Karakurt Analysis

IOB - Indicator of Behavior (1000)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en154
zh114
es98
pl88
fr80

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

MailCleaner8
Tenda W15E6
Microsoft Windows4
Tenda i214
Tenda TX94

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemEPSSCTICVE
1Apryse WebViewer PDF Document cross site scripting3.53.2$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.000450.10CVE-2024-4327
2MailCleaner Email os command injection9.89.5$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.000460.15CVE-2024-3191
3osCommerce all-products cross site scripting4.33.9$0-$5k$0-$5kProof-of-ConceptNot Defined0.000650.15CVE-2024-4348
4MailCleaner Admin Interface cross site scripting5.85.7$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.000450.05CVE-2024-3192
5SourceCodester Pisay Online E-Learning System controller.php unrestricted upload7.36.6$0-$5k$0-$5kProof-of-ConceptNot Defined0.000450.05CVE-2024-4349
6MailCleaner Admin Endpoints os command injection8.88.5$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.000460.20CVE-2024-3193
7BloomPixel Max Addons Pro for Bricks Plugin authorization6.56.4$0-$5k$0-$5kNot DefinedNot Defined0.000430.08CVE-2024-32951
8Extend Themes Teluro Plugin cross-site request forgery4.34.2$0-$5k$0-$5kNot DefinedNot Defined0.000430.05CVE-2024-33688
9Elementor ImageBox Plugin cross site scripting3.53.4$0-$5k$0-$5kNot DefinedNot Defined0.000450.04CVE-2024-3074
10Apache HTTP Server mod_lua Multipart Parser r:parsebody out-of-bounds write8.58.4$25k-$100k$5k-$25kNot DefinedOfficial Fix0.088080.00CVE-2021-44790
11Dell Wyse Proprietary OS Telemetry Dashboard information disclosure4.74.7$0-$5k$0-$5kNot DefinedNot Defined0.000430.04CVE-2024-28963
12Apache Parquet Parquet-MR denial of service3.53.4$0-$5k$0-$5kNot DefinedOfficial Fix0.000860.00CVE-2021-41561
13Foliovision FV Flowplayer Video Player Plugin server-side request forgery5.65.5$0-$5k$0-$5kNot DefinedNot Defined0.000430.03CVE-2024-32955
14Dell Repository Manager API Module improper authorization8.38.1$5k-$25k$0-$5kNot DefinedOfficial Fix0.000430.03CVE-2024-28976
15Jegstudio Financio Plugin cross-site request forgery4.34.2$0-$5k$0-$5kNot DefinedNot Defined0.000430.03CVE-2024-33690
16ThemeNcode Fan Page Widget by Plugin cross site scripting4.14.1$0-$5k$0-$5kNot DefinedNot Defined0.000430.00CVE-2024-33695
17AnnounceKit Plugin cross site scripting2.42.4$0-$5k$0-$5kNot DefinedNot Defined0.000450.04CVE-2024-3023
18Repute Infosystems ARMember Plugin authorization7.87.7$0-$5k$0-$5kNot DefinedNot Defined0.000430.05CVE-2024-32948
19Dell Repository Manager Logger Module improper authorization3.33.3$0-$5k$0-$5kNot DefinedNot Defined0.000430.07CVE-2024-28977
20Pavex Embed Google Photos Album Plugin server-side request forgery5.65.5$0-$5k$0-$5kNot DefinedNot Defined0.000430.07CVE-2024-32775

IOC - Indicator of Compromise (23)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

