Kuluoz Analysis

IOB - Indicator of Behavior (155)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en108
pl32
fr6
es4
ru2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

us108
pl14
ru4
tr2
fr2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

AWStats8
Apple Mac OS X4
Google Android2
Apple macOS2
Liferay Portal2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemCTIEPSSCVE
1Thomas R. Pasawicz HyperBook Guestbook Password Database gbconfiguration.dat Hash information disclosure5.35.2$5k-$25k$0-$5kHighWorkaround0.020.02016CVE-2007-1192
2DZCP deV!L`z Clanportal config.php code injection7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.970.00954CVE-2010-0966
3X2Engine X2CRM File Upload ProfileController.php actionUploadPhoto unrestricted upload7.57.2$0-$5k$0-$5kNot DefinedOfficial Fix0.000.01461CVE-2014-2664
4Bitrix Site Manager redirect.php link following5.34.7$0-$5k$0-$5kUnprovenUnavailable0.080.00113CVE-2008-2052
5MGB OpenSource Guestbook email.php sql injection7.37.3$0-$5k$0-$5kHighUnavailable0.710.02462CVE-2007-0354
6TG Soft Vir.IT eXplorer IoControlCode VIRAGTLT.sys 0x82730088 denial of service5.25.0$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.030.00042CVE-2023-1369
7Comsenz Discuz index.php sql injection7.37.1$0-$5k$0-$5kHighUnavailable0.030.00100CVE-2008-3554
8Apple Mac OS X Server Wiki Server cross site scripting4.34.3$5k-$25k$0-$5kNot DefinedNot Defined0.080.00263CVE-2009-2814
9Esoftpro Online Guestbook Pro ogp_show.php sql injection7.36.9$0-$5k$0-$5kProof-of-ConceptNot Defined0.320.00108CVE-2009-4935
10SourceCodester Employee and Visitor Gate Pass Logging System GET Parameter view_designation.php sql injection7.16.9$0-$5k$0-$5kProof-of-ConceptNot Defined0.070.00117CVE-2023-2090
11Mikrobi Babel redirect.php6.66.6$0-$5k$0-$5kNot DefinedNot Defined0.030.00215CVE-2019-1010290
12AWStats Hostinfo Plugin XWhois cross site scripting4.84.7$0-$5k$0-$5kNot DefinedOfficial Fix0.040.00239CVE-2022-46391
13AWStats awstats.pl Path information disclosure5.35.3$0-$5k$0-$5kNot DefinedNot Defined0.010.00159CVE-2018-10245
14AWStats awstats.pl pathname traversal6.66.6$0-$5k$0-$5kNot DefinedNot Defined0.030.00229CVE-2020-29600
15AWStats awstats.pl pathname traversal5.55.5$0-$5k$0-$5kNot DefinedNot Defined0.010.00499CVE-2020-35176
16WordPress post.php wp_delete_attachment path traversal5.95.8$5k-$25k$0-$5kNot DefinedOfficial Fix0.030.82323CVE-2018-12895
17Apache Tomcat CGI Servlet access control8.17.9$5k-$25k$0-$5kNot DefinedOfficial Fix0.020.94822CVE-2016-5388
18Axigen Mobile WebMail reset-password index_mobile_changepass.hsp cross site scripting3.53.4$0-$5k$0-$5kNot DefinedOfficial Fix0.020.00116CVE-2022-31470
19cPanel Boxtrapper cgi-sys Script bxd.cgi denial of service4.34.1$0-$5k$0-$5kNot DefinedOfficial Fix0.070.00000
