Benin Unknown Analysis

IOB - Indicator of Behavior (419)

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

Lang

en296
fr47
de29
es21
it8

Country

us250
fr49
es25
bj14
ru13

Actors

Activities

Interest

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemCTIEPSSCVE
1Thomas R. Pasawicz HyperBook Guestbook Password Database gbconfiguration.dat Hash information disclosure5.35.2$5k-$25k$0-$5kHighWorkaround0.040.04187CVE-2007-1192
2DZCP deV!L`z Clanportal config.php code injection7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.640.04187CVE-2010-0966
3OpenSSH Authentication Username information disclosure5.34.8$5k-$25k$0-$5kHighOfficial Fix0.350.49183CVE-2016-6210
4Microsoft IIS cross site scripting5.24.7$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.800.25090CVE-2017-0055
5MGB OpenSource Guestbook email.php sql injection7.37.3$0-$5k$0-$5kHighUnavailable0.320.02800CVE-2007-0354
6Apache HTTP Server mod_proxy_fcgi.c handle_headers memory corruption5.35.1$25k-$100k$0-$5kNot DefinedOfficial Fix0.060.05242CVE-2014-3583
7ProFTPD mod_sftp/mod_sftp_pam kbdint.c resp_count numeric error7.57.1$0-$5k$0-$5kProof-of-ConceptUnavailable0.030.01319CVE-2013-4359
8Mytipper Zogo Shop products.php sql injection7.37.0$0-$5k$0-$5kHighOfficial Fix0.040.00986CVE-2008-2447
9Application Dynamics Cartweaver details.php sql injection7.37.1$0-$5k$0-$5kHighUnavailable0.030.00986CVE-2008-2918
10Virtuenetz Virtue Shopping Mall detail.php sql injection7.37.1$0-$5k$0-$5kHighUnavailable0.050.01213CVE-2010-4908
11Microsoft IIS IP/Domain Restriction access control6.55.7$25k-$100k$0-$5kUnprovenOfficial Fix0.710.29797CVE-2014-4078
12Brave Browser Access Control access control5.55.5$0-$5k$0-$5kNot DefinedNot Defined0.040.00885CVE-2017-1000461
13VMware vCenter Server Stored cross site scripting4.44.3$0-$5k$0-$5kNot DefinedOfficial Fix0.000.00890CVE-2017-4926
14edoc-doctor-appointment-system doctors.php sql injection8.07.9$0-$5k$0-$5kNot DefinedNot Defined0.060.00885CVE-2022-36543
15Billing System Project editcategory.php sql injection6.76.6$0-$5k$0-$5kNot DefinedNot Defined0.000.00885CVE-2022-41440
16SPIP spip.php cross site scripting3.53.4$0-$5k$0-$5kNot DefinedOfficial Fix0.390.01018CVE-2022-28959
17Postfix Admin functions.inc.php sql injection7.37.0$5k-$25k$0-$5kHighOfficial Fix0.030.01232CVE-2014-2655
18WP Rocket Plugin path traversal6.46.4$0-$5k$0-$5kNot DefinedNot Defined0.030.00954CVE-2017-11658
19Submitty cross site scripting4.44.4$0-$5k$0-$5kNot DefinedNot Defined0.070.02192CVE-2020-12882
20Cisco Prime Collaboration Assurance Web-based Management Interface cross-site request forgery5.95.9$5k-$25k$0-$5kNot DefinedNot Defined0.040.01136CVE-2018-15438

