misp-circl-feed/feeds/circl/misp/5ac8cee2-2a78-4237-88a0-d0b802de0b81.json

299 lines
612 KiB
JSON
Raw Normal View History

2023-04-21 13:25:09 +00:00
{
2023-12-14 14:30:15 +00:00
"Event": {
"analysis": "2",
"date": "2018-04-07",
"extends_uuid": "",
"info": "OSINT - Cisco IOS CVE-2018-0171 attack",
"publish_timestamp": "1523942198",
"published": true,
"threat_level_id": "2",
"timestamp": "1523942190",
"uuid": "5ac8cee2-2a78-4237-88a0-d0b802de0b81",
"Orgc": {
"name": "CIRCL",
"uuid": "55f6ea5e-2c60-40e5-964f-47a8950d210f"
},
"Tag": [
{
"colour": "#ffffff",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "tlp:white",
"relationship_type": ""
},
{
"colour": "#001585",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "estimative-language:likelihood-probability=\"roughly-even-chance\"",
"relationship_type": ""
},
{
"colour": "#0026eb",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "estimative-language:confidence-in-analytic-judgment=\"moderate\"",
"relationship_type": ""
},
{
"colour": "#0088cc",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "misp-galaxy:mitre-enterprise-attack-attack-pattern=\"Network Service Scanning\"",
"relationship_type": ""
},
{
"colour": "#00ffb3",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "cyber-threat-framework:Effect/Consequence=\"destroy-hardware-software-or-data\"",
"relationship_type": ""
}
],
"Attribute": [
{
"category": "External analysis",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1523199647",
"to_ids": false,
"type": "link",
"uuid": "5ac8cfbb-3bec-48aa-9dcb-f0ae02de0b81",
"value": "https://otx.alienvault.com/pulse/5ac8c6bca1061f185097cdc6",
"Tag": [
{
"colour": "#ffffff",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "OSINT",
"relationship_type": ""
},
{
"colour": "#002b4a",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "osint:source-type=\"technical-report\"",
"relationship_type": ""
}
]
},
{
"category": "Artifacts dropped",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1523261978",
"to_ids": false,
"type": "other",
"uuid": "5ac8d04e-0e90-4d58-8c6a-f0ad02de0b81",
"value": "cisco IOS config change",
"Tag": [
{
"colour": "#00ffb3",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "cyber-threat-framework:Effect/Consequence=\"destroy-hardware-software-or-data\"",
"relationship_type": ""
}
]
},
{
"category": "Payload delivery",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1523199898",
"to_ids": false,
"type": "email-src",
"uuid": "5ac8d0e1-d524-4f68-9262-f0c502de0b81",
"value": "usafreedom_jht@tutanota.com"
},
{
"category": "External analysis",
"comment": "Cisco IOS and IOS XE Software Smart Install Remote Code Execution Vulnerability",
"deleted": false,
"disable_correlation": false,
"timestamp": "1523199752",
"to_ids": false,
"type": "link",
"uuid": "5ac8d58c-8938-4a6a-a5f8-f0ae02de0b81",
"value": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-smi2",
"Tag": [
{
"colour": "#ffffff",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "OSINT",
"relationship_type": ""
},
{