20Francisco Burzi PHP-Nuke Downloads Module viewsdownload sql injection5.35.3$0-$5k$0-$5kNot DefinedNot Defined0.020.00188CVE-2005-0996

IOC - Indicator of Compromise (195)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsIdentifiedTypeConfidence
15.39.86.97ns322773.ip-5-39-86.euKuluoz05/08/2023verifiedHigh
25.56.58.118www.nsuestudio.comKuluoz04/17/2023verifiedHigh
35.79.6.80Kuluoz05/05/2022verifiedHigh
45.175.166.35Kuluoz04/30/2022verifiedHigh
55.231.54.233skyfte.christmasnovember.comKuluoz05/05/2022verifiedHigh
65.249.139.132estro-studio.comKuluoz04/30/2022verifiedHigh
713.32.208.34server-13-32-208-34.iad66.r.cloudfront.netKuluoz10/03/2021verifiedHigh
816.156.201.237Kuluoz04/30/2022verifiedHigh
923.227.182.20723-227-182-207.static.hvvc.usKuluoz05/15/2023verifiedHigh
1031.47.250.41vadmin180.configcenter.infoKuluoz04/29/2022verifiedHigh
1131.186.5.20Kuluoz06/19/2022verifiedHigh
1237.26.108.41Kuluoz04/14/2022verifiedHigh
1337.35.107.208incmalta.comKuluoz06/25/2022verifiedHigh
1437.59.24.98ns3043472.ip-37-59-24.euKuluoz08/14/2021verifiedHigh
1537.59.82.218Kuluoz05/05/2022verifiedHigh
1637.59.212.214Kuluoz06/25/2022verifiedHigh
1746.4.105.170static.170.105.4.46.clients.your-server.deKuluoz05/05/2022verifiedHigh
1846.55.222.24Kuluoz05/05/2022verifiedHigh
1946.105.117.13ns349046.ip-46-105-117.euKuluoz05/05/2022verifiedHigh
2050.56.124.3550-56-124-35.static.cloud-ips.comKuluoz04/29/2022verifiedHigh
2150.57.99.16050-57-99-160.static.cloud-ips.comKuluoz04/28/2022verifiedHigh
2250.57.139.4150-57-139-41.static.cloud-ips.comKuluoz05/05/2022verifiedHigh
2358.83.159.94Kuluoz09/17/2022verifiedHigh
2462.75.143.211static-ip-62-75-143-211.inaddr.ip-pool.comKuluoz04/14/2022verifiedHigh
2562.75.188.224static-ip-62-75-188-224.inaddr.ip-pool.comKuluoz05/06/2022verifiedHigh
2662.112.157.126Kuluoz05/06/2022verifiedHigh
2764.76.19.249boromir.mauriciofrappa.com.arKuluoz04/14/2022verifiedHigh
2864.91.226.48Kuluoz01/08/2022verifiedHigh
2964.128.16.144sahajmarg.infoKuluoz05/05/2022verifiedHigh
3065.181.127.125pentos.yahomail.todayKuluoz01/08/2022verifiedHigh
3166.45.253.250lyndsey.interserver.netKuluoz06/19/2022verifiedHigh
3267.18.12.2go.phpwebhosting.comKuluoz06/19/2022verifiedHigh
3367.231.22.199server5.acuitytec.comKuluoz06/19/2022verifiedHigh
3469.64.32.247dragon324.dedicatedpanel.comKuluoz08/14/2021verifiedHigh
3569.64.36.244colossus820.dedicatedpanel.comKuluoz04/30/2022verifiedHigh
3669.93.231.252fc.e7.5d45.static.theplanet.comKuluoz04/29/2022verifiedHigh
3770.32.100.120Kuluoz05/05/2022verifiedHigh
3874.50.60.116Kuluoz08/20/2022verifiedHigh
3974.208.65.138u19322276.onlinehome-server.comKuluoz04/17/2023verifiedHigh
40XX.XXX.XXX.XXXXxxxxx04/14/2022verifiedHigh
41XX.XXX.XXX.XXxx.xxx.xxx.xx.xxxxxxx.xxxXxxxxx08/14/2021verifiedHigh
42XX.XX.XXX.XXXXxxxxx05/05/2022verifiedHigh