IOC - Indicator of Compromise (43)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsTypeConfidence
15.62.60.32r-32-60-62-5.consumer-pool.prcdn.netBenin UnknownverifiedHigh
25.62.62.32r-32-62-62-5.consumer-pool.prcdn.netBenin UnknownverifiedHigh
341.74.0.0Benin UnknownverifiedHigh
441.78.96.128Benin UnknownverifiedHigh
541.79.216.0Benin UnknownverifiedHigh
641.85.160.0Benin UnknownverifiedHigh
741.86.224.0Benin UnknownverifiedHigh
841.138.88.0Benin UnknownverifiedHigh
941.190.64.0Benin UnknownverifiedHigh
10XX.XXX.XX.XXxxxx XxxxxxxverifiedHigh
11XX.XXX.XX.XXxxxx XxxxxxxverifiedHigh
12XX.XXX.XX.XXxxxx XxxxxxxverifiedHigh
13XX.XXX.XXX.XXxxxx XxxxxxxverifiedHigh
14XX.XXX.XXX.XXxxxx XxxxxxxverifiedHigh
15XX.XXX.XXX.XXxxxx XxxxxxxverifiedHigh
16XX.XX.XX.XXxxxxx.xxx-xxx.xxxXxxxx XxxxxxxverifiedHigh
17XX.XX.XX.XXXxxxx XxxxxxxverifiedHigh
18XX.XXX.XXX.XXxxxx XxxxxxxverifiedHigh
19XX.XX.XX.XXxxxx XxxxxxxverifiedHigh
20XX.XX.XXX.XXXxxxx XxxxxxxverifiedHigh
21XX.XX.XXX.XXXXxxxx XxxxxxxverifiedHigh
22XX.XX.XXX.XXxxxx XxxxxxxverifiedHigh
23XXX.XX.XXX.XXxxxx XxxxxxxverifiedHigh
24XXX.XXX.XX.XXxxxx XxxxxxxverifiedHigh
25XXX.XXX.X.XXxxxx XxxxxxxverifiedHigh
26XXX.XX.XX.XXxxxx XxxxxxxverifiedHigh
27XXX.XX.XXX.XXxxxx XxxxxxxverifiedHigh
28XXX.XX.XXX.XXxxxx XxxxxxxverifiedHigh
29XXX.XXX.XX.XXxxxx XxxxxxxverifiedHigh
30XXX.X.XXX.XXxxxx XxxxxxxverifiedHigh
31XXX.X.XXX.XXxxxx XxxxxxxverifiedHigh
32XXX.XXX.XXX.XXxxxx XxxxxxxverifiedHigh
33XXX.XXX.XXX.XXxxxx XxxxxxxverifiedHigh
34XXX.XX.XX.XXXxxxx XxxxxxxverifiedHigh
35XXX.XX.XXX.XXXxxxx XxxxxxxverifiedHigh
36XXX.XX.XXX.XXxxxx XxxxxxxverifiedHigh
37XXX.XX.X.XXxxxx XxxxxxxverifiedHigh
38XXX.XXX.XX.XXxxxx XxxxxxxverifiedHigh
39XXX.XXX.XX.XXxxxx XxxxxxxverifiedHigh
40XXX.XXX.XX.XXxxxx XxxxxxxverifiedHigh
41XXX.XXX.XXX.XXxxxx XxxxxxxverifiedHigh
42XXX.XXX.XX.XXxxxx XxxxxxxverifiedHigh
43XXX.XXX.XXX.XXxxxx XxxxxxxverifiedHigh

