Dofoil Analysis

IOB - Indicator of Behavior (1000)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en144
zh122
ru90
it86
pl80

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Tenda W15E10
MailCleaner6
Tenda i216
Dell Repository Manager4
Apache HTTP Server4

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemEPSSCTICVE
1Apryse WebViewer PDF Document cross site scripting3.53.2$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.000450.07CVE-2024-4327
2MailCleaner Email os command injection9.89.5$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.000460.07CVE-2024-3191
3osCommerce all-products cross site scripting4.33.9$0-$5k$0-$5kProof-of-ConceptNot Defined0.000650.04CVE-2024-4348
4MailCleaner Admin Interface cross site scripting5.85.7$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.000450.04CVE-2024-3192
5SourceCodester Pisay Online E-Learning System controller.php unrestricted upload7.36.6$0-$5k$0-$5kProof-of-ConceptNot Defined0.000450.23CVE-2024-4349
6MailCleaner Admin Endpoints os command injection8.88.5$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.000460.08CVE-2024-3193
7BloomPixel Max Addons Pro for Bricks Plugin authorization6.56.4$0-$5k$0-$5kNot DefinedNot Defined0.000430.08CVE-2024-32951
8Elementor ImageBox Plugin cross site scripting3.53.4$0-$5k$0-$5kNot DefinedNot Defined0.000450.04CVE-2024-3074
9Extend Themes Teluro Plugin cross-site request forgery4.34.2$0-$5k$0-$5kNot DefinedNot Defined0.000430.05CVE-2024-33688
10Apache HTTP Server mod_lua Multipart Parser r:parsebody out-of-bounds write8.58.4$25k-$100k$5k-$25kNot DefinedOfficial Fix0.088080.04CVE-2021-44790
11Dell Wyse Proprietary OS Telemetry Dashboard information disclosure4.74.7$0-$5k$0-$5kNot DefinedNot Defined0.000430.04CVE-2024-28963
12Apache Parquet Parquet-MR denial of service3.53.4$0-$5k$0-$5kNot DefinedOfficial Fix0.000860.00CVE-2021-41561
13Foliovision FV Flowplayer Video Player Plugin server-side request forgery5.65.5$0-$5k$0-$5kNot DefinedNot Defined0.000430.03CVE-2024-32955
14Dell Repository Manager API Module improper authorization8.38.1$5k-$25k$0-$5kNot DefinedOfficial Fix0.000430.04CVE-2024-28976
15Jegstudio Financio Plugin cross-site request forgery4.34.2$0-$5k$0-$5kNot DefinedNot Defined0.000430.03CVE-2024-33690
16ThemeNcode Fan Page Widget by Plugin cross site scripting4.14.1$0-$5k$0-$5kNot DefinedNot Defined0.000430.00CVE-2024-33695
17AnnounceKit Plugin cross site scripting2.42.4$0-$5k$0-$5kNot DefinedNot Defined0.000450.04CVE-2024-3023
18Repute Infosystems ARMember Plugin authorization7.87.7$0-$5k$0-$5kNot DefinedNot Defined0.000430.07CVE-2024-32948
19Dell Repository Manager Logger Module improper authorization3.33.3$0-$5k$0-$5kNot DefinedNot Defined0.000430.07CVE-2024-28977
20Pavex Embed Google Photos Album Plugin server-side request forgery5.65.5$0-$5k$0-$5kNot DefinedNot Defined0.000430.07CVE-2024-32775

