ChaChi Analysis

IOB - Indicator of Behavior (1000)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en754
fr82
de78
zh58
es16

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

us422
cn118
fr62
ru36
gb22

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Apache HTTP Server18
Microsoft Windows16
MikroTik RouterOS12
Google Android12
WordPress8

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemCTIEPSSCVE
1Thomas R. Pasawicz HyperBook Guestbook Password Database gbconfiguration.dat Hash information disclosure5.35.2$5k-$25kCalculatingHighWorkaround0.040.04187CVE-2007-1192
2DZCP deV!L`z Clanportal config.php code injection7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.480.04187CVE-2010-0966
3jforum User input validation5.35.3$0-$5k$0-$5kNot DefinedNot Defined0.040.04499CVE-2019-7550
4MGB OpenSource Guestbook email.php sql injection7.37.3$0-$5k$0-$5kHighUnavailable0.740.02800CVE-2007-0354
5Devilz Clanportal index.php sql injection7.36.4$0-$5k$0-$5kProof-of-ConceptUnavailable0.030.01139CVE-2006-3347
6DZCP deV!L`z Clanportal browser.php information disclosure5.35.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.210.06790CVE-2007-1167
7Devilz Clanportal File Upload unknown vulnerability5.34.4$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.040.06790CVE-2006-6338
8Lars Ellingsen Guestserver guestserver.cgi privileges management9.89.4$0-$5k$0-$5kNot DefinedOfficial Fix0.020.01055CVE-2001-0180
9YaBB yabb.pl cross site scripting4.34.1$0-$5k$0-$5kProof-of-ConceptNot Defined0.010.01213CVE-2004-2402
10Microsoft IIS cross site scripting5.24.7$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.620.25090CVE-2017-0055
11Tiki Admin Password tiki-login.php improper authentication8.07.7$0-$5k$0-$5kNot DefinedOfficial Fix0.390.09029CVE-2020-15906
12jforum cross site scripting4.34.3$0-$5k$0-$5kNot DefinedNot Defined0.050.01953CVE-2012-5337
13DrayTek Vigor2960 mainfunction.cgi toLogin2FA os command injection6.36.3$0-$5k$0-$5kNot DefinedNot Defined0.000.04571CVE-2020-19664
14OpenSSH Authentication Username information disclosure5.34.8$5k-$25k$0-$5kHighOfficial Fix0.500.49183CVE-2016-6210
15Lars Ellingsen Guestserver guestbook.cgi cross site scripting4.34.3$0-$5k$0-$5kNot DefinedNot Defined0.240.01055CVE-2005-4222
16FreeBSD rmuser Utility master.passwd privileges management8.47.6$5k-$25kCalculatingProof-of-ConceptOfficial Fix0.000.00950CVE-2001-1017
17Cisco Linksys Router tmUnblock.cgi privileges management9.89.2$25k-$100k$0-$5kHighWorkaround0.030.00000
18Apache CXF services cross site scripting4.84.6$0-$5k$0-$5kNot DefinedOfficial Fix0.020.07767CVE-2020-13954
19vsftpd deny_file unknown vulnerability3.73.6$0-$5k$0-$5kNot DefinedOfficial Fix0.060.01136CVE-2015-1419
20medoo columnQuote sql injection8.58.2$0-$5kCalculatingNot DefinedOfficial Fix0.040.01055CVE-2019-10762

IOC - Indicator of Compromise (32)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

