Atomic Stealer Analysisinfo

IOB - Indicator of Behavior (313)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en226
ru58
de8
fr6
es4

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Campcodes Complete Web-Based School Management Sys ...4
Microsoft Windows4
Devilz Clanportal4
Unisoc T6104
Unisoc T6064

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemEPSSCTICVE
1Apple Mac OS X Server Wiki Server sql injection5.34.6$5k-$25k$0-$5kUnprovenOfficial Fix0.003390.39CVE-2015-5911
2Indexu suggest_category.php cross site scripting3.53.5$0-$5k$0-$5kNot DefinedNot Defined0.000000.04
3LogicBoard CMS away.php redirect6.36.1$0-$5k$0-$5kNot DefinedUnavailable0.000000.98
4DZCP deV!L`z Clanportal config.php code injection7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.021950.47CVE-2010-0966
5DZCP deV!L`z Clanportal browser.php information disclosure5.35.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.027330.51CVE-2007-1167
6Campcodes Online Laundry Management System HTTP Request Parameter manage_user.php resource injection6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined0.000450.04CVE-2024-4817
7Joomla CMS com_easyblog sql injection6.36.1$5k-$25k$5k-$25kNot DefinedNot Defined0.000000.31
8Campcodes Complete Web-Based School Management System emarks_range_grade_update_form.php cross site scripting3.53.3$0-$5k$0-$5kProof-of-ConceptNot Defined0.000450.04CVE-2024-4686
9PHP Link Directory Administration Page index.html cross site scripting4.34.3$0-$5k$0-$5kNot DefinedNot Defined0.003990.31CVE-2007-0529
10LG SuperSign CMS Service Port 9080 reboot input validation6.46.2$5k-$25k$0-$5kNot DefinedWorkaround0.001240.07CVE-2018-16706
11TikiWiki tiki-register.php input validation7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.010751.68CVE-2006-6168
12Campcodes Complete Web-Based School Management System student_exam_mark_insert_form1.php cross site scripting3.53.2$0-$5k$0-$5kProof-of-ConceptNot Defined0.000450.05CVE-2024-4649
13Tiki Admin Password tiki-login.php improper authentication8.07.7$0-$5k$0-$5kNot DefinedOfficial Fix0.009360.98CVE-2020-15906
14PHPizabi template.class.php assignuser information disclosure4.34.2$0-$5k$0-$5kHighUnavailable0.004580.04CVE-2008-2018
15nginx request smuggling6.96.9$0-$5k$0-$5kNot DefinedNot Defined0.002410.78CVE-2020-12440
16SourceCodester Simple and Beautiful Shopping Cart System delete_user_query.php sql injection7.27.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.001830.04CVE-2023-1940
17SourceCodester Loan Management System Users Page deleteUser.php delete_user sql injection5.55.4$0-$5k$0-$5kProof-of-ConceptNot Defined0.000750.04CVE-2023-6312
18SourceCodester Clinics Patient Management System update_user.php sql injection7.16.9$0-$5k$0-$5kProof-of-ConceptNot Defined0.001350.09CVE-2023-1035
19Microsoft Windows cmd.exe privileges management7.36.6$25k-$100k$0-$5kProof-of-ConceptNot Defined0.000000.04
20Pligg cloud.php sql injection6.36.3$0-$5k$0-$5kNot DefinedNot Defined0.000000.16

IOC - Indicator of Compromise (9)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

