dns1.goldenmarket.net - High
347 51.68.163.160 ip160.ip-51-68-163.eu - High
348 51.68.170.240 ip240.ip-51-68-170.eu - High
349 51.68.185.144 seopapese.guru - High
350 51.75.83.96 ip96.ip-51-75-83.eu - High
351 51.75.84.64 ip64.ip-51-75-84.eu - High
352 51.75.87.96 ip96.ip-51-75-87.eu - High
353 51.75.153.144 ip144.ip-51-75-153.eu - High
354 51.75.215.32 ip32.ip-51-75-215.eu - High
355 51.77.25.32 - - High
356 51.77.72.224 - - High
357 51.77.74.208 ip208.ip-51-77-74.eu - High
358 51.77.79.48 - - High
359 51.77.90.144 ip144.ip-51-77-90.eu - High
360 51.77.90.240 ip240.ip-51-77-90.eu - High
361 51.77.92.176 ip176.ip-51-77-92.eu - High
362 51.77.234.96 ip96.ip-51-77-234.eu - High
363 51.83.113.176 - - High
364 51.83.113.192 - - High
365 51.89.13.16 ip16.ip-51-89-13.eu - High
366 51.89.16.80 ip80.ip-51-89-16.eu - High
367 51.89.24.48 ip48.ip-51-89-24.eu - High
368 51.89.25.112 ip112.ip-51-89-25.eu - High
369 51.89.30.48 ip48.ip-51-89-30.eu - High
370 51.89.33.96 ip96.ip-51-89-33.eu - High
371 51.89.38.0 ip0.ip-51-89-38.eu - High
372 51.89.51.192 ip192.ip-51-89-51.eu - High
373 51.89.52.176 ip176.ip-51-89-52.eu - High
374 51.89.85.48 ip48.ip-51-89-85.eu - High
375 51.89.122.128 ip128.ip-51-89-122.eu - High
376 51.91.168.160 ip160.ip-51-91-168.eu - High
377 51.91.180.128 ip128.ip-51-91-180.eu - High
378 51.91.203.32 - - High
379 51.178.235.128 ip128.ip-51-178-235.eu - High
380 51.254.10.152 ip152.ip-51-254-10.eu - High
381 51.254.14.252 ip252.ip-51-254-14.eu - High
382 51.254.25.112 ip112.ip-51-254-25.eu - High
383 51.254.50.96 vps2.catinthebox.cz - High
384 51.254.73.208 ip208.ip-51-254-73.eu - High
385 51.254.79.12 ip12.ip-51-254-79.eu - High
386 51.254.109.96 ip96.ip-51-254-109.eu - High
387 51.254.146.176 enterprise-51.254.146.176.exon.io - High
388 51.254.158.224 ip224.ip-51-254-158.eu - High
389 51.254.164.8 ip8.ip-51-254-164.eu - High
390 51.254.165.0 ip0.ip-51-254-165.eu - High
391 51.254.181.32 ip32.ip-51-254-181.eu - High
392 51.254.195.240 ip240.ip-51-254-195.eu - High
393 51.254.228.152 vpnout102-108-1-cz.ciberprotector.com - High
394 51.254.233.92 ip92.ip-51-254-233.eu - High
395 51.254.238.64 ip64.ip-51-254-238.eu - High
396 51.254.242.208 ip208.ip-51-254-242.eu - High
397 51.254.246.128 ip128.ip-51-254-246.eu - High
398 51.255.17.32 mt12.webmarketsale.com - High
399 51.255.21.228 vpnout101-108-1-cz.ciberprotector.com - High
400 51.255.53.160 ip160.ip-51-255-53.eu - High
401 51.255.59.220 - - High
402 51.255.105.112 ip112.ip-51-255-105.eu - High
403 51.255.112.80 ip80.ip-51-255-112.eu - High
404 51.255.122.136 ip136.ip-51-255-122.eu - High
405 51.255.122.224 n6.dicio.cz - High
406 51.255.133.224 blue-arrow13.tooles.info - High
407 51.255.150.160 ip160.ip-51-255-150.eu - High
408 51.255.219.176 ip176.ip-51-255-219.eu - High
409 54.36.15.192 ip192.ip-54-36-15.eu - High
410 54.36.28.128 ip128.ip-54-36-28.eu - High
411 54.36.66.160 ip160.ip-54-36-66.eu - High
412 54.36.87.192 ip192.ip-54-36-87.eu - High
413 54.36.156.128 ip128.ip-54-36-156.eu - High
414 54.36.195.160 ip160.ip-54-36-195.eu - High
415 54.36.232.208 ip208.ip-54-36-232.eu - High
416 54.37.36.64 ip64.ip-54-37-36.eu - High
417 54.37.120.240 ip240.ip-54-37-120.eu - High
418 54.37.178.224 ip224.ip-54-37-178.eu - High
419 54.37.182.224 ip224.ip-54-37-182.eu - High
420 54.37.188.48 ip48.ip-54-37-188.eu - High
421 54.37.196.48 eastwick.flyconnekt.top - High
422 54.37.202.80 gw-de.iniba.eu - High
423 54.37.209.224 - - High
424 54.37.217.192 ip192.ip-54-37-217.eu - High
425 54.38.9.96 ip96.ip-54-38-9.eu - High
426 54.38.22.96 ip96.ip-54-38-22.eu - High
427 54.38.116.0 ip0.ip-54-38-116.eu - High
428 54.38.127.32 ip32.ip-54-38-127.eu - High
429 54.38.155.64 ip64.ip-54-38-155.eu - High
430 54.38.161.160 ip160.ip-54-38-161.eu - High
431 54.38.163.32 ip32.ip-54-38-163.eu - High
432 54.38.218.96 ip96.ip-54-38-218.eu - High
433 57.90.80.0 - - High
434 62.4.96.0 volbackbone.vol.cz - High
435 62.24.64.0 ip-62-24-64-0.net.vodafone.cz - High
436 62.40.64.0 - - High
437 62.44.0.0 - - High
438 62.77.64.0 - - High
439 62.80.80.0 - - High
440 62.80.84.0 - - High
441 62.80.85.0 - - High
442 62.80.85.32 - - High
443 62.80.85.128 - - High
444 62.80.88.0 - - High
445 62.84.128.0 - - High
446 62.109.128.0 - - High
447 62.115.102.16 - - High
448 62.115.136.63 ffm-ipx-i4-link.ip.twelve99.net - High
449 62.115.139.218 s-b3-link.ip.twelve99.net - High
450 62.122.168.0 62.122.168.0.serverel.net - High
451 62.129.32.0 - - High
452 62.141.0.0 - - High
453 62.168.0.0 - - High
454 62.177.64.0 adslplusprgnet.vol.cz - High
455 62.182.232.0 - - High
456 62.185.33.80 - - High
457 62.185.227.0 - - High
458 62.185.227.128 - - High
459 62.185.227.224 - - High
460 62.186.144.0 - - High
461 62.186.145.0 - - High
462 ... ... ... ...