TTP - Tactics, Techniques, Procedures (23)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IOA - Indicator of Attack (260)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File.htaccesspredictiveMedium
2File/.envpredictiveLow
3File//etc/RT2870STA.datpredictiveHigh
4File/cgi-bin/activate.cgipredictiveHigh
5File/cgi-bin/koha/acqui/supplier.pl?op=enterpredictiveHigh
6File/cgi-bin/nobodypredictiveHigh
7File/cgi-bin/nobody/Search.cgipredictiveHigh
8File/etc/quaggapredictiveMedium
9File/exportpredictiveLow
10File/forum/away.phppredictiveHigh
11File/get_getnetworkconf.cgipredictiveHigh
12File/index.phppredictiveMedium
13File/nova/bin/detnetpredictiveHigh
14File/opensis/modules/users/Staff.phppredictiveHigh
15File/php_action/createUser.phppredictiveHigh
16File/plugins/servlet/gadgets/makeRequestpredictiveHigh
17File/REBOOTSYSTEMpredictiveHigh
18File/req_password_user.phppredictiveHigh
19File/servicespredictiveMedium
20File/show_news.phppredictiveHigh
21File/tmppredictiveLow
22File/uncpath/predictiveMedium
23File/UploadspredictiveMedium
24File/userRpm/MediaServerFoldersCfgRpm.htmpredictiveHigh
25File/WEB-INF/web.xmlpredictiveHigh
26File/webconsole/APIControllerpredictiveHigh
27File/wp-admin/admin-ajax.phppredictiveHigh
28FileAccountStatus.jsppredictiveHigh
29Fileadd.phppredictiveLow
30Fileaddentry.phppredictiveMedium
31Filexxxxx.xxxpredictiveMedium
32Filexxxxx/xxxxxxx_xxxxxxxx.xxx?xxx=xxxxxxpredictiveHigh
33Filexxxxx/xxxxxx/xxxxxxx.xxxpredictiveHigh
34Filexxxxx/xxxxxxxxx.xxxpredictiveHigh
35Filexxxxx/xxxxxxx_xxxxxxxx.xxx?xxx=xxxxxxpredictiveHigh
36Filexxxxx/xxxxxxxxxxxxxxx.xxpredictiveHigh
37Filexxxxx/xxxxxx_xxxxxx/xxxx_xxxxxx_xxx.xxxxpredictiveHigh
38Filexxxxx_xxx.xxxpredictiveHigh
39Filexxx/xxxxxxxxxxx.xxxpredictiveHigh
40Filexxxxxxxxxxx\xxxx\xxxxxxxxxx\xxxxxxxx.xxxpredictiveHigh
41Filexxxxxx/xxx/xxxxxxxxx-xxxxxxxx.xxxpredictiveHigh
42Filexxxx-xxxx.xpredictiveMedium
43Filexxxx.xxxpredictiveMedium
44Filexx_xxxxx_xxxxx.xxxpredictiveHigh
45Filexxxxxxxxx.xxxpredictiveHigh
46Filexxx.xxxpredictiveLow
47Filexxx-xxx/xxxx-xxxpredictiveHigh
48Filexxx-xxx/xxxxxxx_xxx.xxxpredictiveHigh
49Filexxxx.xxxpredictiveMedium
50Filexxxxx.xxxxxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
51Filexxxxxxx.xxxpredictiveMedium
52Filexxxxxxxxxxx/xxxxxx/xxx.xxxpredictiveHigh
53Filexxxx_xxxx_x_xxxxxx.xxxpredictiveHigh
54Filexxxxxxxxxx.xxxpredictiveHigh
55Filexxxx/xxxxxxxxxxxxxxx.xxxpredictiveHigh
56Filexxxxxxxx.xxxpredictiveMedium
57Filexxxxxxxxx.xxxpredictiveHigh
58Filexxxxxx.xxxpredictiveMedium
59Filexxxxxx.xxxpredictiveMedium
60Filexxxxx.xpredictiveLow
61Filexxxxxx/xxx/xxxxxxx.xxxpredictiveHigh
62Filexxxxx.xxxpredictiveMedium
