0attributed CVEs
46ATT&CK techniques
0.0IDF score (tooling uniqueness)
0exclusive CVEs
—years active
About this actor
[C0015](https://attack.mitre.org/campaigns/C0015) was a ransomware intrusion during which the unidentified attackers used [Bazar](https://attack.mitre.org/software/S0534), [Cobalt Strike](https://attack.mitre.org/software/S0154), and [Conti](https://attack.mitre.org/software/S0575), along with other tools, over a 5 day period. Security researchers assessed the actors likely used the widely-circulated [Conti](https://attack.mitre.org/software/S0575) ransomware playbook based on the observed pattern of activity and operator errors.(Citation: DFIR Conti Bazar Nov 2021)
Source: MITRE ATT&CK
Activity timeline
No activity events recorded.
Profile
| CVE | Risk | CVSS | EPSS | Published | Products |
|---|---|---|---|---|---|
| No attributed CVEs. | |||||
T1005T1016T1018T1021T1021.001T1027T1030T1036T1039T1047T1055T1055.001T1057T1059T1059.003T1059.005T1059.007T1069T1069.001T1069.002T1074T1074.001T1083T1105T1124T1135T1204T1204.002T1218T1218.005T1218.010T1218.011T1219T1219.002T1482T1486T1553T1553.002T1566T1566.001T1567T1567.002T1570T1588T1588.001T1588.002
Mitigating controls (NIST 800-53)
| Control | Techniques covered | Coverage |
|---|---|---|
SI-4 | 28 / 46 | 61% |
CM-6 | 23 / 46 | 50% |
CM-2 | 22 / 46 | 48% |
SI-3 | 22 / 46 | 48% |
CM-7 | 18 / 46 | 39% |
AC-3 | 17 / 46 | 37% |
CA-7 | 16 / 46 | 35% |
SI-7 | 16 / 46 | 35% |
AC-6 | 15 / 46 | 33% |
SC-7 | 15 / 46 | 33% |
SI-10 | 14 / 46 | 30% |
AC-2 | 13 / 46 | 28% |
AC-4 | 13 / 46 | 28% |
SI-2 | 10 / 46 | 22% |
RA-5 | 9 / 46 | 20% |
Co-occurring actors
None.