TTP - Tactics, Techniques, Procedures (19)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IOA - Indicator of Attack (251)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/?Page=Node/OBJ=/System/DeviceFolder/DeviceFolder/DateTime/Action=SubmitpredictiveHigh
2File/acms/admin/cargo_types/manage_cargo_type.phppredictiveHigh
3File/admin/ajax/avatar.phppredictiveHigh
4File/admin/index.phppredictiveHigh
5File/admin/payment.phppredictiveHigh
6File/admin/show.phppredictiveHigh
7File/cgi-bin/supervisor/PwdGrp.cgipredictiveHigh
8File/default.php?idx=17predictiveHigh
9File/downloadpredictiveMedium
10File/forum/away.phppredictiveHigh
11File/index.phppredictiveMedium
12File/opt/bin/clipredictiveMedium
13File/ppredictiveLow
14File/patient/doctors.phppredictiveHigh
15File/phpinventory/editcategory.phppredictiveHigh
16File/product-list.phppredictiveHigh
17File/spip.phppredictiveMedium
18File/uncpath/predictiveMedium
19File/updown/upload.cgipredictiveHigh
20File/user/del.phppredictiveHigh
21File/_nextpredictiveLow
22File123flashchat.phppredictiveHigh
23Fileact.phppredictiveLow
24Fileadmin/bad.phppredictiveHigh
25Fileadmin/index.phppredictiveHigh
26Fileadmin/index.php/user/del/1predictiveHigh
27Fileadmin/index.php?id=themes&action=edit_chunkpredictiveHigh
28Fileadministrator/index.phppredictiveHigh
29Fileajax/render/widget_phppredictiveHigh
30Filealbum_portal.phppredictiveHigh
31Fileapi.phppredictiveLow
32Fileapp/api/cms/user.pypredictiveHigh
33Fileapplication/home/controller/debug.phppredictiveHigh
34Filexxxxxxxx.xxxpredictiveMedium
35Filexxxxxx.xxxxxxx.xxxpredictiveHigh
36Filexxx.xxxxxpredictiveMedium
37Filexxxxxxx.xxxpredictiveMedium
38Filexxxxx.xxxpredictiveMedium
39Filexxxxxx-xxxxxx-xx.xxxpredictiveHigh
40Filexxxx.xxxpredictiveMedium
41Filexxxxxxxxx.xxxxpredictiveHigh
42Filexxxxxxxx.xxxpredictiveMedium
43Filexxxxxxxx_xxxx.xxxpredictiveHigh
44Filexxx-xxx/xxxxxxx.xxpredictiveHigh
45Filexxx-xxx/xxx_xxxxpredictiveHigh
46Filexxx-xxx/xxxxxx?xxx=_xxxxpredictiveHigh
47Filexxx/xxxxxxx.xxpredictiveHigh
48Filexxxxx/xxxxxxx.xxxpredictiveHigh
49Filexxxxxxxx.xxxpredictiveMedium
50Filexxxxxxxxxx/xxxxxx/xxxxxxxxx.xxxx/xxxx.xxx/predictiveHigh
51Filexxxx/xxxxxxxxxxxxxxx.xxxpredictiveHigh
52Filexxxxxx.xxxpredictiveMedium
53Filexxxxxxx.xxxpredictiveMedium
54Filexxxxxxxxx.xxxpredictiveHigh
55Filexxxx.xxxpredictiveMedium
56Filexxxxx.xxxpredictiveMedium
57Filexxxx/xxxxxxxxxx/xxxxxx-xxxx_xxx.xpredictiveHigh
58Filexxxxxxxxx.xxxpredictiveHigh
59Filexxxxx.xxxpredictiveMedium
60Filexxxxx/_xxx/predictiveMedium
61Filexxxx_xxxxxxx.xxxpredictiveHigh
