Cape Verde Unknown Analysis

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (32)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en20
pt10
es2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

pt26
cv2
us2
br2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

Unknown1

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

Not Defined10
Database Administration Software4
Operating System4
WordPress Plugin2
Network Management Software2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

Not Defined14
Microsoft4
Zoho ManageEngine2
Xiaomi2
Redhat2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

phpMyAdmin4
Microsoft Windows4
Yoast SEO Plugin2
Zoho ManageEngine ManageEngine OpManager2
Wiki.js2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemEPSSCTICVE
1Redhat Nagios XI Core nagios.upgrade_to_v3.sh link following6.86.8$0-$5k$0-$5kNot DefinedNot Defined0.000420.00CVE-2013-2029
2Fortinet FortiOS Restore Command range error3.83.7$0-$5k$0-$5kHighOfficial Fix0.001460.05CVE-2021-44168
3OpenSSH ssh-add Privilege Escalation7.67.5$5k-$25k$0-$5kNot DefinedOfficial Fix0.001060.21CVE-2023-28531
4Wiki.js Storage Module path traversal6.46.3$0-$5k$0-$5kNot DefinedOfficial Fix0.001260.04CVE-2021-43800
5Wiki.js SVG File cross site scripting4.44.4$0-$5k$0-$5kNot DefinedOfficial Fix0.000530.00CVE-2021-25993
6lighttpd mod_extforward Plugin mod_extforward_Forwarded stack-based overflow6.36.3$0-$5k$0-$5kNot DefinedNot Defined0.022510.02CVE-2022-22707
7Simple College Website file_put_contents unrestricted upload8.58.5$0-$5k$0-$5kNot DefinedNot Defined0.002950.00CVE-2022-40087
8CMSUno central.php file_put_contents code injection5.55.5$0-$5k$0-$5kNot DefinedNot Defined0.005810.03CVE-2021-40889
9Xiaomi Redmi Note 9T/Redmi Note 11 write out-of-bounds write5.75.7$0-$5k$0-$5kNot DefinedNot Defined0.000890.04CVE-2020-14125
10WSO2 API Manager/IS as Key Manager/Identity Server File Based Service Provider Creation xml external entity reference5.55.3$0-$5k$0-$5kNot DefinedOfficial Fix0.021230.07CVE-2021-42646
11Zoho ManageEngine ManageEngine OpManager getmailserversettings sql injection6.46.4$0-$5k$0-$5kNot DefinedNot Defined0.003230.00CVE-2017-11559
12Yoast SEO Plugin REST Endpoint posts information disclosure3.53.4$0-$5k$0-$5kNot DefinedOfficial Fix0.001230.04CVE-2021-25118
13WordPress wp_die information disclosure4.54.4$5k-$25k$0-$5kNot DefinedOfficial Fix0.000930.04CVE-2021-39200
14WordPress sql injection6.86.7$5k-$25k$0-$5kNot DefinedOfficial Fix0.004670.00CVE-2022-21664
15pac-resolver PAC File Remote Code Execution5.65.4$0-$5k$0-$5kNot DefinedOfficial Fix0.004330.05CVE-2021-23406
16Oracle Blockchain Platform BCS Console deserialization7.37.1$5k-$25k$0-$5kNot DefinedOfficial Fix0.003310.00CVE-2019-10086
17GitLab Community Edition/Enterprise Edition OmniAuth hard-coded password8.28.0$0-$5k$0-$5kNot DefinedOfficial Fix0.244550.02CVE-2022-1162
18Fortinet FortiOS TFTP Client stack-based overflow7.06.8$0-$5k$0-$5kNot DefinedOfficial Fix0.000420.03CVE-2021-42757
19Apache Directory Studio SASL Authentication missing encryption3.13.1$0-$5k$5k-$25kNot DefinedNot Defined0.000550.00CVE-2021-33900
20JIRA picker Username improper authorization5.35.2$0-$5k$0-$5kNot DefinedOfficial Fix0.003790.05CVE-2019-3403