IOC - Indicator of Compromise (61)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsIdentifiedTypeConfidence
15.149.253.100enappiv.comDofoil03/10/2022verifiedMedium
28.110.105.136Dofoil04/08/2022verifiedMedium
38.123.232.109Dofoil04/08/2022verifiedMedium
413.107.21.200Dofoil07/22/2021verifiedMedium
523.3.13.137a23-3-13-137.deploy.static.akamaitechnologies.comDofoil07/22/2021verifiedMedium
623.6.24.15a23-6-24-15.deploy.static.akamaitechnologies.comDofoil07/22/2021verifiedMedium
723.6.65.194a23-6-65-194.deploy.static.akamaitechnologies.comDofoil07/22/2021verifiedMedium
823.209.185.159a23-209-185-159.deploy.static.akamaitechnologies.comDofoil07/22/2021verifiedMedium
927.100.36.191Dofoil07/22/2021verifiedMedium
1037.230.112.146audiotop.ruDofoil03/10/2022verifiedMedium
1145.63.25.5545.63.25.55.vultr.comDofoil07/22/2021verifiedLow
1250.3.75.246web.netkolik.orgDofoil07/22/2021verifiedMedium
1350.21.183.63Dofoil07/22/2021verifiedMedium
14XX.XX.XX.XXxx-xx-xx-xx.xxxxxxxxx.xxx.xxxxxXxxxxx04/12/2022verifiedLow
15XX.XXX.XX.XXXxxx.xxxxxxxxxxx.xxXxxxxx03/10/2022verifiedMedium
16XX.XXX.XX.XXXxxxxxx.xxxx.xxXxxxxx03/10/2022verifiedMedium
17XX.XXX.XX.XXXxxxxx-xx.xxxXxxxxx03/10/2022verifiedMedium
18XX.XXX.XX.XXXxx.xxxxxxxxxx.xxxx.xxXxxxxx03/10/2022verifiedMedium
19XX.XXX.XXX.XXXxxxxx07/22/2021verifiedMedium
20XX.XX.XXX.XXXxxxxx03/10/2022verifiedMedium
21XX.XXX.XX.XXXxxxxxxx-xxx-xxx-xxx-xxx.xx.xxx.xxxx.xxxxxxxxxx.xxXxxxxx04/08/2022verifiedLow
22XX.XXX.XXX.XXxx.xxx.xxx.xx.xxx.xxx.xxxXxxxxx04/08/2022verifiedMedium
23XX.XXX.X.XXXXxxxxx04/08/2022verifiedMedium
24XX.XXX.XX.XXXxx-xxx-xx-xxx.xxxx.xxxxxx.xxXxxxxx04/08/2022verifiedLow
25XX.XXX.XXX.XXx-xxxxxxxx.xx-xxx-xxxxxxx.xxxxxx.xxxxxxx.xxXxxxxx04/08/2022verifiedMedium
26XX.XXX.XXX.XXxx-xxx-xxx-xx.xxxxxxxxxxx.xxXxxxxx03/10/2022verifiedLow
27XX.XX.XX.XXXxxxxx07/22/2021verifiedMedium
28XX.XXX.XX.XXXxxxxxxx.xxxxxx-xx-xxxxxx.xxXxxxxx03/10/2022verifiedLow
29XX.XXX.XXX.XXxx-xxx-xxx-xx.xxxxxx.xxxxxxx.xxXxxxxx04/08/2022verifiedMedium
30XX.XX.XXX.XXXxxxxx04/08/2022verifiedMedium
31XX.XXX.XX.XXXx-xx-xxx-xx-xxx.xxxx.xx.xxxxxxx.xxxXxxxxx04/08/2022verifiedMedium