62Filexxxxxxxxx_xxxxxxxx.xxxpredictiveHigh
63Filexxxxxxxxx/xx/xxxxxxxxxxxx.xxxpredictiveHigh
64Filexxxxxxxxx.xxx.xxxpredictiveHigh
65Filexxxxx.xxxpredictiveMedium
66Filexxx_xxxxxxx.xxxpredictiveHigh
67Filexxxxxxxxxx\xxxxxx\xxxxxxxxxxxxx.xxxpredictiveHigh
68Filexxxx_xxxx.xpredictiveMedium
69Filexxx_xxxx.xxxpredictiveMedium
70Filexxx/xxxxxx.xxxpredictiveHigh
71Filexxx/xxxxxxxxxxx/xxxxxxx.xxxpredictiveHigh
72Filexxxxxxxx/xxxxx-xx-xxxxxxxxx.xxxpredictiveHigh
73Filexxxxxxxx/xxxxxxxxx.xxxpredictiveHigh
74Filexxxxx.xxxpredictiveMedium
75Filexxxxx.xxxpredictiveMedium
76Filexxxxx.xxx.xxxpredictiveHigh
77Filexxxxx.xxxpredictiveMedium
78Filexxxxxxxxxxxxx.xxxpredictiveHigh
79Filexxxx.xxxpredictiveMedium
80Filexxxx_xxxxxxx.xxxxpredictiveHigh
81Filexxxx_xxxx.xxxpredictiveHigh
82Filexxxxxx.xpredictiveMedium
83Filexxxxxx\xxxxxxxxx\xxxxxx\xxxxxxx\xxxxxxxxxxxxxpredictiveHigh
84Filexxxxxxx.xxxpredictiveMedium
85Filexxxxxxxxxx/xxxx.xpredictiveHigh
86Filexxxxxxxx_xx.xxxpredictiveHigh
87Filexxxxx.xxxxpredictiveMedium
88Filexxxxx_xxxxxxx.xxxpredictiveHigh
89Filexxxx.xxxpredictiveMedium
90Filexxxx.xxxpredictiveMedium
91Filexxxxxxx.xxxpredictiveMedium
92Filexxxxxx/xxxxxxxx.xxxpredictiveHigh
93Filexxxxxxx/xxxxxxxx/xxxxxxx/xxxxxxx.xxxx_xxxxxx.xxx/xxxx_xxxxxx.xxxpredictiveHigh
94Filexxx_xxxxx_xxxx.xpredictiveHigh
95Filexxxx/xxxxxx.xxxpredictiveHigh
96Filexxxx.xxxpredictiveMedium
97Filexxx_xxxx.xxxpredictiveMedium
98Filexxxxxxxxxxx-xxxx.xxpredictiveHigh
99Filexxx.xxxpredictiveLow
100Filexxxxxxx.xxxpredictiveMedium
101Filexxxx.xxxpredictiveMedium
102Filexxxxxxxx.xxxpredictiveMedium
103Filexxxxx.xxxpredictiveMedium
104Filexxxx.xxxpredictiveMedium
105Filexxxxxxx.xxxpredictiveMedium
106Filexxxxxxx.xxxxxx.xxxpredictiveHigh
107Filexxxxxxxxxxxxx.xxxpredictiveHigh
108Filexxxxxxxx.xxxpredictiveMedium
109Filexxxxxxxxxx.xxxpredictiveHigh
110Filexxxxxxx_xxxxxxx.xxxpredictiveHigh
111Filexxxx.xxxpredictiveMedium
112Filexxxxx.xxxpredictiveMedium
113Filexxxxxxxx.xxxpredictiveMedium
114Filexxxxxxxx/xxxxx/xxxxxxxx?xxxxxxxxpredictiveHigh
115Filexxxx_xxxxx.xxxpredictiveHigh
116Filexxxxx.xxxpredictiveMedium
117Filexxxxx-xxxxxx-xx.xxxpredictiveHigh
118Filexxxxxx.xxpredictiveMedium
119Filexxxxxx.xxxpredictiveMedium
120Filexxxxxx_xxxx.xxxpredictiveHigh
121Filexxxxxxxx/xxxx/xxxx.xxx?xxxxxx=xxxxxxxxxxxxxxxxpredictiveHigh
122Filexxxx.xxxpredictiveMedium
123Filexxxx.xxxpredictiveMedium
124Filexxxxxxxxx.xxxpredictiveHigh
125Filexxxx_xxxxxxxx.xxx/xxxx_xxxx.xxxpredictiveHigh
126Filexxxx_xxxx.xxxpredictiveHigh
127Filexxx/xxxxxxxx.xpredictiveHigh
128Filexxxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