TTP - Tactics, Techniques, Procedures (12)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IOA - Indicator of Attack (132)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/admin/manage-ambulance.phppredictiveHigh
2File/admin/suppliers/view_details.phppredictiveHigh
3File/admin/users.phppredictiveHigh
4File/api/baskets/{name}predictiveHigh
5File/application/websocket/controller/Setting.phppredictiveHigh
6File/cgi-bin/system_mgr.cgipredictiveHigh
7File/display/mappredictiveMedium
8File/forum/away.phppredictiveHigh
9File/hardwarepredictiveMedium
10File/librarian/bookdetails.phppredictiveHigh
11File/member/chat.phppredictiveHigh
12File/newdriver.phppredictiveHigh
13File/oauth/idp/.well-known/openid-configurationpredictiveHigh
14File/owa/auth/logon.aspxpredictiveHigh
15File/protocol/iscuser/uploadiscuser.phppredictiveHigh
16File/protocol/log/listloginfo.phppredictiveHigh
17File/qsr_server/device/rebootpredictiveHigh
18File/xxxxxxxx/xxxxxx/xxxxxx/xxxxxx/xxxxxx/xxxxx/xxxx-xxxxxx.xxxpredictiveHigh
19File/xxxx.xxxpredictiveMedium
20File/xxxxx/xxxxxxxxxxx.xxxpredictiveHigh
21File/xxxxxxx/xxxxxxxxxxx.xxxpredictiveHigh
22File/xxxx/xxxxxx_xxxxx_xxxxx_xxxxxx_xxxx.xxxpredictiveHigh
23File/xxxx/xxxxxxx_xxxxxxxxxx_xxxxxxxx.xxxpredictiveHigh
24File/xxxx/xxxxxxx_xxxx_xxxx_xxxxxx_xxxxx.xxxpredictiveHigh
25Filexxxxx.xxxpredictiveMedium
26Filexxxxxxx.xxxpredictiveMedium
27Filexxxxx/xxxxxxxxx.xxxpredictiveHigh
28Filexxxxx/xxxxxxx-xxxx.xxxpredictiveHigh
29Filexxx.xxxpredictiveLow
30Filexxxxxxx.xxpredictiveMedium
31Filexxxx/xxxxxxxxxxxx.xxxpredictiveHigh
32Filexxxx_xxxxx_xxxxx.xxxpredictiveHigh
33Filexxxx_xxx_xxxxxx.xxxpredictiveHigh
34Filexxxx_xxx_xxxx.xxxpredictiveHigh
35Filexxxxxxxxx.xxxpredictiveHigh
36Filexxxxx.xxxpredictiveMedium
37Filexxxxx.xxxpredictiveMedium
38Filexxx.xxxpredictiveLow
39Filexxxxxx.xxxpredictiveMedium
40Filexxxxxxxxxx.xxxpredictiveHigh
41Filexxxxxx_xxxx_xxxxx.xxxpredictiveHigh
42Filexxxxxx.xxxpredictiveMedium
43Filexxxxxxx/xxxxxxx/xxxx-xxxxxxx-xx.xpredictiveHigh
44Filexxxx_xxxxxx.xxxpredictiveHigh
45Filexxxx.xxxpredictiveMedium
46Filexxx/xxxxxx.xxxpredictiveHigh
47Filexxx/xxxxxxxxxxx/xxxxxxx.xxxpredictiveHigh
48Filexxxxxxx\xxxxxxx\xxxxxxx_xxxxx.xxxpredictiveHigh
49Filexxxxx.xxxxpredictiveMedium
50Filexxxxx.xxxpredictiveMedium
51Filexxxxxxxxxx.xxxpredictiveHigh
52Filexxxxx.xxxpredictiveMedium
53Filexxxxxxx_xxxxxxxx_xxx.xxxpredictiveHigh
54Filexxxxxx_xxxx.xxxpredictiveHigh
55Filexxxxxx_xxxx.xxxpredictiveHigh
56Filexxxx/xxxxxxxxxx.xxxpredictiveHigh
57Filexxx.xxxpredictiveLow
58Filexxxxxxx/xxxxxx%xxxxxxx/xxxxxx_xxx.xxx&xxxx=xxxxxxxxxxxxxxxxxx&xxxx=xpredictiveHigh
59Filexxxx.xxxpredictiveMedium
60Filexxxx.xxxpredictiveMedium
61Filexxxx/xxxx_xxxxxx.xxxpredictiveHigh
62Filexxxx/xxxxxx.xxxpredictiveHigh
63Filexxxxx_xxxxxx.xxxpredictiveHigh
64Filexxxxx.xxxpredictiveMedium