32XX.XX.XXX.XXXXxxxxx04/08/2022verifiedMedium
33XX.XXX.X.XXXxxxx-xx-xxx-x-xxx.xxx.xxxxxx.xxxxxxxxx.xxxXxxxxx04/08/2022verifiedLow
34XXX.XX.XX.XXXXxxxxx07/22/2021verifiedMedium
35XXX.XXX.XX.XXXxxxx-xxx-xx-xxx.xxxxxx.xxxxxx.xxxxxxxxxxxxxxxxxx.xxxXxxxxx07/22/2021verifiedMedium
36XXX.XXX.XXX.XXxxxxx-xxxxxx.xxxxxxxxxxxx.xxxXxxxxx07/22/2021verifiedMedium
37XXX.XXX.XX.XXXXxxxxx07/22/2021verifiedMedium
38XXX.XX.XXX.XXXxxxx.xxxxxxx.xxxxxxXxxxxx03/10/2022verifiedMedium
39XXX.XX.XXX.XXxxxxxx.xx.xxx.xx.xxx.xxxxxxx.xxxx-xxxxxx.xxXxxxxx07/22/2021verifiedMedium
40XXX.XXX.XXX.XXXxxxxxxxxxxx.xxxxxx-xx.xxxXxxxxx03/10/2022verifiedMedium
41XXX.XXX.XX.XXXxxxxxxxx-xx-xxx.xxxxx.xxxXxxxxx07/22/2021verifiedMedium
42XXX.XXX.XXX.XXXxxx.xxx.xxx.xxx.xxxx.xxxxxxxxxxxxxxxxxxxx.xxxXxxxxx07/22/2021verifiedMedium
43XXX.XX.XXX.XXXxxx.xxxxxx.xxxXxxxxx07/22/2021verifiedMedium
44XXX.XX.XXX.XXxxx.xx.xxx.xx.xxxxxxxxx-xxxXxxxxx03/10/2022verifiedMedium
45XXX.XX.XX.XXxxxxxxxxxxxxxx.xxxxxxx.xxxXxxxxx03/10/2022verifiedMedium
46XXX.XXX.XX.XXxxxx.xxxxxx.xxxXxxxxx03/10/2022verifiedMedium
47XXX.XXX.XXX.XXXxxxxx07/22/2021verifiedMedium
48XXX.XXX.XXX.XXXxxxxxx.xxxxx.xxXxxxxx07/22/2021verifiedMedium
49XXX.XXX.XXX.XXxxxx.xxxxxxxxx.xxxxXxxxxx03/10/2022verifiedMedium
50XXX.XXX.XXX.XXXxxxx.xxxxxxxxx.xxxxXxxxxx03/10/2022verifiedMedium
51XXX.XXX.XXX.XXXxxxx.xxxxxxxxx.xxxxXxxxxx03/10/2022verifiedMedium
52XXX.XXX.XXX.XXxxxxxxxxxx.xxxxxxxxx.xxxxXxxxxx03/10/2022verifiedLow
53XXX.XXX.XXX.XXXxxxx.xxxxxxxxx.xxxxXxxxxx03/10/2022verifiedMedium
54XXX.XXX.XX.XX.Xxxxxx03/10/2022verifiedMedium
55XXX.XXX.XXX.XXXXxxxxx03/10/2022verifiedMedium
56XXX.XX.XXX.XXxxxx.xxxxxxxxxxx.xxxXxxxxx07/22/2021verifiedMedium
57XXX.XXX.XXX.XXXxxxxxxxxxxx.xxxxxx.xxxXxxxxx03/10/2022verifiedMedium
58XXX.XXX.XXX.XXXxxxxxx.xxx.xxx.xxx.xxx.xxxxxxx.xxxx-xxxxxx.xxXxxxxx07/22/2021verifiedMedium
59XXX.XX.XXX.XXXxxx.xxx.xx.xxx.xxxx.xxxx.xxxXxxxxx07/22/2021verifiedMedium
60XXX.XXX.XX.XXxxx-xxx-xx-xx.xxxxx.xxx.xxXxxxxx07/22/2021verifiedMedium
61XXX.XXX.XX.XXxxxxxxxx.xxxxx.xxxxxXxxxxx03/10/2022verifiedMedium