IOC - Indicator of Compromise (19)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsIdentifiedTypeConfidence
138.44.64.0Cape Verde Unknown04/28/2023verifiedHigh
241.74.128.0Cape Verde Unknown04/28/2023verifiedHigh
341.79.124.0Cape Verde Unknown04/28/2023verifiedHigh
441.215.208.0Cape Verde Unknown04/28/2023verifiedHigh
5XX.XXX.XXX.XXxxx Xxxxx Xxxxxxx04/28/2023verifiedHigh
6XX.XX.XXX.XXxxx Xxxxx Xxxxxxx04/28/2023verifiedHigh
7XXX.XX.XXX.XXxxx Xxxxx Xxxxxxx04/28/2023verifiedHigh
8XXX.XXX.XXX.XXxxx Xxxxx Xxxxxxx04/28/2023verifiedHigh
9XXX.XXX.XXX.XXxxx Xxxxx Xxxxxxx04/28/2023verifiedHigh
10XXX.XXX.XX.XXxxx Xxxxx Xxxxxxx04/28/2023verifiedHigh
11XXX.XXX.XXX.XXxxx Xxxxx Xxxxxxx04/28/2023verifiedHigh
12XXX.XXX.XXX.XXxxx Xxxxx Xxxxxxx04/28/2023verifiedHigh
13XXX.XX.XX.XXxxx Xxxxx Xxxxxxx04/28/2023verifiedHigh
14XXX.XXX.XX.XXxxx Xxxxx Xxxxxxx04/28/2023verifiedHigh
15XXX.X.X.XXxxx Xxxxx Xxxxxxx04/28/2023verifiedHigh
16XXX.XX.XX.XXxxx Xxxxx Xxxxxxx04/28/2023verifiedHigh
17XXX.XX.XXX.XXxxx Xxxxx Xxxxxxx04/28/2023verifiedHigh
18XXX.XXX.XXX.XXxxx Xxxxx Xxxxxxx04/28/2023verifiedHigh
19XXX.XXX.XXX.XXxxx Xxxxx Xxxxxxx04/28/2023verifiedHigh

TTP - Tactics, Techniques, Procedures (11)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueClassVulnerabilitiesAccess VectorTypeConfidence
1T1006CAPEC-126CWE-22Path TraversalpredictiveHigh
2T1059CAPEC-242CWE-94Argument InjectionpredictiveHigh
3T1059.007CAPEC-209CWE-79Cross Site ScriptingpredictiveHigh
4TXXXXCAPEC-19CWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
5TXXXX.XXXCAPEC-CWE-XXXXxx Xx Xxxx-xxxxx XxxxxxxxpredictiveHigh
6TXXXXCAPEC-108CWE-XXXxx XxxxxxxxxpredictiveHigh
7TXXXX.XXXCAPEC-1CWE-XXXXxxxxxxx XxxxxxxxxxxxxpredictiveHigh
8TXXXXCAPEC-116CWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx XxxxxxxxxxxpredictiveHigh
9TXXXXCAPEC-157CWE-XXXXxxxxxxxxxxxx XxxxxxpredictiveHigh
10TXXXX.XXXCAPEC-CWE-XXXXxx Xxxxxxxxxx XxxxxpredictiveHigh
11TXXXX.XXXCAPEC-1CWE-XXXXxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx XxxxxxxxxpredictiveHigh

IOA - Indicator of Attack (12)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File.htaccesspredictiveMedium
2File/api/json/admin/getmailserversettingspredictiveHigh
3File/xxxx/xxx/x/xxxx/xxxxxxpredictiveHigh
4Filexxxxxx.xxxxxxx_xx_xx.xxpredictiveHigh
5Filexxxx/xxxxxpredictiveMedium
6Filexx/xx/xxxxxpredictiveMedium
7File{xxxxxxx}/xxx/xxxxxxx.xxxpredictiveHigh
8ArgumentxxxxxxpredictiveLow
9ArgumentxxxxpredictiveLow
10ArgumentxxxxxxpredictiveLow
11Pattern|xx xx xx xx|predictiveHigh
12Network Portxxx/xx (xxxxxx)predictiveHigh

References (2)

The following list contains external sources which discuss the actor and the associated activities:

PreviousOverviewNext

Do you need the next level of professionalism?

Upgrade your account now!