ioc[.]one - OSINT Cyber Threat Intelligence Database

Realtek SDK Vulnerability Attacks Highlight IoT Supply Chain Threats

Tags

country:	Australia Canada Netherlands Germany France Luxembourg India Saint Kitts And Nevis Kenya Singapore Vietnam United States Of America
maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Model Models Botnet - T1583.005 Botnet - T1584.005 Dns - T1071.004 Dns - T1590.002 Domains - T1583.001 Domains - T1584.001 Firmware - T1592.003 Ip Addresses - T1590.005 Malware - T1587.001 Malware - T1588.001 Network Devices - T1584.008 Server - T1583.004 Server - T1584.004 Software - T1592.002 Vulnerabilities - T1588.006 Connection Proxy - T1090 Denial Of Service

Show in Graph

Common Information

Type	Value
UUID	1df394ec-0e1f-46d8-b0b7-a2f9c9a9d1af
Fingerprint	c0b4885589138b83
Analysis status	DONE
Considered CTI value	2
Text language
Published	Jan. 24, 2023, 2 p.m.
Added to db	June 1, 2023, 10:59 a.m.
Last updated	Sept. 4, 2024, 7:08 p.m.
Headline	Realtek SDK Vulnerability Attacks Highlight IoT Supply Chain Threats
Title	Realtek SDK Vulnerability Attacks Highlight IoT Supply Chain Threats
Detected Hints/Tags/Attributes	76/3/113

Source URLs

	Redirection	Url
Details	Source	https://unit42.paloaltonetworks.com/realtek-sdk-vulnerability/
Details	Source	https://unit42.paloaltonetworks.com/realtek-sdk-vulnerability/#post-126726-_f37quwequ6r

URL Provider

Details	Provider	Source level domain
Details	paloaltonetworks.com	unit42.paloaltonetworks.com