129Filexxx_xxxxxx.xxxpredictiveHigh
130Filexxxxxxxx.xxxpredictiveMedium
131Filexxxx.xxxpredictiveMedium
132Filexxxxxxxx.xxxpredictiveMedium
133Filexxx.xxxpredictiveLow
134Filexxxx/xxx/xxxx-xxxxx.xxxpredictiveHigh
135Filexxxx_xxxxxx.xxxpredictiveHigh
136Filexxxx_xxxx.xxxpredictiveHigh
137Filexxxx.xxxpredictiveMedium
138Filexxxx.xpredictiveLow
139Filexxxxxx.xxxpredictiveMedium
140Filexxxxxxxx.xxxpredictiveMedium
141Filexx-xxxxx/xxxxx-xxxx.xxxpredictiveHigh
142Filexx-xxxxx/xxxxx.xxx?xxxx=xxxxxxxxx-xxxxxxxxx&xxxxxx=xxxxpredictiveHigh
143Filexx-xxxxx/xxxx.xxx?xxxx_xxxx=xxxxx&xxxx=xxxxxx-xxxxxxx-xxxxxxxpredictiveHigh
144Filexx-xxxxx/xxxxxxxx/xxxxx-xxxx-xxxxxx-xxxxxxxx.xxxpredictiveHigh
145Filexx-xxxxx/xxxx.xxxpredictiveHigh
146Filexx-xxxxxxxx/xxxxx-xx-xxxxx.xxxpredictiveHigh
147Filexx-xxxxxxxx/xxxxx-xx-xxxxxx-xxxxxx.xxxpredictiveHigh
148Filexx-xxxxxxxx/xxxxxx-xxxxxx.xxxpredictiveHigh
149Filexx-xxxxxxxxx.xxxpredictiveHigh
150Filexxx/xxxxxxxx/xxxxxxxx.xxxpredictiveHigh
151Filexxxx.xxpredictiveLow
152File\\.\xxxx\xxxxxxxxxxx\xxxxxxxxxxxpredictiveHigh
153Library/xxxxxxxx_xxxxx/xxxxxxx/xxxxx-xxxxx-x.x.x.x/xxxxx_xxxxx.xxxpredictiveHigh
154Libraryxxxxxx/xxx/xxxxxxx_xxxxxx_xxxx.xxxpredictiveHigh
155Libraryxxxxxx.xxxpredictiveMedium
156Libraryxxxxxxxxxx.xxxpredictiveHigh
157Libraryxxx/predictiveLow
158Libraryxxx/xxxxxxxxxxxxxx/xxxx-xxxxxxxxxx.xxxpredictiveHigh
159Libraryxxxxxx.xxxpredictiveMedium
160Libraryxxxxxxxx.xxxpredictiveMedium
161Libraryxxxxxxxx.xxxpredictiveMedium
162Libraryxxxxx.xxxpredictiveMedium
163Libraryxxxxx.xxxpredictiveMedium
164Libraryxxxxxxx.xxx/xxxxxx.xxxpredictiveHigh
165ArgumentxxxxxxpredictiveLow
166Argumentxxx_xxpredictiveLow
167Argumentxxx[xxx]predictiveMedium
168Argumentxxxxxxx_xxpredictiveMedium
169Argumentxxxxxxx_xxpredictiveMedium
170ArgumentxxxxxxxxpredictiveMedium
171Argumentxxxx_xxxpredictiveMedium
172ArgumentxxxxxpredictiveLow
173ArgumentxxxxxxpredictiveLow
174ArgumentxxxpredictiveLow
175ArgumentxxxxxpredictiveLow
176Argumentxxx_xxpredictiveLow
177ArgumentxxxpredictiveLow
178Argumentxxxxxx_xxxxxxpredictiveHigh
179Argumentxxxx_xxpredictiveLow
180ArgumentxxxxxxpredictiveLow
181ArgumentxxxxxxxxpredictiveMedium
182Argumentxxxx_xxxxx_xxxxxxxxxx_xxxxx_xxxxpredictiveHigh
183ArgumentxxxxxxxxxxpredictiveMedium
184ArgumentxxxxxpredictiveLow
185ArgumentxxxpredictiveLow
186ArgumentxxxxpredictiveLow
187ArgumentxxxxxxxxpredictiveMedium
188ArgumentxxxxpredictiveLow
189Argumentxxxxx_xxpredictiveMedium
190Argumentxxxxxxx[xx]/xxxxxxx[xxxxx]predictiveHigh
191Argumentxxxxxxx[xx_xxx_xxxx]predictiveHigh