"colour": "#002b4a",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "osint:source-type=\"technical-report\"",
"relationship_type": ""
},
{
"colour": "#001fc2",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "estimative-language:likelihood-probability=\"almost-certain\"",
"relationship_type": ""
}
]
},
{
"category": "External analysis",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1523111354",
"to_ids": false,
"type": "text",
"uuid": "5ac8d5ba-1d84-4fa5-8484-439002de0b81",
"value": "cisco-sa-20180328-smi2"
},
{
"category": "Payload delivery",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1523261877",
"to_ids": false,
"type": "vulnerability",
"uuid": "5ac8d65c-9ff0-40e6-b644-f0c502de0b81",
"value": "CVE-2018-0171",
"Tag": [
{
"colour": "#008960",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "cyber-threat-framework:Engagement=\"exploit-vulnerabilities\"",
"relationship_type": ""
}
]
},
{
"category": "External analysis",
"comment": "Attacked Router's Startup-Config Source: https://twitter.com/xnetua/status/982316233411325952",
"data": "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
"deleted": false,
"disable_correlation": false,
"timestamp": "1523199814",
"to_ids": false,
"type": "attachment",
"uuid": "5aca2f46-37b4-44b5-b112-623402de0b81",
"value": "startup-config.jpg"
},
{
"category": "Targeting data",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1523261737",
"to_ids": false,
"type": "target-location",
"uuid": "5aca2f5e-7d9c-407b-94d2-4a5502de0b81",
"value": "IR",
"Tag": [
{
"colour": "#001585",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "estimative-language:likelihood-probability=\"roughly-even-chance\"",
"relationship_type": ""
}
]
},
{
"category": "External analysis",
"comment": "Iranian & Russian Networks Attacked Using Cisco's CVE-2018-0171 Vulnerability",
"deleted": false,
"disable_correlation": false,
"timestamp": "1523199921",
"to_ids": false,
"type": "link",
"uuid": "5aca2fb1-7e5c-4dda-a3cb-446602de0b81",
"value": "https://www.bleepingcomputer.com/news/security/iranian-and-russian-networks-attacked-using-ciscos-cve-2018-0171-vulnerability/"
},
{
"category": "Targeting data",
"comment": "",
"deleted": false,
"disable_correlation": false,
"timestamp": "1523261771",
"to_ids": false,
"type": "target-location",
"uuid": "5acb213f-301c-49d6-a1e3-5233950d210f",
"value": "RU",
"Tag": [
{
"colour": "#001585",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "estimative-language:likelihood-probability=\"roughly-even-chance\"",
"relationship_type": ""
}
]
},
{
"category": "External analysis",
"comment": "",
"data": "JVBERi0xLjUNCiW1tbW1DQoxIDAgb2JqDQo8PC9UeXBlL0NhdGFsb2cvUGFnZXMgMiAwIFIvTGFuZyhlbi1VUykgL1N0cnVjdFRyZWVSb290IDI5IDAgUi9NYXJrSW5mbzw8L01hcmtlZCB0cnVlPj4+Pg0KZW5kb2JqDQoyIDAgb2JqDQo8PC9UeXBlL1BhZ2VzL0NvdW50IDEvS2lkc1sgMyAwIFJdID4+DQplbmRvYmoNCjMgMCBvYmoNCjw8L1R5cGUvUGFnZS9QYXJlbnQgMiAwIFIvUmVzb3VyY2VzPDwvRm9udDw8L0YxIDUgMCBSL0YyIDkgMCBSL0YzIDExIDAgUi9GNCAxMyAwIFIvRjUgMTggMCBSL0Y2IDIwIDAgUj4+L0V4dEdTdGF0ZTw8L0dTNyA3IDAgUi9HUzggOCAwIFI+Pi9YT2JqZWN0PDwvSW1hZ2UyNyAyNyAwIFI+Pi9Qcm9jU2V0Wy9QREYvVGV4dC9JbWFnZUIvSW1hZ2VDL0ltYWdlSV0gPj4vQW5ub3RzWyAyNSAwIFIgMjYgMCBSXSAvTWVkaWFCb3hbIDAgMCA1OTUuMzIgODQxLjkyXSAvQ29udGVudHMgNCAwIFIvR3JvdXA8PC9UeXBlL0dyb3VwL1MvVHJhbnNwYXJlbmN5L0NTL0RldmljZVJHQj4+L1RhYnMvUy9TdHJ1Y3RQYXJlbnRzIDA+Pg0KZW5kb2JqDQo0IDAgb2JqDQo8PC9GaWx0ZXIvRmxhdGVEZWNvZGUvTGVuZ3RoIDg4Njg+Pg0Kc3RyZWFtDQp4nMU9a3PbOJLfU5X/wNovJ23FNPEiiVQqdR7HmfXtzGQ29szWVuY+MLLs6EaxPJI82fz7QzcepESAZCTQu1WbsUgQ3WgA/UJ34/RsvV3cVrNt8urV6dl2W80+zW+SD6fXq4f/Pb3++jA//bm6W9xX28Xq/vTq8eMWHv1tXt3M169fJ9+9OU/+eP4sSzP4X1kWJMkSIUXKaFJykkqarOfPn/3zr8n982ffXT9/dvqWJISnGU+ub58/g9ZZQhKay5SSpCiLlCbXn1Wz76+K5G6jek6yNJfqH0Z4sr7DN2X7zfvvnz/7MLn+YcomP7+cisn30xM2eX9x8dP0f5Pr/3n+7EKB/sfzZxFQZYylWdFAtYWhB7FkF43k4sfzJDn9GUj+4/nlmyQ7/aG6v0sm8/uT77+bHkZX6kFWsDJlScHUC4ssIjgIKRIBKR8FiWqq0CnUm6KF1NkWZm6rprCa/b6Bv5Mpn6ym5eQ+Ob9U03t1/i6ZFpPNl4VqoxrTiVqw6s9NMqsep/lkMx9hyjOcci/CySgrjMgAuBsY9mb9+KBogKNfrNSg70fAQuZhLBb3ABpm5qay01Als/lUTu7VDz6ZK/TWMHub6IjxkqZ5aPn0rWkaZU3LVOa7S7pgqUxy9RnNWzi9B+rM4Z/buaJJrv++BzLNgETHLVjWxoaSPM1ECJ2Xah9dq+k5ex8dLudpGYR7Eh9c0QHu7bLaqKX5KTrUvEwL9nSDLEgHOJqR6Uk5KaNDlTTNyNMNUn1AgoPMYoNjWZaSwg8uOYHOZaHE5ezDhMSHTbKUBhftcWzcC46m4um2JCOiA9yxQsoDTnGA4Lp5A1uj2kZnr4wVaR6AisuHSoar52X86eTh6Rx95QoaHPaHyWl8cHnKQ5tU7V+Cw8x4dLh5nuYBuGqYNJueyAmJDrUUaTFoYsvjFhX3wJZo0fhH/CpjBX8de7SySGVQX4rOJrji9zQ4pb+CUkazyWahFOkVKGT3sWeXMxqk8MgcgytmpYytwNiVIRYdIJdpwQfObUs/ZxH0c69cIigoiiJVNvm3IsXHMRqKLC2polSuPmjhdKVM3V9+BENB/SMmZ8rUQjviX7E3B1HGAqcBLPooI8aZLksZrlhxew29uweKJMqSohN6JDv0AJdlKngQ+I8VzMJ69km7JhCHjJRqel5okxienC/Ub7A+Zit4wCcPYOw9wj8fleW1XGympbJM0E5WJjT8oT+s4D8CP4U3s0eAsl5sv+oRRzdltJbvH2ml8ComfyqmqNAtgDOqcX/VuEbX/0u05PyIzFb3YDXPwMuzxrlfxFfpWFrIEAJoqt/B1BA7Qx/dhN5O9f9hvtbwkmlSAeHw2a3ayUv1iLDJl6mdaHiLny/Vi0xDwNa4vLD3xXKhvoSpz81H4HVh8anPS54Gx95aylefwTcHInOy1bS4xDmBNtsKh7SMjqJlCIwDr2rhuFQ4LmB5IB23L/QiZZrguM8Ws0/qgZq+JU6FwDeAcnRUiVKTWQjT6h72FKJWoZ9MU2z2u9JBYuOhdKyShBCJP2wp0U/hB7dduSlZP8JquXe/9VLSK367RnJYLqPezlY32mNmfq+c6wx/bj/ptyTXv+ttda89azs7ajnHCacEZx5WwGILjJxoAPAwjc5Z1AdCPtk0gGYtgrN+hsxmNlutb5CN3uNWUJyN8eYU7ex5IifXsOOX+B6eGkHXID8HXy8h9TTpSXU/P6MLH+SHaYabYCQeQWH/tRYgYmq334ksJyQvXyho8ENoETx38m4GNp5eEpr5qva3dgy4vnAJWsFNFFGbCxOaX6GCgE+xWRO0QWZbt0YeVf05ZYZmdSuUvQbGNwqN+GtZkJSRAIXjL2XB0dfhhXamaYR61XrlSH3rqGd+Opo3lYgH3PIgvUhG6okF6S1lY1G3yO5jKnti2k3mBn7k0AbZi0IEPryfjrjyieqnLcGbuicMYl/5jC0IFBYiiEwKNM2zydXifhbdMUdYCTZnAHR8kcdpSkLQgLaaCy6/Rges9HYSJHH8ceZ5eJxnD9pEWb6AmS2osV0MJ633yjK6zUCzNA+iFd9EoUqiihC4XWVuMx3DRhIFhEgEENA8R80Ad3SH+RDSMSBu+E/0sxSCRzdPNA0sU7ZKEQK3QgJ8tIpKrZhYmjiJrQhjrSn8YZm+lhfwBNVDlLPL6DySSYq+7acimsxRboc51b8fQB9crhY6pMDpheo/xeT88gpOUiDuQi2lsqE8q98QfmGlotWWgHxXSLrPjguitFX282XswUGISxZk+vd2LWzRAK/Gs00F2FttlXuQ8qBs15PyyFAJH+OmRSqDmMWXEyzrAPcb7jFhWVPBGypz/WwNf6LGolWy7fzG7FL10u1Y9fe+H049cn646EfwSqNhT0ZGWrAOcOe/qiFeRIdZypQVIZgjnPfTILjd0y6c0xHOxPOnGyyciYfA7Q42I0X8g0Um4OQjMNjoe4VBwKF4sr3CVMswOGvVRTdMGRw/B4BWs5mG61wsDCVpwZyLxTG/hv9Ee47XWoxGP5LjgGkA4dpSqSW51ppG8Y9C+F6ZB6ln3SSWRMsbhxM8FTtSI7oqIcAF/lR7BTQXUj7ZXhGqZRickivKTIguWITIU/lkrNaqYhBM0SdW8ujnhkr7Kf3ARxiq5CnJQtByVgrYR79N43t3ipSVAbDRHY6ESFg9XmDx1VdKcX94oV1jKGmtqiozE22b5RxcxeBCrGZb54Zcj3OypFZYRgIIfrFHkLUjvgIB1Dj42Dq1Or7OyllKQzOFQg3wWy+0FYbYITY1Sc8XG0AXTxn55PLdVYKWKB423s0TE5dz0v5w80UfHc0+OR8+Ur9yx0zRzXeuGLcIrZT4ApNnKDC90LTI1lLzrp7lmjyzlTuugFW6uHtEUa8dVgvtFE9uF0tz9JCiST+ajaxMG+5x5m9x61Sz352sH2cDEQL+4QAW0T2UhDDwhAfA4UqFKdnGZ2Qc7XA/3BH4ZpGSELQqmebIKZ1/aGN2dHQ0iq7J1f6qTzqMRgJa0ZlzmfIgGX6BxKVkSjKc8WWlDIJy58hQ6vPW9dy4LZ3fCrFd1pv4DntpuN8+2Q6Q1F+cMo+tjfnxcqqb/EWh8WaFzOK/YOVBIlU9OcIBdNQiBf6uzz3X8BOao0iZbRf1IODjv0RnfhJzxQJkTYGMe6I5tgJLtLniRwBXdB1IoKlcW3X3o0RLWWaaE0jQ2kfpoyXFbPV5bgNzAK363Lo+J6gWywpWSK0lpCMcH2VoffrRdbNnj8Ml6AtGiGvH6X
"deleted": false,
"disable_correlation": false,
"timestamp": "1523430367",
"to_ids": false,
"type": "attachment",
"uuid": "5acdb395-d4d4-46fa-bd99-495902de0b81",
"value": "CITAR-Flash-2018-010-CISCO-Switches v1.0.pdf",
"Tag": [
{
"colour": "#002b4a",
2024-04-05 12:15:17 +00:00
"local": false,
2023-12-14 14:30:15 +00:00
"name": "osint:source-type=\"technical-report\"",
"relationship_type": ""
}
]
}
],
"Object": [
{
"comment": "",
"deleted": false,
"description": "Vulnerability object describing a common vulnerability enumeration which can describe unpublished, under review or embargo vulnerability for software, equipments or hardware.",
"meta-category": "network",
"name": "vulnerability",
"template_uuid": "81650945-f186-437b-8945-9f31715d32da",
"template_version": "4",
"timestamp": "1523941943",
"uuid": "5ad58237-d42c-405c-9d1e-41a3950d210f",
"Attribute": [
{
"category": "Other",
"comment": "",
"deleted": false,
"disable_correlation": true,
"object_relation": "state",
"timestamp": "1523941944",
"to_ids": false,
"type": "text",
"uuid": "5ad58238-3c1c-4d71-983a-4a03950d210f",
"value": "Published"
},
{
"category": "Other",
"comment": "",
"deleted": false,
"disable_correlation": false,
"object_relation": "summary",
"timestamp": "1523941944",
"to_ids": false,
"type": "text",
"uuid": "5ad58238-e6ec-4c98-bc94-454f950d210f",
"value": "A vulnerability in the Smart Install feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial of service (DoS) condition, or to execute arbitrary code on an affected device. The vulnerability is due to improper validation of packet data. An attacker could exploit this vulnerability by sending a crafted Smart Install message to an affected device on TCP port 4786. A successful exploit could allow the attacker to cause a buffer overflow on the affected device, which could have the following impacts: Triggering a reload of the device, Allowing the attacker to execute arbitrary code on the device, Causing an indefinite loop on the affected device that triggers a watchdog crash. Cisco Bug IDs: CSCvg76186."
},
{
"category": "External analysis",
"comment": "",
"deleted": false,
"disable_correlation": false,
"object_relation": "id",
"timestamp": "1523941944",
"to_ids": false,
2023-04-21 13:25:09 +00:00
"type": "vulnerability",
2023-12-14 14:30:15 +00:00
"uuid": "5ad58238-2488-4b5f-b47e-4814950d210f",
"value": "CVE-2018-0171"
}
]
}
2023-04-21 13:25:09 +00:00
]
2023-12-14 14:30:15 +00:00
}
2023-04-21 13:25:09 +00:00
}