ioc[.]one - OSINT Cyber Threat Intelligence Database

Attacks Continue Against Realtek Vulnerabilities | Official Juniper Networks Blogs

Tags

attack-pattern:

Botnet - T1583.005 Botnet - T1584.005 Cron - T1053.003 Dns Server - T1583.002 Dns Server - T1584.002 Firmware - T1592.003 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Vulnerabilities - T1588.006

Show in Graph

Common Information

Type	Value
UUID	f866e190-d9e2-4ed5-b127-326d4832cbfd
Fingerprint	94e90cc12d5df38e
Analysis status	DONE
Considered CTI value	2
Text language
Published	Sept. 2, 2021, 9:11 p.m.
Added to db	Sept. 26, 2022, 9:30 a.m.
Last updated	Sept. 4, 2024, 11:50 p.m.
Headline	Attacks Continue Against Realtek Vulnerabilities
Title	Attacks Continue Against Realtek Vulnerabilities \| Official Juniper Networks Blogs
Detected Hints/Tags/Attributes	31/1/36

Source URLs

	Redirection	Url
Details	Source	https://blogs.juniper.net/en-us/threat-research/attacks-continue-against-realtek-vulnerabilities

URL Provider

Details	Provider	Source level domain
Details	juniper.net	blogs.juniper.net

Attributes

Details	Type	#Events	Value
Details	CVE	11	cve-2021-35395
Details	Domain	6	lolol.sh
Details	sha256	1	26a79029381745c4a9fce656f49d84ca058c132cc228316b359a36f6a505b057
Details	sha256	1	0473ad0259470808a1647ab093f735d8ba2e2b38161c6cc01018505079f850db
Details	sha256	1	1a4077a5babf5eb892e573334a260d7457871ff608ee5755bee706acf14c2148
Details	sha256	1	c481c8ae614abb2c7bf0ffd8094dabb6edc22c9146854ce1ee937ff6f9b3caf4
Details	sha256	1	d7c66e79fe334f528efb926f4eb9494ac915a83964d11c2d5bad5407e4b483fa
Details	sha256	1	171b3c4c6bc55c1e267929962105bd77d62e647b4c7beb56d0a61c23a129d9f3
Details	sha256	1	3bd4a60d5614e77b2f0c08d27f184d698097c84368e377a4c5376f99a735dcf0
Details	sha256	1	c1064e2b8be2015d06d11492d25931e8739028bdb89c8f0510b04278aa1b944b
Details	sha256	1	f76d017a46373a16338dc55d1468e126850fdea5800dcf7f9800b25dd43ad84b
Details	sha256	1	eb9e47d6c312374a4d00b96cc9b0df3fa5f62d5aad3c892a44c62e34e464f7a3
Details	sha256	1	9793ac5afd1be5ec55476d2c205260d1b7af6db7cc29a9dc0f7fbee68a177c78
Details	sha256	1	0018e361be72a44b7b38bbecfede8d571418e56d4d62a8e186991bef322a0c16
Details	sha256	1	171961046ee6d18424cf466ad7e01096aecf48ed602d8725e6563ad8c61f1115
Details	sha256	1	924b6aec8aa5935e27673ee96d43dd0d1b60f044383b558e3f66cd4331f17ef4
Details	sha256	1	98fc6b2cbd04362dc10a5445c00c23c2a2cb39d24d91beab3c200f87bfd889ab
Details	sha256	1	9bdb7d4778261bb34df931b41d32ee9188d0c7a7e10d4d68d56f6faebd047fe4
Details	sha256	1	2b57648fe6a75b589517cac9c515e0e6739c4aa39bfe7b3e81e2460b60edecd4
Details	IPv4	1	37.0.11.132
Details	IPv4	1	188.166.196.89
Details	IPv4	11	185.121.177.177
Details	IPv4	4	212.192.241.87
Details	IPv4	5	212.192.241.72
Details	IPv4	1	103.113.143.232
Details	IPv4	1	103.142.18.38
Details	IPv4	1	103.142.18.60
Details	IPv4	1	103.242.224.152
Details	IPv4	1	103.242.224.164
Details	IPv4	1	103.242.224.179
Details	IPv4	1	117.210.156.253
Details	IPv4	1	122.169.57.70
Details	IPv4	1	185.222.59.10
Details	IPv4	4	31.210.20.100
Details	Url	1	http://37.0.11.132/rh
Details	Url	2	http://212.192.241.87/lolol.sh