Aland Islands Unknown Analysis

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (29)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en26
sv4

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

fi28
us2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

Unknown1

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

Not Defined14
Operating System4
Programming Tool Software2
Content Management System2
WordPress Plugin2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

Microsoft10
Not Defined6
Apache4
Percona2
Craft2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Microsoft Windows4
Apache Struts2
Microsoft Dynamics 3652
Percona XtraDB Cluster2
Liferay Portal CE2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemEPSSCTICVE
1Apache Struts MultiPageValidator input validation7.57.2$5k-$25k$0-$5kNot DefinedOfficial Fix0.949070.04CVE-2015-0899
2Craft CMS Folder 7pk security5.35.1$0-$5k$0-$5kNot DefinedOfficial Fix0.000910.05CVE-2017-8383
3Microsoft SharePoint Server Privilege Escalation7.26.6$5k-$25k$0-$5kHighOfficial Fix0.412970.04CVE-2023-24955
4Pivotal Spring Framework deserialization9.89.5$0-$5k$0-$5kProof-of-ConceptNot Defined0.024440.00CVE-2016-1000027
5Oracle Database Server Oracle Database Recovery Manager denial of service6.86.5$5k-$25k$0-$5kNot DefinedOfficial Fix0.000780.02CVE-2023-21918
6Microsoft Windows Win32k Local Privilege Escalation7.87.4$25k-$100k$0-$5kHighOfficial Fix0.001280.04CVE-2023-29336
7Microsoft Windows ICMP Remote Code Execution9.88.9$25k-$100k$5k-$25kUnprovenOfficial Fix0.028180.00CVE-2023-23415
8Extreme Networks ExtremeWireless Aerohive HiveOS/IQ Engine NetConfig UI Administrative Interface code injection8.88.8$0-$5k$0-$5kNot DefinedNot Defined0.851390.02CVE-2020-16152
9Microsoft Dynamics 365 cross site scripting5.45.1$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.000520.00CVE-2020-16956
10Grafana Image Renderer information disclosure6.96.8$0-$5k$0-$5kNot DefinedOfficial Fix0.002610.05CVE-2022-31176
11Jettison XML Parser stack-based overflow6.16.1$0-$5k$0-$5kNot DefinedNot Defined0.001620.00CVE-2022-40149
12Oracle Security Service C SSL API input validation9.39.2$25k-$100k$5k-$25kNot DefinedOfficial Fix0.003340.00CVE-2020-35169
13Atlassian Jira HTTP Request unknown vulnerability8.07.9$0-$5k$0-$5kNot DefinedOfficial Fix0.003300.02CVE-2022-26137
14Apache log4j JNDI LDAP Server Lookup Log4Shell/LogJam deserialization8.68.5$25k-$100k$0-$5kHighOfficial Fix0.975600.04CVE-2021-44228
15Elementor Pro Plugin customize.php elementor-edit-template cross site scripting5.25.1$0-$5k$0-$5kNot DefinedOfficial Fix0.000900.03CVE-2018-18379
16Red Hat JBoss EAP Vault System Log information disclosure5.05.0$5k-$25k$0-$5kNot DefinedOfficial Fix0.000540.04CVE-2019-14885
17Percona XtraDB Cluster race condition6.15.9$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.000660.03CVE-2016-6663
18JetBrains IntelliJ IDEA License Server authentication spoofing7.77.4$0-$5k$0-$5kNot DefinedOfficial Fix0.002220.03CVE-2020-11690
19OpenSSL mingw certificate validation4.34.2$5k-$25k$0-$5kNot DefinedOfficial Fix0.000500.04CVE-2019-1552
20Microsoft Compiled HTML Help hh.exe privileges management6.35.5$5k-$25k$0-$5kProof-of-ConceptUnavailable0.000000.03

