公開情報により攻撃動向の予測を行う 新たな試みと調査手法の共有
Common Information
| Type | Value |
|---|---|
| UUID | db6a7b66-0635-4927-8c8c-9f46e15e1182 |
| Fingerprint | d1913c976797cc32a034abd180c75eea9630b54046ef30bea4c50418bfea9104 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Jan. 16, 2023, 10:51 a.m. |
| Added to db | March 12, 2024, 8:05 p.m. |
| Last updated | Aug. 31, 2024, 5:25 a.m. |
| Headline | 公開情報により攻撃動向の予測を行う 新たな試みと調査手法の共有 |
| Title | 公開情報により攻撃動向の予測を行う 新たな試みと調査手法の共有 |
| Detected Hints/Tags/Attributes | 129/4/77 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://jsac.jpcert.or.jp/archive/2023/pdf/JSAC2023_1_7_sejiyama_jp.pdf |
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 62 | cve-2022-40684 |
|
| Details | CVE | 105 | cve-2022-41040 |
|
| Details | CVE | 127 | cve-2022-41082 |
|
| Details | CVE | 71 | cve-2020-0688 |
|
| Details | CVE | 17 | cve-2022-27510 |
|
| Details | Domain | 4 | darktracer.com |
|
| Details | Domain | 2 | assets.extrahop.com |
|
| Details | Domain | 98 | www.secureworks.com |
|
| Details | Domain | 604 | www.trendmicro.com |
|
| Details | Domain | 15 | www.npa.go.jp |
|
| Details | Domain | 16 | www.coveware.com |
|
| Details | Domain | 5 | unit42.paloaltonetworks.jp |
|
| Details | Domain | 71 | news.sophos.com |
|
| Details | Domain | 41 | arcticwolf.com |
|
| Details | Domain | 101 | www.group-ib.com |
|
| Details | Domain | 124 | www.ibm.com |
|
| Details | Domain | 11 | media.kaspersky.com |
|
| Details | Domain | 469 | www.cisa.gov |
|
| Details | Domain | 144 | www.fortinet.com |
|
| Details | Domain | 88 | securityintelligence.com |
|
| Details | Domain | 67 | www.tenable.com |
|
| Details | Domain | 65 | www.cert.ssi.gouv.fr |
|
| Details | Domain | 47 | go.recordedfuture.com |
|
| Details | Domain | 1373 | twitter.com |
|
| Details | Domain | 7 | www.nisc.go.jp |
|
| Details | Domain | 167 | www.ic3.gov |
|
| Details | Domain | 32 | www.qnap.com |
|
| Details | Domain | 2 | xoxo.darktracer.com |
|
| Details | Domain | 58 | www.shodan.io |
|
| Details | Domain | 3 | macnica.co.jp |
|
| Details | Domain | 4127 | github.com |
|
| Details | Domain | 11 | viewdns.info |
|
| Details | Domain | 24 | blog.fox-it.com |
|
| Details | Domain | 6 | gist.githubusercontent.com |
|
| Details | File | 2 | cyber-confidence-index-apac.pdf |
|
| Details | File | 1 | fortinet.html |
|
| Details | File | 1 | usei.pdf |
|
| Details | File | 1 | spersky_iranalystreport2020-pr-1056.pdf |
|
| Details | File | 3 | 2022.html |
|
| Details | File | 141 | www.cer |
|
| Details | File | 1 | rama-menace-anssi.pdf |
|
| Details | File | 2 | cta-2022-0210.pdf |
|
| Details | File | 2 | ransomware20210430.pdf |
|
| Details | File | 2 | log4shell-vulnerability-in-vmware-leads-to-data-exfiltration-and-ransomware.html |
|
| Details | File | 3 | 220318.pdf |
|
| Details | File | 27 | tls.cer |
|
| Details | File | 10 | viewdns.inf |
|
| Details | File | 1 | pulse_vuln_matrix.csv |
|
| Details | File | 25 | http.html |
|
| Details | Github username | 13 | owasp |
|
| Details | Github username | 2 | lz- |
|
| Details | md5 | 2 | 856ab8f2b68c2504d036ce34fdf3965d |
|
| Details | Threat Actor Identifier - APT | 144 | APT38 |
|
| Details | Url | 3 | https://darktracer.com |
|
| Details | Url | 2 | https://assets.extrahop.com/pdfs/industry-reports/cyber-confidence-index-apac.pdf |
|
| Details | Url | 1 | https://www.secureworks.com/resources/r |
|
| Details | Url | 1 | https://www.trendmicro.com/ja_jp/researc |
|
| Details | Url | 1 | https://www.npa.go.jp/publications/statist |
|
| Details | Url | 1 | https://www.coveware.com/blog/2022/7/2 |
|
| Details | Url | 1 | https://unit42.paloaltonetworks.jp/incident |
|
| Details | Url | 2 | https://news.sophos.com/en- |
|
| Details | Url | 1 | https://arcticwolf.com/resources/blog/q1- |
|
| Details | Url | 1 | https://www.group-ib.com/media- |
|
| Details | Url | 1 | https://www.ibm.com/reports/threat- |
|
| Details | Url | 1 | https://media.kaspersky.com/jp/pdf/pr/ka |
|
| Details | Url | 1 | https://www.coveware.com/blog/ransomw |
|
| Details | Url | 2 | https://www.trendmicro.com/en_us/research/22/g/log4shell-vulnerability-in-vmware-leads-to-data-exfiltration-and-ransomware.html |
|
| Details | Url | 3 | https://www.ic3.gov/media/news/2022/220318.pdf |
|
| Details | Url | 2 | https://www.qnap.com/en-me/security-news/2022/take-immediate-actions- |
|
| Details | Url | 2 | https://www.qnap.com/ja-jp/security-advisory/qsa-22-19 |
|
| Details | Url | 2 | https://xoxo.darktracer.com |
|
| Details | Url | 2 | https://www.shodan.io/dashboard |
|
| Details | Url | 2 | https://www.shodan.io/search/facet |
|
| Details | Url | 14 | https://www.shodan.io |
|
| Details | Url | 3 | https://github.com/owasp/amass |
|
| Details | Url | 2 | https://blog.fox-it.com/2022/12/28/cve-2022-27510-cve- |
|
| Details | Url | 2 | https://gist.githubusercontent.com/lz- |