63Filexxx_xx/xxx/xxx/xxxxxx_xxxxxxx.xxxpredictiveHigh
64Filexxx_xx/xxx/xxxxxxxx/xxxxxxxxxxx.xxxpredictiveHigh
65Filexxxxx.xxxpredictiveMedium
66Filexxx/xxxx/xxx/xxxxx_xxxx.xpredictiveHigh
67Filexxxxxxxxxx.xxxpredictiveHigh
68Filexxxxxxxxxxxx.xxxpredictiveHigh
69Filexxxxxxx.xxxpredictiveMedium
70Filexxxxxxxx/xxxx_xxxxpredictiveHigh
71Filexxxxxxxxx.xxxpredictiveHigh
72Filexxxxxxxxxxx.xxxpredictiveHigh
73Filexxxx/x.xpredictiveMedium
74Filexxxxxx_xxx.xpredictiveMedium
75Filexxx/xxxxxx.xxxpredictiveHigh
76Filexxx/xxxxxxxxxxx/xxxxxxx.xxxpredictiveHigh
77Filexxxxxxxx/xxxxxxx/xxxxx-xxx.xxxpredictiveHigh
78Filexxxxx.xxxpredictiveMedium
79Filexxxxx.xxxpredictiveMedium
80Filexxxxx.xxpredictiveMedium
81Filexxxxxxxxxxxxx.xxxpredictiveHigh
82Filexxxxxxxxx/xxx/xxx_xxx.xpredictiveHigh
83Filexxxxxxx/xxxx/xxxxx.xxxxx.xxxpredictiveHigh
84Filexxx_xxxxxxx.xpredictiveHigh
85Filexxxxxxxxxxxx.xxxpredictiveHigh
86Filexxxxxx.xxxxxxpredictiveHigh
87Filexxxxxx/xxxxxxxxx.xxxpredictiveHigh
88Filexxxxxxxxxxxxxxxx.xxxpredictiveHigh
89Filexxxxxxx.xxxpredictiveMedium
90Filexxxxxxx/xxxx_xxx_xxxxx.xxxpredictiveHigh
91Filexxxxxxxxxx_xxxxxxx.xxxpredictiveHigh
92Filexxxxxx.xxpredictiveMedium
93Filexxx/xxx_xxxxx/xx_xxxxx.xpredictiveHigh
94Filexxx_xxxx.xxxpredictiveMedium
95Filexxxxxxxx/xxxxxx/xxxxxxxxx/xxxxxx/xxxxxxx_xxxxx.xxxxpredictiveHigh
96Filexxxxx.xxxpredictiveMedium
97Filexxxxx/_xxxxx.xxpredictiveHigh
98Filexxxxxxxx_xxxxxx.xxxpredictiveHigh
99Filexxxxxxxxx.xxxpredictiveHigh
100Filexxxxxxx/xxxxxxxxxxxxxxxxxxx/xxxxxxx.xxxpredictiveHigh
101Filexxxxxxx/xxxxxxxxxxxx/xxxxxxx.xxxpredictiveHigh
102Filexxxxx.xxxpredictiveMedium
103Filexxxx.xxxpredictiveMedium
104Filexxxxxxx-xxxx.xxxpredictiveHigh
105Filexxxxxxx.xxxpredictiveMedium
106Filexxxxxxxx.xxxpredictiveMedium
107Filexxxxxx/__xxxx__.xxpredictiveHigh
108Filexxxxx_xxxxxx_xxx.xxxpredictiveHigh
109Filexxxxxxx.xpredictiveMedium
110Filexxxx.xxxpredictiveMedium
111Filexxxxxxxxxx.xxxpredictiveHigh
112Filexxxxxxx.xxpredictiveMedium
113Filexxxxxxxx.xxxpredictiveMedium
114Filexxxxxxxx/xxxxx/xxxxxxxx?xxxxxxxxpredictiveHigh
115Filexxx/xxx_xxxpredictiveMedium
116Filexxx.xpredictiveLow
117Filexxxxx.xxxpredictiveMedium
118Filexxxx.xxxpredictiveMedium
119Filexxxx.xxpredictiveLow
120Filexxxxxxxxxxxxx.xxxpredictiveHigh
121Filexxxxxxxx.xxxpredictiveMedium
122Filexxxxxx.xxxpredictiveMedium
123Filexxxxx.xxxpredictiveMedium
124Filexxxxxxxx-xxxxxxxxxxx.xxxpredictiveHigh
125Filexxxxxxx/xxxxx/xxxx/xxxxpredictiveHigh
126Filexxx/xxxx/xxxx/xxxxxx/xxx/xxxxxxxxxxxxxxxx.xxxxpredictiveHigh
127Filexxxxxxxxx/xxxxxx.xxxxpredictiveHigh
128Filexxxx-xxxpredictiveMedium
129Filexxxx-xxxxx.xxxpredictiveHigh
130Filexxxx_xxx_xxxx.xxxpredictiveHigh
