Swaziland Unknown Analysis

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (9)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en8
de2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

us4
gb2
za2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

Emotet1
Qakbot1
QakBot1

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

Content Management System4
Not Defined4

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

Not Defined6
SourceCodester2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Django2
PhpMySms2
Django REST Framework2
SourceCodester Travel Management System2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemEPSSCTICVE
1Django Password Reset password recovery8.58.4$5k-$25k$0-$5kNot DefinedOfficial Fix0.197770.04CVE-2019-19844
2Django REST Framework DRF Browsable API cross site scripting4.84.7$0-$5k$0-$5kNot DefinedOfficial Fix0.000710.00CVE-2018-25045
3RealNetworks RealServer Port 7070 Service denial of service7.57.3$0-$5k$0-$5kNot DefinedWorkaround0.021160.11CVE-2000-0272
4NComputing vSpace Pro NC Monitor Server NcMonitorServer.exe path traversal6.46.1$0-$5k$0-$5kHighOfficial Fix0.035840.00CVE-2018-10201
5SourceCodester E-Commerce Website prodViewUpdate.php unrestricted upload6.36.1$0-$5k$0-$5kNot DefinedNot Defined0.005860.00CVE-2021-25207
6SourceCodester Travel Management System subcat.php sql injection6.36.1$0-$5k$0-$5kNot DefinedNot Defined0.001730.04CVE-2021-25213
7PhpMySms gateway.php file inclusion7.36.9$0-$5k$0-$5kProof-of-ConceptNot Defined0.100260.00CVE-2006-3300
8Maia Mailguard login.php path traversal5.34.8$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.020090.00CVE-2007-3619

IOC - Indicator of Compromise (27)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsIdentifiedTypeConfidence
141.77.232.0Swaziland Unknown05/26/2023verifiedHigh
241.84.224.0Swaziland Unknown05/26/2023verifiedHigh
341.204.0.0Swaziland Unknown05/26/2023verifiedHigh
441.211.32.041.211.32.0.rev.mtn.co.szSwaziland Unknown05/26/2023verifiedHigh
541.215.144.0Swaziland Unknown05/26/2023verifiedHigh
657.84.224.0Swaziland Unknown05/26/2023verifiedHigh
7XX.XX.XX.XXxxxxxxxx Xxxxxxx05/26/2023verifiedHigh
8XXX.XX.XXX.XXxxxxxxxx Xxxxxxx05/26/2023verifiedHigh
9XXX.XX.XXX.XXxxxxxxxx Xxxxxxx05/26/2023verifiedHigh
10XXX.XX.XXX.XXxxxxxxxx Xxxxxxx05/26/2023verifiedHigh
11XXX.XX.XX.XXxxxxxxxx Xxxxxxx05/26/2023verifiedHigh
12XXX.XXX.XX.XXXxxxxxxxx Xxxxxxx05/26/2023verifiedHigh
13XXX.XXX.XXX.XXxxxxxxxx Xxxxxxx05/26/2023verifiedHigh
14XXX.XXX.XX.XXxxxxxxxx Xxxxxxx05/26/2023verifiedHigh
15XXX.XXX.XX.XXxxxxxxxx Xxxxxxx05/26/2023verifiedHigh
16XXX.XXX.XX.XXxxxxxxxx Xxxxxxx05/26/2023verifiedHigh
17XXX.X.XXX.XXxxxxxxxx Xxxxxxx05/26/2023verifiedHigh
18XXX.XXX.XXX.XXxxxxxxxx Xxxxxxx05/26/2023verifiedHigh
19XXX.XX.XXX.XXxxxxxxxx Xxxxxxx05/26/2023verifiedHigh
20XXX.X.XXX.XXxxxxxxxx Xxxxxxx05/26/2023verifiedHigh
21XXX.XX.XXX.XXxxxxxxxx Xxxxxxx05/26/2023verifiedHigh
22XXX.XX.XXX.XXxxxxxxxx Xxxxxxx05/26/2023verifiedHigh
23XXX.XX.X.XXxxxxxxxx Xxxxxxx05/26/2023verifiedHigh
24XXX.XX.XX.XXxxxxxxxx Xxxxxxx05/26/2023verifiedHigh
25XXX.XX.X.XXxxxxxxxx Xxxxxxx05/26/2023verifiedHigh
26XXX.XXX.XX.XXxxxxxxxx Xxxxxxx05/26/2023verifiedHigh
27XXX.XX.XX.XXxxxxxxxx Xxxxxxx05/26/2023verifiedHigh

TTP - Tactics, Techniques, Procedures (5)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueClassVulnerabilitiesAccess VectorTypeConfidence
1T1006CAPEC-126CWE-22Path TraversalpredictiveHigh
2TXXXX.XXXCAPEC-209CWE-XXXxxxx Xxxx XxxxxxxxxpredictiveHigh
3TXXXXCAPEC-108CWE-XXXxx XxxxxxxxxpredictiveHigh
4TXXXXCAPEC-50CWE-XXXXxxxxxxxxxx XxxxxxxxxxpredictiveHigh
5TXXXX.XXXCAPEC-1CWE-XXXXxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx XxxxxxxxxpredictiveHigh

IOA - Indicator of Attack (9)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1Filegateway.phppredictiveMedium
2Filelogin.phppredictiveMedium
3Filexxxxxxxxxxxxxxx.xxxpredictiveHigh
4Filexxxxxxxxxxxxxx.xxxpredictiveHigh
5Filexxxxxx.xxxpredictiveMedium
6ArgumentxxxxxpredictiveLow
7ArgumentxxxxpredictiveLow
8Argumentxxxx_xxxxpredictiveMedium
9Network PortxxxxpredictiveLow

References (2)

The following list contains external sources which discuss the actor and the associated activities:

PreviousOverviewNext

Do you know our Splunk app?

Download it now for free!