Attributes

Details	Type	#Events	Value
Details	CVE	25	cve-2021-35394
Details	Domain	1	vendors.in
Details	Domain	1	znet.sh
Details	Domain	1	billy.sh
Details	sha256	1	26e96945ee32199536d4c85124a24c28e853b557eb31f3907d19f08b9798dff4
Details	sha256	1	1967370203138b9324f11c5cb3fd15ac8d2f0c585373486614600b676a4e2641
Details	sha256	1	78953c71318fb93fa90607039bceb48f2746a8abfa3a9a8914c8fdc48ebf55df
Details	sha256	1	57d39a6a88093c9e1fbc1626105d714be92680bdf666279b7663bcaaf7fa7e6e
Details	sha256	1	78b55d3f1b34f1154a28ce4fc855252bc3104a07944053facf6acce9195b2e77
Details	sha256	1	81e581ed06515af959c8477442243f20baa77c0e54a1054542900936c6e81ff5
Details	sha256	1	ab3de77616b4d85f032a226da6c3629de4a8f1c1b4d32674c1bed30afb9419e1
Details	sha256	1	a877b4e71c8f2f4ab6915cbe8c57c82ac12331e183f7cbda2de4dc3780a50379
Details	sha256	1	5e647d4991f9d339e6e83cee6168915e1e2c9fac0cddc53d3083cbc96a278035
Details	sha256	1	6bca8cf5e48e819179f8473e4e600da2c1ef00802bf1744885dcb5ad56618943
Details	sha256	1	bc03af5c06a7ff6774688e8d71f6d06e0d402f4f86d5b23969bc53d5eab3e522
Details	sha256	1	67f73e1efa3c3a05e896567dfb2cef56e9b5eb33283a13e5934900030357e7e6
Details	sha256	1	ebfedbcf428215d34d8f876fb9c5658048dbb4c5607f328ae155bf26a292b38d
Details	sha256	1	e0fd14114737e4a599f0769683de4faf54cefae1cc106d9f475aa23bdbf5a753
Details	sha256	1	5967a4889b54b97adbb6b949ffd590fa416599326eb3432f40fa142aab1df795
Details	sha256	1	ff8a1abcd4fa94ffc0f1f43a92f816e6bd08272ec54d748cf004c3ef1323d5d9
Details	sha256	1	080a64d595ff246d01b920d5010cffcb4ac56f224acdec32ee3eab08099c6a7b
Details	sha256	1	e1d3adcb85298a08973b7ae6702cc4830d20ebde98e2eac85179c1bbba3ef7ac
Details	sha256	1	edec8e8d4c2ec0c489e4c5dbb89994c223f29e8d4470825bd488bf1a44e42751
Details	sha256	1	28d6dce95ffb8186ac8c611dee0681cca028bbf93365e4f0c7c67c235d3034a3
Details	sha256	1	97878c28d915e2b56e7c06436d209a9198eb0c50bdfb1fd4602e9e95b5eb4321
Details	sha256	1	637dc2a8baf2a46ffe872aedc823ab766b4a9fbab129b2c7dc9513ba8ee712bc
Details	sha256	1	0d2c3120464184610ac939c34e5309968bd7b81255708307d545d742f3468930
Details	sha256	1	f3a3e90ea713215a4d30f0f142d6ef0f1ed72b246ee297b8bba64921dbf4300c
Details	sha256	1	3f8b5887ae0ef8b51845bf0f2996c4f9891cdc0724b7d0ccc3dbc1b4cdae11a2
Details	sha256	1	1a70ceb57768d3e027e307abd09548f151a8d6da72532f1b88e9813eaf0bdad2
Details	sha256	1	2ef3040947c9d51317e103457a6613ac9297cb610b3691ef6d440f15cb36a9ed
Details	sha256	1	9b7eb2cf51d806076e1662ca4ad800c1de421234c19fbea44b56eb47cc616fd8
Details	IPv4	1	185.216.71.157
Details	IPv4	2	185.246.221.220
Details	IPv4	1	199.195.251.190
Details	IPv4	1	172.81.41.196
Details	IPv4	1	103.149.137.124
Details	IPv4	1	103.149.137.138
Details	IPv4	1	46.249.32.181
Details	IPv4	1	37.44.238.148
Details	IPv4	1	37.44.238.185
Details	IPv4	1	37.44.238.217
Details	IPv4	1	69.67.150.36
Details	IPv4	1	37.44.238.144
Details	IPv4	1	103.149.137.192
Details	IPv4	1	185.122.204.30
Details	IPv4	2	185.205.12.157
Details	IPv4	1	135.148.104.21
Details	IPv4	1	37.44.238.178
Details	IPv4	1	176.97.210.135
Details	IPv4	1	198.98.56.129
Details	IPv4	1	141.98.6.249
Details	IPv4	1	45.140.141.205
Details	IPv4	1	45.125.236.14
Details	IPv4	1	173.247.227.66
Details	IPv4	1	173.247.227.70
Details	IPv4	1	45.95.55.188
Details	IPv4	1	2.58.113.79
Details	IPv4	2	45.95.55.24
Details	IPv4	1	45.95.55.218
Details	IPv4	1	45.95.55.189
Details	IPv4	1	193.142.146.35
Details	IPv4	2	37.139.129.11
Details	IPv4	1	78.135.85.70
Details	IPv4	1	45.137.21.166
Details	IPv4	1	195.178.120.183
Details	IPv4	1	195.133.81.29
Details	IPv4	1	5.253.246.67
Details	IPv4	1	45.61.184.133
Details	IPv4	1	45.61.184.118
Details	IPv4	1	149.5.173.33
Details	IPv4	1	163.123.143.226
Details	IPv4	1	45.61.188.148
Details	IPv4	1	103.207.38.165
Details	IPv4	1	45.13.227.115
Details	IPv4	1	176.97.210.147
Details	IPv4	1	163.123.143.200
Details	IPv4	1	185.44.81.62
Details	IPv4	1	38.22.109.7
Details	IPv4	1	147.182.132.144
Details	IPv4	1	205.185.126.88
Details	IPv4	1	209.141.51.43
Details	IPv4	1	198.98.52.213
Details	IPv4	1	45.95.55.185
Details	IPv4	1	20.249.89.181
Details	IPv4	1	3.235.28.168
Details	Url	1	http://185.216.71.157/bins_bot_hicore_amd64
Details	Url	1	http://185.216.71.157/bins_bot_hicore_arm64
Details	Url	1	http://185.216.71.157/bins_bot_hicore_arm
Details	Url	1	http://185.216.71.157/bins_bot_hicore_mips
Details	Url	1	http://185.216.71.157/bins_bot_hicore_mips64
Details	Url	1	http://185.216.71.157/bins_bot_hicore_ppc64
Details	Url	1	http://185.216.71.157/bins_bot_hicore_ppc64le
Details	Url	1	http://185.216.71.157/bins_bot_hicore_s390x
Details	Url	1	http://185.216.71.157/bins_bot_hicore_mipsle
Details	Url	1	http://185.216.71.157/bins_bot_hicore_mips64le
Details	Url	1	http://185.246.221.220/bins_bot_hicore_s390x
Details	Url	1	http://185.246.221.220/bins_bot_hicore_ppc64le
Details	Url	1	http://185.246.221.220/bins_bot_hicore_ppc64
Details	Url	1	http://185.246.221.220/bins_bot_hicore_mipsle
Details	Url	1	http://185.246.221.220/bins_bot_hicore_mips
Details	Url	1	http://185.246.221.220/bins_bot_hicore_arm64
Details	Url	1	http://185.246.221.220/bins_bot_hicore_arm
Details	Url	1	http://185.246.221.220/bins_bot_hicore_amd64
Details	Url	1	http://185.205.12.157/trc/trc.mpsl
Details	Url	1	http://172.81.41.196/trc/trc.mpsl
Details	Url	1	http://135.148.104.21/mipsel
Details	Url	1	http://199.195.251.190/trc/trc.mpsl
Details	Url	1	http://37.44.238.178/d/xd.mpsl
Details	Url	1	http://176.97.210.135/assailant.mpsl
Details	Url	1	http://198.98.56.129/trc/trc.mpsl
Details	Url	1	http://141.98.6.249/billy.sh
Details	Url	1	http://45.140.141.205/bins/sora.mpsl