There are 1842 more IOC items available. Please use our online service to access the data.

TTP - Tactics, Techniques, Procedures

Tactics, techniques, and procedures (TTP) summarize the suspected MITRE ATT&CK techniques used by Czechia Unknown. This data is unique as it uses our predictive model for actor profiling.

ID Technique Weakness Description Confidence
1 T1006 CWE-21, CWE-22, CWE-23 Pathname Traversal High
2 T1040 CWE-294, CWE-319 Authentication Bypass by Capture-replay High
3 T1055 CWE-74 Injection High
4 T1059 CWE-88, CWE-94, CWE-1321 Cross Site Scripting High
5 T1059.007 CWE-79, CWE-80 Cross Site Scripting High
6 T1068 CWE-264, CWE-269, CWE-274, CWE-284 Execution with Unnecessary Privileges High
7 ... ... ... ...

There are 22 more TTP items available. Please use our online service to access the data.

IOA - Indicator of Attack

These indicators of attack (IOA) list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration by Czechia Unknown. This data is unique as it uses our predictive model for actor profiling.

ID Type Indicator Confidence
1 File .github/workflows/combine-prs.yml High
2 File /admin/api/admin/articles/ High
3 File /admin/api/theme-edit/ High
4 File /admin/scripts/pi-hole/phpqueryads.php High
5 File /api/browserextension/UpdatePassword/ High
6 File /api/contents High
7 File /auth/register High
8 File /blog/comment High
9 File /Default/Bd Medium
10 File /DocSystem/Repos/getReposAllUsers.do High
11 File /drivers/isdn/i4l/isdn_net.c High
12 File /env Low
13 File /etc/os-release High
14 File /face-recognition-php/facepay-master/camera.php High
15 File /forum/away.php High
16 File /goform/addressNat High
17 File /goform/addUserName High
18 File /goform/exeCommand High
19 File /goform/IPSECsave High
20 File /goform/NatStaticSetting High
21 File /goform/P2pListFilter High
22 File /goform/SafeMacFilter High
23 File /goform/setMacFilterCfg High
24 File /goform/WifiMacFilterGet High
25 File /hrm/controller/employee.php High
26 File /hrm/employeeadd.php High
27 File /hrm/employeeview.php High
28 File /hss/?page=categories High
29 File /hss/?page=product_per_brand High
30 File /hss/admin/?page=products/view_product High
31 File /inc/parser/xhtml.php High
32 File /jsoa/hntdCustomDesktopActionContent High
33 File /lookin/info Medium
34 File /odlms//classes/Master.php?f=delete_activity High
35 File /ossim/report/wizard_email.php High
36 File /pages/save_user.php High
37 File /plugin/getList High
38 File /product/savenewproduct.php?flag=1 High
39 File /proxy Low
40 File /services/Card/findUser High
41 File /services/view_service.php High
42 File /SkycaijiApp/admin/controller/Mystore.php High
43 File /timeline2.php High
44 File /tmp/jvm-*/hs_error.log High
45 File /Upload/admin/admin_notify.php High
46 File /usr/sbin/nagios High
47 File /v1/sql-runner High
48 ... ... ...

There are 412 more IOA items available (file, library, argument, input value, pattern, network port). Please use our online service to access the data.

References

The following list contains external sources which discuss the actor and the associated activities:

Literature

The following articles explain our unique predictive cyber threat intelligence:

License

(c) 1997-2023 by vuldb.com. All data on this page is shared under the license CC BY-NC-SA 4.0. Questions? Check the FAQ, read the documentation or contact us!