TTP - Tactics, Techniques, Procedures (17)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IOA - Indicator of Attack (95)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/building/backmgr/urlpage/mobileurl/configfile/jx2_config.inipredictiveHigh
2File/catalog/all-productspredictiveHigh
3File/changePasswordpredictiveHigh
4File/forum/away.phppredictiveHigh
5File/goform/addIpMacBindpredictiveHigh
6File/goform/DelDhcpRulepredictiveHigh
7File/goform/delIpMacBindpredictiveHigh
8File/goform/DelPortMappingpredictiveHigh
9File/goform/modifyDhcpRulepredictiveHigh
10File/goform/modifyIpMacBindpredictiveHigh
11File/goform/setBlackRulepredictiveHigh
12File/xxxxxx/xxxxxxxxxxpredictiveHigh
13File/xxxxxx/xxxxxxxxxpredictiveHigh
14File/xxxxxx/xxxxxxxxxxxxxxxxpredictiveHigh
15File/xxxxxx/xxxxxxxxxxxxxxpredictiveHigh
16File/xxxxxx/xxxxxxxxxxxxxpredictiveHigh
17File/xxxxxx/xxxxxxxxxxxpredictiveHigh
18File/xxxxxx/xxxxxxxxxx.xxxpredictiveHigh
19File/xxxxxxxxxxx.xxx/xxxxxxxxpredictiveHigh
20File/xxxxxx_xx.xxxpredictiveHigh
21File/xxx.xxxpredictiveMedium
22File/xxxxx.xxxx.xxxpredictiveHigh
23File/xxxxxxxx.xxxpredictiveHigh
24File/xxx/xxxxxxx/xxxpredictiveHigh
25File/xxxxxx.xx/_xxxx/xxxxxpredictiveHigh
26File/xxxxxxxx/xxxxxxxxxxxxxxx.xxxpredictiveHigh
27File/xxxx/xxxxxxx xxxxxx/xxx/xxx_xxxx_xxxxxx.xxxpredictiveHigh
28File/xxxx/xxxxxx_xxx.xxxpredictiveHigh
29Filexxxxxxx.xxpredictiveMedium
30Filexxxxx/xxxxxxx/xxxxxxxxxxxxx.xxpredictiveHigh
31Filexxxxx.xxxpredictiveMedium
32Filexx/xxxxxxx.xpredictiveMedium
33Filexxxxxxxxxxxx.xxxpredictiveHigh
34Filexxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
35Filexxx/xxxxxx.xxxpredictiveHigh
36Filexxx/xxxxxxxxxxx/xxxxxxx.xxxpredictiveHigh
37Filexxxxxxx.xxxpredictiveMedium
38Filexxxxxxx/xxxxxxxx.xxxpredictiveHigh
39Filexx.xxxpredictiveLow
40Filexx/xxxxxx/xxxxxxxxxxpredictiveHigh
41Filexxxxx/xxxxxxxx/xxxxxxxxxxxx/xxxxxxxxxxxxpredictiveHigh
42Filexxxxx.xxxpredictiveMedium
43Filexxxxxxxx.xxxpredictiveMedium
44Filexxxxx.xxxx.xxxpredictiveHigh
45Filexxx.xxpredictiveLow
46Filexxxxxxxx.xxxpredictiveMedium
47Filexxxxxxxx.xxxpredictiveMedium
48Filexxxxxxxx_xx.xxxpredictiveHigh
49Filexxxxxxxxxxxxxxxx.xxxpredictiveHigh
50Filexxxxxxxxxxx/xxxxxxxxxxxx/xxxxxxxxxxxxxxpredictiveHigh
51Filexxxxxxxxxxxxxxx.xxxpredictiveHigh
52Filexxxx-xxxxx.xxxpredictiveHigh
53Filexxxx-xxxxxxxx.xxxpredictiveHigh
54Filexxxxxxxxx/xx_xxxxxxxxx.xxxpredictiveHigh
55Argumentxxxxx_xxxxxpredictiveMedium
56ArgumentxxxxxxxxpredictiveMedium
57ArgumentxxxxxxxxxxxxxpredictiveHigh
58ArgumentxxxpredictiveLow
59ArgumentxxxxxxxxxpredictiveMedium
60ArgumentxxxxxpredictiveLow
61ArgumentxxxxxxxxxxxxpredictiveMedium
62ArgumentxxxxxxxxxxpredictiveMedium
63ArgumentxxxxxxxpredictiveLow
64ArgumentxxpredictiveLow
65ArgumentxxxxxxxxpredictiveMedium
66ArgumentxxxxpredictiveLow
67ArgumentxxxxxxxxxxxxxxxxxxxxxxpredictiveHigh
68Argumentxx/xxxxpredictiveLow
69ArgumentxxxxxxxpredictiveLow
70ArgumentxxpredictiveLow
71ArgumentxxpredictiveLow
72ArgumentxxxxxxxxxxxxxxpredictiveHigh
73ArgumentxxxxxxxxxxxxxpredictiveHigh
74Argumentxxxxxxxxxxxxxxx/xxxxxxxxxxxxxxx/xxxxxxxxxxxxxxxx/xxxxxxxxxxxxxxxxxxxpredictiveHigh
75ArgumentxxxxxxxxxxpredictiveMedium
76ArgumentxxxxxxxxxxxxpredictiveMedium
77Argumentxx_xxxxxx_xxxxxxxxxxxxpredictiveHigh
78Argumentxx_xxxxxpredictiveMedium
79ArgumentxxxxpredictiveLow
80Argumentxxxx/xxxxxx/xxxxxxxpredictiveHigh
81ArgumentxxxxxxxxxxxpredictiveMedium
82ArgumentxxxxxxxxxxxxxxxxpredictiveHigh
83Argumentxxxxxxx_xxxxxxx_xxxxx_xxxxx_xxxxxpredictiveHigh
84ArgumentxxxxxxpredictiveLow
85ArgumentxxxxxxxxpredictiveMedium
86ArgumentxxxxxxxxxxxxxxxxxxpredictiveHigh
87ArgumentxxxxxxxxxpredictiveMedium
88Argumentxxxxxxxxxx/xxxxxxxx/xxxxxxx/xxxxxxxxxxpredictiveHigh
89ArgumentxxxpredictiveLow
90ArgumentxxxxxxxxxpredictiveMedium
91ArgumentxxxxxxxxxxxxxxxxpredictiveHigh
92ArgumentxxxxpredictiveLow
93ArgumentxxxxxxxxxxpredictiveMedium
94Argumentxxx_xxxpredictiveLow
95Argumentxxxx/xxxxx/xxx/xxxx/xxxxxx/xxxxxxpredictiveHigh

References (6)

The following list contains external sources which discuss the actor and the associated activities:

Do you need the next level of professionalism?

Upgrade your account now!