43XX.XX.XX.XXxxx.xxxxxxxxxxxxxxx.xxxXxxxxx04/14/2022verifiedHigh
44XX.XXX.XXX.XXxxx-xx-xxx-xxx-xx.xxxxxx.xx.xxXxxxxx05/08/2023verifiedHigh
45XX.XX.XXX.XXXxxxxxxxxxxx.xxxXxxxxx04/14/2022verifiedHigh
46XX.XX.XX.XXxxxxxx.xx.xx.xx.xx.xxxxxxx.xxxx-xxxxxx.xxXxxxxx04/28/2022verifiedHigh
47XX.XX.XX.XXXxxxxxx.xxx.xx.xx.xx.xxxxxxx.xxxx-xxxxxx.xxXxxxxx05/08/2023verifiedHigh
48XX.XX.XXX.XXxxxxxx.xx.xxx.xx.xx.xxxxxxx.xxxx-xxxxxx.xxXxxxxx04/14/2022verifiedHigh
49XX.XXX.XXX.XXXxx.xxxx-xxx.xxxxxxxxx.xxxXxxxxx06/28/2023verifiedHigh
50XX.XX.XX.XXxxxx.xxxxxxxxxxxxxxx.xxxXxxxxx01/08/2022verifiedHigh
51XX.XXX.XX.XXxxxxxxxxxxxx.xxxxxxxx.xxxXxxxxx05/05/2022verifiedHigh
52XX.XXX.XXX.XXxxxx.xxXxxxxx05/05/2022verifiedHigh
53XX.XXX.XXX.XXXXxxxxx06/19/2022verifiedHigh
54XX.XXX.XXX.XXXXxxxxx05/05/2022verifiedHigh
55XX.XXX.XXX.XXXxxxxxxxxx.xxxxxxxxxx-xxxxxx.xxxxXxxxxx09/17/2022verifiedHigh
56XX.XXX.XXX.XXxxxxxxxxxxxxx.xxxxxxxxxx.xxxxXxxxxx08/14/2021verifiedHigh
57XX.XXX.X.XXXXxxxxx04/29/2022verifiedHigh
58XX.XX.XX.XXXXxxxxx05/05/2022verifiedHigh
59XX.XX.XX.XXXXxxxxx04/30/2022verifiedHigh
60XX.XX.XX.XXXXxxxxx08/14/2021verifiedHigh
61XX.XX.XXX.XXXxxxxxxx.xxxxxxxxxxxxxx.xxxXxxxxx06/28/2023verifiedHigh
62XX.XXX.X.XXXxxxxx04/28/2022verifiedHigh
63XX.XXX.XXX.XXXXxxxxx05/05/2022verifiedHigh
64XX.XXX.XXX.XXXxxxxx-x-xx-xxx-xxx-xxx.xxxx.xxxxxx.xxxXxxxxx04/29/2022verifiedHigh
65XX.XXX.XX.XXxxxxxx.xx.xxx.xx.xx.xxxxxxx.xxxx-xxxxxx.xxXxxxxx08/20/2022verifiedHigh
66XX.XXX.XXX.XXxx.xxx.xxx.xx.xxxxxx.xxxxx.xxx.xxXxxxxx05/05/2022verifiedHigh
67XX.XXX.X.XXXxxxxxx.xxx-xx.xxxXxxxxx09/17/2022verifiedHigh
68XX.XXX.XX.XXxxxxxxx.xx-xx-xxx-xx.xxXxxxxx06/25/2022verifiedHigh
69XX.XXX.XX.XXxxxxxxxx.xxx.xxxXxxxxx05/05/2022verifiedHigh
70XX.XXX.XX.XXxxxxxxxx.xx-xx-xxx-xx.xxXxxxxx06/28/2023verifiedHigh
71XX.XXX.XXX.XXxxxxxxxx.xxxxxxx.xxxXxxxxx05/05/2022verifiedHigh
72XX.XXX.XXX.XXXxxxxxxxxx.xx-xx-xxx-xxx.xxXxxxxx10/03/2021verifiedHigh
73XX.XXX.XXX.XXXxxxxxxxxxxxxxxxx.xxxxxxxx.xxXxxxxx05/05/2022verifiedHigh
74XX.XXX.XXX.XXXxxxxx08/20/2022verifiedHigh
75XX.XXX.XXX.XXXxxxxxxxxxx.xxxx.xxxxxxx.xxXxxxxx05/05/2022verifiedHigh
76XX.XXX.XXX.XXXxxxxx04/28/2022verifiedHigh
77XX.XXX.XX.XXXxxxx-xx-xxx.xxxxxxx.xxxxxxxx.xxxXxxxxx04/28/2022verifiedHigh
78XX.XXX.XXX.XXXxxx.xxxxxxxxxx.xxXxxxxx05/05/2022verifiedHigh
79XX.XXX.XXX.XXXxxxxx04/14/2022verifiedHigh
80XX.XXX.XX.XXxxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx.xxxxxxxx.xxxxXxxxxx05/05/2022verifiedHigh
81XX.XXX.XX.XXXxxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx.xxxxxxxx.xxxxXxxxxx09/17/2022verifiedHigh
82XX.XX.XX.XXXxxx.xxxxxxx.xxxXxxxxx05/05/2022verifiedHigh
83XX.XX.XX.XXxxxx.xxxxxxxxxx.xxXxxxxx06/28/2023verifiedHigh
84XX.XX.XX.XXXxxxxx.xx-xx-xx-xx.xxXxxxxx05/05/2022verifiedHigh
85XX.XX.XX.XXxxxx.xxxxxxxxx.xxXxxxxx06/28/2023verifiedHigh