192ArgumentxxxxpredictiveLow
193Argumentxxxx_xxxxxx_xx/xxxx_x_xxxxxxxxx_xxx/xxxx_x_xxxxxxxxx/xxxx_xxxxxxxxx_xxx/xxxx_xxxxxxxxxpredictiveHigh
194ArgumentxxpredictiveLow
195ArgumentxxpredictiveLow
196Argumentxx/xxxx_xxxxx/xxxxx/xxx/xxx/xxx_xx/xxxx_xxxxxx/xxxxxxxx/xxxxxxxpredictiveHigh
197Argumentxx_xxxxxxxxpredictiveMedium
198ArgumentxxxxpredictiveLow
199ArgumentxxxxxxxxxxxxpredictiveMedium
200Argumentxxxxx[xxxxx][xx]predictiveHigh
201Argumentxxxx_xxpredictiveLow
202ArgumentxxxxxpredictiveLow
203ArgumentxxxxpredictiveLow
204ArgumentxxxxxxpredictiveLow
205ArgumentxxxxxxxpredictiveLow
206ArgumentxxxxxxpredictiveLow
207Argumentxxxx_xxxxpredictiveMedium
208Argumentxxxxxxx/xxxxxxxxxpredictiveHigh
209Argumentxxxxxx_xxxxpredictiveMedium
210ArgumentxxxxxxxxpredictiveMedium
211ArgumentxxxxxxxxpredictiveMedium
212Argumentxxxx_xxxxpredictiveMedium
213Argumentxxxxx_xxxx_xxxxpredictiveHigh
214ArgumentxxxpredictiveLow
215ArgumentxxxxxxxxpredictiveMedium
216ArgumentxxxxxxpredictiveLow
217ArgumentxxxxxxpredictiveLow
218Argumentxxxxxxx_xxpredictiveMedium
219Argumentxxxxx_xxxxxxpredictiveMedium
220ArgumentxxxxxxxxpredictiveMedium
221ArgumentxxxxxxpredictiveLow
222ArgumentxxxxxxpredictiveLow
223Argumentxxxxxxx_xxpredictiveMedium
224ArgumentxxxxxxxxxpredictiveMedium
225Argumentxxxx_xxxxxpredictiveMedium
226ArgumentxxxpredictiveLow
227ArgumentxxpredictiveLow
228Argumentxxx_xxxxxpredictiveMedium
229ArgumentxxxxpredictiveLow
230Argumentxxx_xxxxxxxx_xxxxxpredictiveHigh
231Argumentxx_xxpredictiveLow
232Argumentxxxxxxxxxx[]predictiveMedium
233ArgumentxxxxxxxxxxxxxpredictiveHigh
234ArgumentxxxpredictiveLow
235ArgumentxxxpredictiveLow
236ArgumentxxxxpredictiveLow
237ArgumentxxxpredictiveLow
238ArgumentxxxpredictiveLow
239ArgumentxxxxxxxxxpredictiveMedium
240ArgumentxxxxxxxxpredictiveMedium
241Argumentxxxxxxxxxxxx[xxxx]predictiveHigh
242Argumentxxxx->xxxxxxxpredictiveHigh
243Argument_xxxx_xxxxxx/_xxxx_xxxxxxxx/_xxxx_xxxxxpredictiveHigh
244Input Value%xxpredictiveLow
245Input Value' xx 'x'='xpredictiveMedium
246Input Value-xx%xxxxxxx%xxxxx%xxxxxxxx%xxx,@@xxxxxxx,x,x,x,x,x,x--predictiveHigh
247Input Value.%xx.../.%xx.../predictiveHigh
248Input Value::$xxxxx_xxxxxxxxxxpredictiveHigh
249Patternx|xx|x|xx|x|xx|x|xx|x|xx|x|xx|x|xx|x|xx|.|xx|x|xx|x|xx|x|xx|x|xx|x|xx|x|xx|x|xx|x|xx|predictiveHigh
250Network Portxxx/xxxx (xxxxx)predictiveHigh
251Network Portxxx xxxxxx xxxxpredictiveHigh

References (2)

The following list contains external sources which discuss the actor and the associated activities:

Might our Artificial Intelligence support you?

Check our Alexa App!