TTP - Tactics, Techniques, Procedures (17)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IOA - Indicator of Attack (100)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/building/backmgr/urlpage/mobileurl/configfile/jx2_config.inipredictiveHigh
2File/catalog/all-productspredictiveHigh
3File/changePasswordpredictiveHigh
4File/forum/away.phppredictiveHigh
5File/goform/addIpMacBindpredictiveHigh
6File/goform/DelDhcpRulepredictiveHigh
7File/goform/delIpMacBindpredictiveHigh
8File/goform/DelPortMappingpredictiveHigh
9File/goform/modifyDhcpRulepredictiveHigh
10File/goform/modifyIpMacBindpredictiveHigh
11File/goform/setBlackRulepredictiveHigh
12File/goform/SetDDNSCfgpredictiveHigh
13File/xxxxxx/xxxxxxxxxpredictiveHigh
14File/xxxxxx/xxxxxxxxxxxxxxxxpredictiveHigh
15File/xxxxxx/xxxxxxxxxxxxxxpredictiveHigh
16File/xxxxxx/xxxxxxxxxxxxxpredictiveHigh
17File/xxxxxx/xxxxxxxxxxxpredictiveHigh
18File/xxxxxx/xxxxxxxxxx.xxxpredictiveHigh
19File/xxxxxxxxxxx.xxx/xxxxxxxxpredictiveHigh
20File/xxxxxx_xx.xxxpredictiveHigh
21File/xxx.xxxpredictiveMedium
22File/xxxxx.xxxx.xxxpredictiveHigh
23File/xxxxxxxx.xxxpredictiveHigh
24File/xxx/xxxxxxx/xxxpredictiveHigh
25File/xxxxxxxx/xxxxxxxxxxxxxxx.xxxpredictiveHigh
26File/xxxx/xxxxxxx xxxxxx/xxx/xxx_xxxx_xxxxxx.xxxpredictiveHigh
27File/xxxx/xxxxxx_xxx.xxxpredictiveHigh
28Filexxxxxxx.xxpredictiveMedium
29Filexxxxx/xxxxxxx/xxxxxxxxxxxxx.xxpredictiveHigh
30Filexxxxx.xxxpredictiveMedium
31Filexx/xxxxx/xxxxxx_xxxxx.xxxpredictiveHigh
32Filexxxxxxxxxxxx.xxxpredictiveHigh
33Filexxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
34Filexxx/xxxxxx.xxxpredictiveHigh
35Filexxxxx.xxxpredictiveMedium
36Filexxxxxxx.xxxpredictiveMedium
37Filexxxxxxx/xxxxxxxx.xxxpredictiveHigh
38Filexx.xxxpredictiveLow
39Filexx/xxxxxx/xxxxxxxxxxpredictiveHigh
40Filexxxxx/xxxxxxxx/xxxxxxxxxxxx/xxxxxxxxxxxxpredictiveHigh
41Filexxxxx.xxxpredictiveMedium
42Filexxxxxxx.xxxpredictiveMedium
43Filexxxxxxxx.xxxpredictiveMedium
44Filexxxxx.xxxx.xxxpredictiveHigh
45Filexxx.xxpredictiveLow
46Filexxxxxxx\xxxxxxxxxx.xxxpredictiveHigh
47Filexxxxxxxx.xxxpredictiveMedium
48Filexxxxxxxx.xxxpredictiveMedium
49Filexxxxxxxx_xx.xxxpredictiveHigh
50Filexxxxxxxxxxxxxxxx.xxxpredictiveHigh
51Filexxxxxxxxxxx/xxxxxxxxxxxx/xxxxxxxxxxxxxxpredictiveHigh
52Filexxxxxxxxxxxxxxx.xxxpredictiveHigh
53Filexxxx-xxxxx.xxxpredictiveHigh
54Filexxxx-xxxxxxxx.xxxpredictiveHigh
55Filexxxxxxxxx/xx_xxxxxxxxx.xxxpredictiveHigh
56Libraryxxxx/xxx/xxxxxx.xxxpredictiveHigh
57Argumentxxxxx_xxxxxpredictiveMedium
58ArgumentxxxxxxxxpredictiveMedium
59ArgumentxxxxxxxxxxxxxpredictiveHigh
60ArgumentxxxpredictiveLow
61Argumentxxxxxxxxx[x]predictiveMedium
62ArgumentxxxxxxxxxpredictiveMedium
63ArgumentxxxxxpredictiveLow
64ArgumentxxxxxxxxxxxxpredictiveMedium
65ArgumentxxxxxxxxxxpredictiveMedium
66ArgumentxxxxxxxpredictiveLow
67ArgumentxxpredictiveLow
68ArgumentxxxxxxxxpredictiveMedium
69ArgumentxxxxpredictiveLow
70ArgumentxxxxxxxxxxxxxxxxxxxxxxpredictiveHigh
71Argumentxx/xxxxpredictiveLow
72ArgumentxxxxxxxpredictiveLow
73ArgumentxxpredictiveLow
74ArgumentxxpredictiveLow
75ArgumentxxxxxxxxxxxxxxpredictiveHigh
76ArgumentxxxxxxxxxxxxxpredictiveHigh
77Argumentxxxxxxxxxxxxxxx/xxxxxxxxxxxxxxx/xxxxxxxxxxxxxxxx/xxxxxxxxxxxxxxxxxxxpredictiveHigh
78ArgumentxxxxxxxxxxpredictiveMedium
79ArgumentxxxxxxxxxxxxpredictiveMedium
80Argumentxx_xxxxxx_xxxxxxxxxxxxpredictiveHigh
81Argumentxx_xxxxxpredictiveMedium
82ArgumentxxxxpredictiveLow
83Argumentxxxx/xxxxxx/xxxxxxxpredictiveHigh
84ArgumentxxxxxxxxxxxpredictiveMedium
85Argumentxxxxxxx/xxxpredictiveMedium
86ArgumentxxxxxxxxxxxxxxxxpredictiveHigh
87Argumentxxxxxxx_xxxxxxx_xxxxx_xxxxx_xxxxxpredictiveHigh
88ArgumentxxxxxxpredictiveLow
89ArgumentxxxxxxxxpredictiveMedium
90ArgumentxxxxxxxxxxxxxxxxxxpredictiveHigh
91ArgumentxxxxxxxxxpredictiveMedium
92Argumentxxxxxxxxxx/xxxxxxxx/xxxxxxx/xxxxxxxxxxpredictiveHigh
93ArgumentxxxpredictiveLow
94ArgumentxxxxxxxxxpredictiveMedium
95ArgumentxxxxxxxxxxxxxxxxpredictiveHigh
96ArgumentxxxxxxpredictiveLow
97ArgumentxxxxpredictiveLow
98ArgumentxxxxxxxxxxpredictiveMedium
99Argumentxxx_xxxpredictiveLow
100Argumentxxxx/xxxxx/xxx/xxxx/xxxxxx/xxxxxxpredictiveHigh

References (3)

The following list contains external sources which discuss the actor and the associated activities:

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!