ハニーポット観察日記としての定期アウトプットです。
観察期間:2019年 04月06日 00:00:00 - 2019年04月12日 23:59:59
CVE
| CVE | 検知した回数 | 前回比 |
|---|---|---|
| CVE-2003-0818 | 630 | +630 |
| CVE-2010-3055 | 10 | -8 |
| CVE-2005-4050 | 9 | 0 |
| CVE-2014-3120 | 3 | +2 |
| CVE-2014-0160 | 2 | -14 |
| CVE-2017-7269 | 2 | -3 |
| CVE-2008-4250 | 2 | +2 |
| CVE-2010-0569 | 2 | +2 |
| CVE-2014-3566 | 1 | +1 |
CVE-2003-0818が205も大量の検地が行われました。 www.cvedetails.com
攻撃種別
| 攻撃種別 | カウント数 | % | 前回カウント数 |
|---|---|---|---|
| known attacker | 63953 | 96.36% | 34833 |
| bad reputation | 2173 | 3.27% | 3499 |
| 合計 | 66369 | ||
| 平均(集計2018年11月〜) | 57020回 |
マルウェア
Cowrie
Total: 14
| File Name | Date | Type | Detection Rate |
|---|---|---|---|
| tmpPjmzgx | 2019/04/06 03:31:08 | ELF 32-bit LSB executable | 39/56 |
| tmpfzJmjZ | 2019/04/07 19:52:18 | ELF 32-bit LSB executable | 37/60 |
| tmpLoP3La | 2019/04/09 03:30:56 | ELF 32-bit LSB executable | 40/59 |
| tmpMw5Kzv | 2019/04/09 06:42:05 | empty | 0/59 |
| f8c28666f... | 2019/04/09 06:42:36 | ASCII text | 0/57 |
| cd9728c21... | 2019/04/09 06:43:05 | ELF 32-bit LSB executable | 32/56 |
| bb530b115... | 2019/04/09 06:43:44 | ELF 32-bit LSB executable | 20/60 |
| tmp1SxjAb | 2019/04/09 13:16:57 | ELF 32-bit LSB executable | 40/59 |
| 3f6d2a1c4... | 2019/04/09 20:16:20 | Bourne-Again shell script | 16/54 |
| 20190409-... | 2019/04/09 20:16:20 | empty | 0/57 |
| 13f85ac5f... | 2019/04/09 20:16:21 | ELF 64-bit LSB executable | 18/60 |
| tmpgpTsrK | 2019/04/10 03:32:36 | ELF 32-bit LSB executable | 41/59 |
| tmpo3rGGB | 2019/04/10 19:57:51 | ELF 32-bit LSB executable | 41/59 |
| b33b30c3c... | 2019/04/10 20:38:36 | Bourne-Again shell script executable (binary data) | 28/55 |
Dionaea
Total: 59
| File Name | Date | Type | Detection Rate |
|---|---|---|---|
| ce223b231... | 2019/04/06 01:17:28 | PE32 executable (DLL) (GUI) Intel 80386 | 57/64 |
| ac0c78b07... | 2019/04/06 01:28:01 | PE32 executable (DLL) (GUI) Intel 80386 | 61/70 |
| a48ca7b40... | 2019/04/06 02:09:34 | PE32 executable (DLL) (GUI) Intel 80386 | 55/68 |
| 6e72ad805... | 2019/04/06 04:29:50 | PE32 executable (DLL) (GUI) Intel 80386 | 59/66 |
| d3891f56a... | 2019/04/06 06:05:30 | PE32 executable (DLL) (GUI) Intel 80386 | 59/66 |
| f6740d11f... | 2019/04/06 07:31:29 | PE32 executable (DLL) (GUI) Intel 80386 | 58/68 |
| 33d373e26... | 2019/04/06 07:51:38 | PE32 executable (DLL) (GUI) Intel 80386 | 61/68 |
| 1afe2241e... | 2019/04/06 08:21:22 | PE32 executable (DLL) (GUI) Intel 80386 | 63/70 |
| 46db9ef54... | 2019/04/06 10:41:49 | PE32 executable (DLL) (GUI) Intel 80386 | 58/69 |
| 2ed7fcc93... | 2019/04/06 13:16:59 | PE32 executable (DLL) (GUI) Intel 80386 | 52/63 |
| 8c3ac09b9... | 2019/04/06 14:00:19 | PE32 executable (DLL) (GUI) Intel 80386 | 60/67 |
| 95ae8e32e... | 2019/04/06 14:00:27 | PE32 executable (DLL) (GUI) Intel 80386 | 59/66 |
| cd99e5e4f... | 2019/04/06 14:32:19 | PE32 executable (DLL) (GUI) Intel 80386 | 58/65 |
| 0f0e3e6da... | 2019/04/06 14:47:14 | PE32 executable (DLL) (GUI) Intel 80386 | 59/70 |
| 24899e33d... | 2019/04/06 20:58:12 | PE32 executable (DLL) (GUI) Intel 80386 | 52/67 |
| e8feae1b8... | 2019/04/06 21:16:54 | PE32 executable (DLL) (GUI) Intel 80386 | 56/71 |
| 9789106a0... | 2019/04/06 22:08:04 | PE32 executable (DLL) (GUI) Intel 80386 | 60/70 |
| 1cf9eb370... | 2019/04/07 00:32:53 | PE32 executable (DLL) (GUI) Intel 80386 | 60/69 |
| 4f53357da... | 2019/04/07 01:50:51 | PE32 executable (DLL) (GUI) Intel 80386 | 63/71 |
| be9bdee97... | 2019/04/07 11:28:06 | PE32 executable (DLL) (GUI) Intel 80386 | 61/69 |