131Filexxxxxxxxx.xxxpredictiveHigh
132Filexxxxx/_xxxxxxxx.xxxpredictiveHigh
133Filexxxxxxx.xxxpredictiveMedium
134Filexx/xxxxxxxx/xxxxxxpredictiveHigh
135Filexxxxxxxxxx.xxxpredictiveHigh
136Filexxx.xxxpredictiveLow
137Filexxxx/xxxxxxxx/xxxxxxxx.xxxxpredictiveHigh
138Filexx/xxxxxx/xxxxxpredictiveHigh
139Filexxxxxxx.xxxpredictiveMedium
140Filexxxxx.xxxpredictiveMedium
141Filexxxxxx/xxxxx/xxxx_xxx.xxxpredictiveHigh
142Filexxxxxxxxxx.xxxpredictiveHigh
143Filexxxxxxxxx.xxxpredictiveHigh
144Filexx-xxxxx/xxxxxxxx/xxxxx-xxxx-xxxxxx-xxxxxxxx.xxxpredictiveHigh
145Filexx-xxxxx/xxxx.xxxpredictiveHigh
146Filexx-xxxxxxxx/xxxxx-xx-xxxxx.xxxpredictiveHigh
147Filexx-xxxxxxxx/xxxx-xxx/xxxxxxxxx/xxxxx-xx-xxxx-xxxxx-xxxxxxxxxx.xxxpredictiveHigh
148Filexxxxxxx.xxxxpredictiveMedium
149Filexxxxxxxx.xpredictiveMedium
150Filexxxx.xxpredictiveLow
151Filexx/xxx.xxxpredictiveMedium
152File_xxxxxxxx/xxxxxxxx.xxpredictiveHigh
153Library/_xxx_xxx/xxxxx.xxxpredictiveHigh
154Libraryxxxxx.xxxpredictiveMedium
155Libraryxxxx_xx.xxxpredictiveMedium
156Libraryxxxxxxxxx/xxx-xxxxxx/xxxxxxxx.xxxpredictiveHigh
157Libraryxxx_xxxxxxx.xxxpredictiveHigh
158Libraryxxxxxxxxxxx/xxxxxxxxxxx.xxxpredictiveHigh
159Libraryxxxxx.xxxpredictiveMedium
160Libraryxxxxxxxxxxxxx.xxxpredictiveHigh
161LibraryxxxxxxpredictiveLow
162Argument-xpredictiveLow
163Argumentxx_xxxxx_xxx_xxxxpredictiveHigh
164Argumentxxxxx_xxxxxxxxpredictiveHigh
165ArgumentxxxxxxpredictiveLow
166ArgumentxxxxxxxxpredictiveMedium
167ArgumentxxxxxpredictiveLow
168ArgumentxxxxxxxpredictiveLow
169ArgumentxxxpredictiveLow
170ArgumentxxxxxpredictiveLow
171Argumentxxx_xxxxpredictiveMedium
172Argumentxx_xxxxxxxxxxx[]predictiveHigh
173ArgumentxxxpredictiveLow
174ArgumentxxxxxxxxxxxxpredictiveMedium
175ArgumentxxxxxxxxxxxpredictiveMedium
176Argumentxxxx/xxxxpredictiveMedium
177Argumentxxx_xxxx_xxxxpredictiveHigh
178ArgumentxxxxpredictiveLow
179ArgumentxxxxxxpredictiveLow
180ArgumentxxxxxxxxxxxpredictiveMedium
181ArgumentxxxxxxxxxxxpredictiveMedium
182Argumentxxxx_xxxxxx=xxxxpredictiveHigh
183ArgumentxxxxpredictiveLow
184ArgumentxxxxxxxpredictiveLow
185ArgumentxxxxxpredictiveLow
186ArgumentxxxxpredictiveLow
187ArgumentxxxxxxxxpredictiveMedium
188ArgumentxxxxxxxxpredictiveMedium
189Argumentxxxx_xxpredictiveLow
190ArgumentxxxxxpredictiveLow
191ArgumentxxpredictiveLow
192Argumentxx=xxxxxx)predictiveMedium
193ArgumentxxxxxxxxxxxxpredictiveMedium
194ArgumentxxpredictiveLow
195Argumentxx/xxxxpredictiveLow
196ArgumentxxxpredictiveLow
197ArgumentxxxxxpredictiveLow
198ArgumentxxxxxxxxxpredictiveMedium
199Argumentxxxx_xxpredictiveLow
200ArgumentxxxxpredictiveLow
201Argumentxxxx/xxxxxx_xxxxpredictiveHigh