65Filexxxx/xxxx.xxxpredictiveHigh
66Filexxxxxxxxxxxx.xxxpredictiveHigh
67Filexxx/xxxx/xxxx/xxx/xxxxx/xxxxx/xxxxxx/xxx/xxxxxxxxxx/xxxxxxxxxxxxxxx.xxxxpredictiveHigh
68Filexxxxxxx_xxxxxxxx.xxxpredictiveHigh
69Filexxxxxxxx.xxxxx.xxxpredictiveHigh
70Filexxxx-xxxxx.xxxpredictiveHigh
71Filexxxx-xxxxxxxx.xxxpredictiveHigh
72Filexxxxxx_xxxx.xxxpredictiveHigh
73Filexxxxx/xxxxx.xxxpredictiveHigh
74Filexxxxx/xxxxxxxx-xxxxxxxxx.xxxpredictiveHigh
75Filexxxxxxx/xx/xxxx/xxx/xxxxxx/xxxxxxxxx.xxpredictiveHigh
76Filexxxx.xxxpredictiveMedium
77Filexxxxxxxxxxxxxxxxxxxx.xxxxpredictiveHigh
78Filexxxxxxxxxxxx-xxxxxxxx.xxxpredictiveHigh
79Filexx-xxxxx/xxxxxxxx/xxxxx-xx-xxxxx-xxxx.xxxpredictiveHigh
80Filexx-xxxx.xxxpredictiveMedium
81Filexxxx.xxpredictiveLow
82File{xxxxxxx}/xxx/xxxxxxx.xxxpredictiveHigh
83File~/xxxxxxxx/xxxxxxxxx/xxxxxxx-xxxx.xxxpredictiveHigh
84ArgumentxxxxxpredictiveLow
85ArgumentxxxxxxxxpredictiveMedium
86Argumentxxxx_xxxxpredictiveMedium
87ArgumentxxxxxpredictiveLow
88ArgumentxxxxxxpredictiveLow
89ArgumentxxxxxxxxxxpredictiveMedium
90ArgumentxxxpredictiveLow
91ArgumentxxxxxxxxxxxpredictiveMedium
92ArgumentxxxxxxpredictiveLow
93ArgumentxxxpredictiveLow
94ArgumentxxxxpredictiveLow
95Argumentxxxx_xxxxxx_xxxxxxxxxpredictiveHigh
96Argumentxxxxx_xxxpredictiveMedium
97ArgumentxxxxpredictiveLow
98ArgumentxxxxxpredictiveLow
99ArgumentxxxxxxxxxxxxpredictiveMedium
100Argumentx_xxxx_xxxxxxpredictiveHigh
101ArgumentxxpredictiveLow
102ArgumentxxpredictiveLow
103ArgumentxxpredictiveLow
104ArgumentxxxxpredictiveLow
105Argumentxxxx_xxpredictiveLow
106Argumentxxxxxx_xxxxpredictiveMedium
107ArgumentxxxxxxxpredictiveLow
108ArgumentxxxxxxxxxxxxxxpredictiveHigh
109ArgumentxxxpredictiveLow
110Argumentxxxx_xxxxxxxxxxpredictiveHigh
111ArgumentxxxpredictiveLow
112ArgumentxxxxpredictiveLow
113ArgumentxxxxxxxxpredictiveMedium
114ArgumentxxxxpredictiveLow
115ArgumentxxxxxxxpredictiveLow
116Argumentxxxx_xxpredictiveLow
117ArgumentxxxxxxxpredictiveLow
118Argumentxxx[x]predictiveLow
119ArgumentxxxpredictiveLow
120Argumentxxxxxxx_xxxpredictiveMedium
121ArgumentxxxxpredictiveLow
122Argumentxxxx_xx[]predictiveMedium
123ArgumentxxxpredictiveLow
124ArgumentxxxxxxxxpredictiveMedium
125Argumentxxxx_xxpredictiveLow
126ArgumentxxxxpredictiveLow
127Argument_xxxxx_xxxpredictiveMedium
128Input Value' xxx (xxxxxx xxxx xxxx (xxxxxx(xxxxx(x)))xxxx)-- xxxxpredictiveHigh
129Input Valuex" xxxxxxxxxxx=xxxxxx(xxxxxx) xxx="predictiveHigh
130Input Valuex'xxx x=x xxxxx xxxxxx x,xxxxx(xx),x,x,x --+predictiveHigh
131Input Valuexxxxxxxxx'+xx+x%xxx+xxxxx+x%xxpredictiveHigh
132Input Valuexxxxxx%xx+xx+%xxx%xx+%xx+%xxx%xx+--+-predictiveHigh

References (6)

The following list contains external sources which discuss the actor and the associated activities:

This view requires CTI permissions

Just purchase a CTI license today!