BlankSlate Analysis

IOB - Indicator of Behavior (34)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en30
de4

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

us20
gb2
de2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Honda Civic2
pfSense2
123 Flash Chat Module2
DZCP deV!L`z Clanportal2
LabF nfsAxe2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemCTIEPSSCVE
1DZCP deV!L`z Clanportal config.php code injection7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.610.04187CVE-2010-0966
2Thomas R. Pasawicz HyperBook Guestbook Password Database gbconfiguration.dat Hash information disclosure5.35.2$5k-$25kCalculatingHighWorkaround0.040.04187CVE-2007-1192
3Huawei HarmonyOS DUBAI Module double free5.75.7$5k-$25k$5k-$25kNot DefinedNot Defined0.020.00885CVE-2022-47975
4InterWorx SiteWorx domains.php cross site scripting4.34.3$0-$5k$0-$5kNot DefinedNot Defined0.030.03932CVE-2007-4588
5InterWorx NodeWorx cluster.php cross site scripting3.53.5$0-$5k$0-$5kNot DefinedNot Defined0.020.03932CVE-2007-4588
6Honda Civic keyfob Subsystem authentication replay1.81.8$0-$5k$0-$5kNot DefinedNot Defined0.020.01018CVE-2021-46145
7Microsoft Access Access File memory corruption10.09.5$25k-$100k$0-$5kNot DefinedOfficial Fix0.040.38845CVE-2013-3156
8123 Flash Chat Module 123flashchat.php code injection9.89.3$0-$5kCalculatingProof-of-ConceptUnavailable0.030.04187CVE-2008-1989
9DZCP deV!L`z Clanportal browser.php information disclosure5.35.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.210.06790CVE-2007-1167
10Serendipity exit.php privileges management6.36.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.180.00000
11LabF nfsAxe FTP Client memory corruption8.58.3$0-$5k$0-$5kHighNot Defined0.050.64825CVE-2017-18047
12GitStack User input validation8.58.5$0-$5k$0-$5kHighNot Defined0.030.86601CVE-2018-5955
13Dasan GPON ONT WiFi Router H640X login_action.cgi login_action memory corruption8.58.3$0-$5k$0-$5kNot DefinedWorkaround0.020.05785CVE-2017-18046
14FasterXML jackson-databind Incomplete Fix deserialization7.77.3$0-$5kCalculatingNot DefinedOfficial Fix0.020.10052CVE-2018-5968
15CentOS Web Panel index.php cross site scripting5.25.2$0-$5kCalculatingNot DefinedNot Defined0.020.02561CVE-2018-5961
16CentOS Web Panel phpini_editor Module index.php cross site scripting5.25.2$0-$5kCalculatingNot DefinedNot Defined0.000.00885CVE-2018-5962
17OpenSSH sshd packet.c null pointer dereference6.46.1$5k-$25k$0-$5kNot DefinedOfficial Fix0.050.02172CVE-2016-10708
18Zenario organizer.php sql injection7.57.5$0-$5k$0-$5kNot DefinedNot Defined0.000.00885CVE-2018-5960
19Zillya! Antivirus Driver zef.sys input validation7.27.2$5k-$25k$0-$5kNot DefinedNot Defined0.010.00885CVE-2018-5958
20pfSense status_rrd_graph_img.php os command injection7.56.9$0-$5k$0-$5kHighOfficial Fix0.000.73472CVE-2016-10709

IOC - Indicator of Compromise (9)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

TTP - Tactics, Techniques, Procedures (7)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueVulnerabilitiesAccess VectorTypeConfidence
1T1040CWE-294Authentication Bypass by Capture-replaypredictiveHigh
2T1059CWE-94Cross Site ScriptingpredictiveHigh
3TXXXX.XXXCWE-XX, CWE-XXXxxxx Xxxx XxxxxxxxxpredictiveHigh
4TXXXXCWE-XXX, CWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
5TXXXXCWE-XXXxxxxxx XxxxxxxxxpredictiveHigh
6TXXXXCWE-XXXxx XxxxxxxxxpredictiveHigh
7TXXXXCWE-XXXXxxxxxxxxxxxxpredictiveHigh

IOA - Indicator of Attack (25)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/cgi-bin/login_action.cgipredictiveHigh
2File123flashchat.phppredictiveHigh
3Filecluster.phppredictiveMedium
4Filedata/gbconfiguration.datpredictiveHigh
5Filexxxxxxx.xxxpredictiveMedium
6Filexxxx.xxxpredictiveMedium
7Filexxx/xxxxxx.xxxpredictiveHigh
8Filexxx/xxxxxxxxxxx/xxxxxxx.xxxpredictiveHigh
9Filexxxxx.xxxpredictiveMedium
10Filexxx.x/xxxxxx.xpredictiveHigh
11Filexxxxxxxxx.xxxpredictiveHigh
12Filexxxx/xxxx/predictiveMedium
13Filexxxxxx_xxx_xxxxx_xxx.xxxpredictiveHigh
14Libraryxxx.xxxpredictiveLow
15ArgumentxxxxxxxxpredictiveMedium
16ArgumentxxxxxxxxpredictiveMedium
17Argumentxxxxx_xxxxxxxpredictiveHigh
18ArgumentxxxxpredictiveLow
19ArgumentxxxxxpredictiveLow
20ArgumentxxxxxxpredictiveLow
21ArgumentxxxxpredictiveLow
22Argumentxxxx_xxxxpredictiveMedium
23ArgumentxxxpredictiveLow
24Argumentxxxxxxxx/xxxxxxxxpredictiveHigh
25Network Portxxx/xx (xxx)predictiveMedium

References (3)

The following list contains external sources which discuss the actor and the associated activities:

Do you need the next level of professionalism?

Upgrade your account now!