IOC - Indicator of Compromise (23)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsIdentifiedTypeConfidence
179.133.0.0Aland Islands Unknown02/06/2023verifiedHigh
282.199.160.0Aland Islands Unknown02/06/2023verifiedHigh
3185.36.148.0Aland Islands Unknown02/06/2023verifiedHigh
4185.190.24.0Aland Islands Unknown02/06/2023verifiedHigh
5185.217.4.0Aland Islands Unknown02/06/2023verifiedHigh
6XXX.XXX.XX.XXxxxx Xxxxxxx Xxxxxxx02/06/2023verifiedHigh
7XXX.XX.XXX.XXxxxx Xxxxxxx Xxxxxxx02/06/2023verifiedHigh
8XXX.XX.XX.XXxxxx Xxxxxxx Xxxxxxx02/06/2023verifiedHigh
9XXX.XXX.XXX.XXxxxx Xxxxxxx Xxxxxxx02/06/2023verifiedHigh
10XXX.XXX.X.XXxxxx Xxxxxxx Xxxxxxx02/06/2023verifiedHigh
11XXX.XXX.X.XXxxxx Xxxxxxx Xxxxxxx02/06/2023verifiedHigh
12XXX.XXX.XX.XXxxxx Xxxxxxx Xxxxxxx02/06/2023verifiedHigh
13XXX.XXX.XX.XXxxxx Xxxxxxx Xxxxxxx02/06/2023verifiedHigh
14XXX.XXX.XXX.XXxxxx Xxxxxxx Xxxxxxx02/06/2023verifiedHigh
15XXX.XXX.XX.XXxxxx Xxxxxxx Xxxxxxx02/06/2023verifiedHigh
16XXX.XX.XXX.Xxxx-xx-xxx-x.xxx.xxXxxxx Xxxxxxx Xxxxxxx02/06/2023verifiedHigh
17XXX.XX.XXX.Xxxx-xx-xxx-x.xxx.xxXxxxx Xxxxxxx Xxxxxxx02/06/2023verifiedHigh
18XXX.XX.XXX.Xxxx-xx-xxx-x.xxx.xxXxxxx Xxxxxxx Xxxxxxx02/06/2023verifiedHigh
19XXX.XX.XXX.XXxxxx Xxxxxxx Xxxxxxx02/06/2023verifiedHigh
20XXX.XX.XXX.XXxxxx Xxxxxxx Xxxxxxx02/06/2023verifiedHigh
21XXX.XX.XXX.XXxxxx Xxxxxxx Xxxxxxx02/06/2023verifiedHigh
22XXX.XXX.XX.Xxxx-xxx-xx-x.xxxxx.xxxXxxxx Xxxxxxx Xxxxxxx02/06/2023verifiedHigh
23XXX.XX.XXX.XXxxxx Xxxxxxx Xxxxxxx02/06/2023verifiedHigh

TTP - Tactics, Techniques, Procedures (8)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueClassVulnerabilitiesAccess VectorTypeConfidence
1T1006CAPEC-126CWE-22Path TraversalpredictiveHigh
2T1059CAPEC-242CWE-94Argument InjectionpredictiveHigh
3TXXXX.XXXCAPEC-209CWE-XXXxxxx Xxxx XxxxxxxxxpredictiveHigh
4TXXXXCAPEC-122CWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
5TXXXXCAPEC-CWE-XXX7xx Xxxxxxxx XxxxxxxxpredictiveHigh
6TXXXXCAPEC-50CWE-XXXXxxxxxxxxxx XxxxxxxxxxpredictiveHigh
7TXXXX.XXXCAPEC-459CWE-XXXXxxxxxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
8TXXXXCAPEC-116CWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx XxxxxxxxxxxpredictiveHigh

IOA - Indicator of Attack (9)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/html/portal/flash.jsppredictiveHigh
2Filecraft/app/predictiveMedium
3Filexx.xxxpredictiveLow
4Filexx-xxxxx/xxxxxxxxx.xxxpredictiveHigh
5Libraryxxxxx.xxxpredictiveMedium
6ArgumentxxxxxpredictiveLow
7ArgumentxxxxxxxxxxpredictiveMedium
8ArgumentxxxxpredictiveLow
9Input Valuex:/xxx/xxxxxpredictiveMedium

References (2)

The following list contains external sources which discuss the actor and the associated activities:

PreviousOverviewNext

Do you want to use VulDB in your project?

Use the official API to access entries easily!