202Argumentxxxxxxxxxxxx/xxxxx/xxxxxx/xxx/xxx/xxxxxxxx/xxxxxxxxxpredictiveHigh
203ArgumentxxxpredictiveLow
204ArgumentxxxxxxpredictiveLow
205ArgumentxxxxpredictiveLow
206Argumentxxxxxx/xxxxxxx/xxxx_xxxx/xxxxxxx/xxxxpredictiveHigh
207ArgumentxxxpredictiveLow
208ArgumentxxxxxxxpredictiveLow
209ArgumentxxxxxxxpredictiveLow
210ArgumentxxxxpredictiveLow
211ArgumentxxxxxxxxpredictiveMedium
212Argumentxxxxx_xxxx_xxxxpredictiveHigh
213ArgumentxxxxxxxxxpredictiveMedium
214ArgumentxxxxxxxxpredictiveMedium
215Argumentxxxxxxx_xxpredictiveMedium
216Argumentxxxxx-xxxxxxxxxxxxxpredictiveHigh
217ArgumentxxxxxxxpredictiveLow
218Argumentxxxxxx_xxxxpredictiveMedium
219ArgumentxxxxxxxxpredictiveMedium
220Argumentxxxxxxx_xxxxpredictiveMedium
221ArgumentxxxxxxpredictiveLow
222ArgumentxxxxpredictiveLow
223ArgumentxxxxxxpredictiveLow
224Argumentxxxxxx xxxxxxxxxpredictiveHigh
225ArgumentxxxpredictiveLow
226ArgumentxxpredictiveLow
227ArgumentxxxxxxxxpredictiveMedium
228ArgumentxxxxxxxxxxxxpredictiveMedium
229Argumentxxxxxxxx_xxxxxpredictiveHigh
230ArgumentxxxxxpredictiveLow
231ArgumentxxxpredictiveLow
232ArgumentxxxxxpredictiveLow
233Argumentxxxxx_xxxxpredictiveMedium
234Argumentxxxx_xxpredictiveLow
235ArgumentxxxpredictiveLow
236ArgumentxxxpredictiveLow
237ArgumentxxxxxxxxxpredictiveMedium
238ArgumentxxxxxxxxpredictiveMedium
239Argumentxxxxxxxx/xxxxxxxx xx/xxxxxpredictiveHigh
240Argumentxxxx_xxxxxxxxx/xxxx_xxxxxxxxpredictiveHigh
241Argumentxxxx_xxpredictiveLow
242ArgumentxxxxxxxxxpredictiveMedium
243Argumentx-xxxxxxxxx-xxxpredictiveHigh
244Argumentx-xxxxxxxxx-xxxpredictiveHigh
245Argumentx-xxxxxx-xxxxxxpredictiveHigh
246Argument\xxxxxx\predictiveMedium
247Argument__xxx__predictiveLow
248Input Value%xxxxxx+-x+x+xx.x.xx.xxx%xx%xxpredictiveHigh
249Input Value..predictiveLow
250Input Value../predictiveLow
251Input Value..\..predictiveLow
252Input Value/..predictiveLow
253Input Valuexxxxx' xxx (xxxxxx xxxx xxxx (xxxxxx(xxxxx(x)))xxxx) xxx 'xxxx'='xxxx&xxxxxxxx=xxxxxxxxxxpredictiveHigh
254Input Valuexxx (xxxxxx xxxx xxxx(xxxxxx xxxxx(*),xxxxxx(xxxxxxxxxxxx,(xxxxxx (xxx(xxxx=xxxx,x))),xxxxxxxxxxxx,xxxxx(xxxx(x)*x))x xxxx xxxxxxxxxxx_xxxxxx.xxxxxxxxx_xxxx xxxxx xx x)x)predictiveHigh
255Input Value|<xxxxxxx>predictiveMedium
256Patternxxx xxxx|xx xx|xxxxx xxxxpredictiveHigh
257Network Portxxx/xxx (xxx)predictiveHigh
258Network Portxx xxxxxxx xxx.xx.xx.xxpredictiveHigh
259Network Portxxx/xxxxpredictiveMedium
260Network Portxxx/xxx (xxxx)predictiveHigh

References (2)

The following list contains external sources which discuss the actor and the associated activities:

Do you want to use VulDB in your project?

Use the official API to access entries easily!