| aa718a028... | 2019/04/07 12:55:33 | PE32 executable (DLL) (GUI) Intel 80386 | 64/71 |
| ae7fa92c8... | 2019/04/07 15:39:58 | PE32 executable (DLL) (GUI) Intel 80386 | 58/67 |
| 8b88b25cf... | 2019/04/07 17:45:24 | PE32 executable (DLL) (GUI) Intel 80386 | 49/66 |
| dbff8fcc3... | 2019/04/07 21:34:05 | PE32 executable (DLL) (GUI) Intel 80386 | 63/71 |
| 7823636f9... | 2019/04/07 22:28:57 | PE32 executable (DLL) (GUI) Intel 80386 | 62/71 |
| 7e6be27b0... | 2019/04/07 23:07:19 | PE32 executable (DLL) (GUI) Intel 80386 | 56/66 |
| a0d2b1000... | 2019/04/08 01:59:56 | PE32 executable (DLL) (GUI) Intel 80386 | 52/62 |
| 4d2750db1... | 2019/04/08 05:41:43 | PE32 executable (DLL) (GUI) Intel 80386 | 57/66 |
| 84c9cedb3... | 2019/04/08 09:42:17 | PE32 executable (DLL) (GUI) Intel 80386 | 57/67 |
| dc39340c4... | 2019/04/08 10:05:52 | PE32 executable (DLL) (GUI) Intel 80386 | 60/69 |
| f361db5db... | 2019/04/08 10:20:09 | PE32 executable (DLL) (GUI) Intel 80386 | 57/65 |
| 5265fc314... | 2019/04/08 10:29:48 | PE32 executable (DLL) (GUI) Intel 80386 | 57/66 |
| c4b2a6c65... | 2019/04/08 19:53:48 | PE32 executable (DLL) (GUI) Intel 80386 | 59/68 |
| 59b5090fa... | 2019/04/08 20:17:44 | PE32 executable (DLL) (GUI) Intel 80386 | 59/67 |
| 460d95455... | 2019/04/08 20:46:50 | PE32 executable (DLL) (GUI) Intel 80386 | 48/69 |
| 78eae7fce... | 2019/04/08 21:38:56 | PE32 executable (DLL) (GUI) Intel 80386 | 58/66 |
| 77b6ceac2... | 2019/04/08 22:11:24 | PE32 executable (DLL) (GUI) Intel 80386 | 58/66 |
| ed03cfcc8... | 2019/04/08 23:17:41 | PE32 executable (DLL) (GUI) Intel 80386 | 58/65 |
| 6d0270440... | 2019/04/09 04:23:54 | PE32 executable (DLL) (GUI) Intel 80386 | 58/66 |
| b02aa3805... | 2019/04/09 04:55:24 | PE32 executable (DLL) (GUI) Intel 80386 | 54/64 |
| 4afaacf62... | 2019/04/09 06:57:54 | PE32 executable (DLL) (GUI) Intel 80386 | 54/63 |
| b88cc22e7... | 2019/04/09 10:43:21 | PE32 executable (DLL) (GUI) Intel 80386 | 54/64 |
| e21988022... | 2019/04/09 11:29:46 | PE32 executable (DLL) (GUI) Intel 80386 | 59/69 |
| e4c553cab... | 2019/04/09 12:47:21 | PE32 executable (DLL) (GUI) Intel 80386 | 57/66 |
| 3553aeb71... | 2019/04/09 12:56:46 | PE32 executable (DLL) (GUI) Intel 80386 | 61/69 |
| f9a03a7d8... | 2019/04/09 13:24:46 | PE32 executable (DLL) (GUI) Intel 80386 | 54/64 |
| 54dd9593f... | 2019/04/09 14:41:35 | PE32 executable (DLL) (GUI) Intel 80386 | 63/71 |
| 005fa5b54... | 2019/04/09 15:13:45 | PE32 executable (DLL) (GUI) Intel 80386 | 57/66 |
| 76ee7e319... | 2019/04/09 20:17:43 | PE32 executable (DLL) (GUI) Intel 80386 | 58/67 |
| 4eaed7bb8... | 2019/04/10 02:12:57 | PE32 executable (DLL) (GUI) Intel 80386 | 54/67 |
| ca9fc4bdb... | 2019/04/10 05:30:45 | PE32 executable (DLL) (GUI) Intel 80386 | 40/68 |
| 3162139f5... | 2019/04/10 06:26:54 | PE32 executable (DLL) (GUI) Intel 80386 | 59/69 |
| 5203fba68... | 2019/04/10 12:33:12 | PE32 executable (DLL) (GUI) Intel 80386 | - |
| bff0aa659... | 2019/04/10 14:36:33 | PE32 executable (DLL) (GUI) Intel 80386 | 59/69 |
| 386f93106... | 2019/04/10 14:59:59 | PE32 executable (DLL) (GUI) Intel 80386 | 58/67 |
| f2ca20d34... | 2019/04/10 15:46:27 | PE32 executable (DLL) (GUI) Intel 80386 | 57/68 |
| 06a935e7f... | 2019/04/10 16:28:05 | PE32 executable (DLL) (GUI) Intel 80386 | 59/66 |
| f418da2e3... | 2019/04/10 17:53:26 | PE32 executable (DLL) (GUI) Intel 80386 | 56/62 |
| 99cd95db9... | 2019/04/11 02:34:58 | PE32 executable (DLL) (GUI) Intel 80386 | 57/66 |
所感
crontabの設定難しい・・・