86XX.XX.XX.XXXXxxxxx05/05/2022verifiedHigh
87XX.XXX.XXX.XXXxxxxx09/17/2022verifiedHigh
88XX.XXX.XXX.XXXxxxxxxx-xxx-xxx-xx.xxxxxxxxxxxxxx.xxxxx.xxXxxxxx05/05/2022verifiedHigh
89XX.XXX.XX.XXXxxxx.xxx-xxxxxxx.xxxXxxxxx10/08/2022verifiedHigh
90XX.XXX.XX.XXXxx.xxx.xx.xxx.x.xxxxxxxXxxxxx04/28/2022verifiedHigh
91XX.XXX.XX.XXXxxxxxxxxxxx.xxxxXxxxxx05/05/2022verifiedHigh
92XX.XX.XX.XXXxxxxx08/14/2021verifiedHigh
93XXX.XXX.XX.XXXXxxxxx09/17/2022verifiedHigh
94XXX.XX.XXX.XXXXxxxxx01/08/2022verifiedHigh
95XXX.XXX.XXX.XXXxxxxxxxxxx.xxxXxxxxx10/03/2021verifiedHigh
96XXX.XX.XX.XXXXxxxxx05/05/2022verifiedHigh
97XXX.XX.X.XXXxxxxx05/05/2022verifiedHigh
98XXX.XXX.XXX.XXXXxxxxx05/15/2023verifiedHigh
99XXX.XX.XXX.XXXxxxxxxxxxxxxxx.xxx.xxXxxxxx01/08/2022verifiedHigh
100XXX.XXX.XXX.XXxxxxxxx.xxxxxxxxxxxxxxxxxx.xx.xxXxxxxx04/17/2023verifiedHigh
101XXX.XXX.XX.XXXxxxxx06/28/2023verifiedHigh
102XXX.XXX.XXX.XXXxxxxx05/05/2022verifiedHigh
103XXX.XX.XXX.XXXxxxxx08/14/2021verifiedHigh
104XXX.XXX.XX.XXXxxx-xxx-xx-xxx.xxxxxx.xxxxxxx.xx.xxXxxxxx05/15/2023verifiedHigh
105XXX.XX.XX.XXxxxxxxxxx.xxxxxxxxx.xxx.xxXxxxxx01/08/2022verifiedHigh
106XXX.XXX.XXX.XXXXxxxxx05/05/2022verifiedHigh
107XXX.XX.XXX.XXXxxx-xx-xxx-xxx.xxxxxx.xxxXxxxxx05/05/2022verifiedHigh
108XXX.XX.X.XXXXxxxxx10/03/2021verifiedHigh
109XXX.XXX.XX.XXXxxx.xxxxx.xxx.xxXxxxxx05/05/2022verifiedHigh
110XXX.XXX.XXX.XXXxxxxxxx.xxxxxxxxxxxxxxxxxxxx.xxxXxxxxx10/03/2021verifiedHigh
111XXX.XX.XXX.XXxxxxxxxxxxxx.xxx.xxXxxxxx04/30/2022verifiedHigh
112XXX.XXX.XX.XXXxxxxxx-xxxxxxx.xxxxxxx.xxXxxxxx05/05/2022verifiedHigh
113XXX.XXX.XXX.XXxxx-xxx-xxxxx.xx.xxxxxx.xx.xxXxxxxx04/14/2022verifiedHigh
114XXX.XXX.XXX.XXXxxxxxxx.xxxxxxxxx.xxXxxxxx09/17/2022verifiedHigh
115XXX.X.XX.XXXxxx-x-xx-xxx.xxxxxx.xxxxx.xxxXxxxxx05/05/2022verifiedHigh
116XXX.XXX.XXX.XXXxxx.xxx.xxx.xxx.xx-xxxx.xxxxXxxxxx04/29/2022verifiedHigh
117XXX.X.X.XXXXxxxxx05/05/2022verifiedHigh
118XXX.XXX.XXX.Xxxxxxxxxxxxxx.xxxxxxxxxxxxxxxx.xxxXxxxxx05/15/2023verifiedHigh
119XXX.XX.XXX.XXXxxxxx05/05/2022verifiedHigh
120XXX.XXX.XX.XXXxxxxxx.xxxxxxxxxxxxxxx.xxxXxxxxx05/05/2022verifiedHigh
121XXX.XXX.XX.XXXxxxxx05/05/2022verifiedHigh
122XXX.XXX.XXX.XXXXxxxxx05/08/2023verifiedHigh
123XXX.XXX.XX.XXXXxxxxx05/05/2022verifiedHigh
124XXX.XXX.XXX.XXXxxx-xxx-xxx-xxx.xxxxxx.xxxxx-xxx.xx.xxXxxxxx05/08/2023verifiedHigh
125XXX.XXX.XX.XXXxx.xx.xxxx.xxx.xxxxxx.xx-xxxxxxx.xxxXxxxxx05/05/2022verifiedHigh
126XXX.XXX.XXX.XXXXxxxxx05/05/2022verifiedHigh
127XXX.XXX.XX.XXxxx-xxx-xx-xx.xxxxxx.xxxxx-xxx.xxxXxxxxx05/05/2022verifiedHigh
128XXX.XXX.XXX.XXxxx-xxx-xxx-xx.xxxxxx.xxxxx-xxx.xxxXxxxxx08/20/2022verifiedHigh
129XXX.XXX.XXX.XXxxxxx-xx.xxxxxxx.xxxxxx.xxxXxxxxx10/03/2021verifiedHigh
130XXX.XXX.XXX.XXxxxxx-xx.xxxxxxx.xxxxxx.xxxXxxxxx05/05/2022verifiedHigh
131XXX.XX.XXX.XXXxxxxxxxx.xx-xxx-xx-xxx.xxXxxxxx08/20/2022verifiedHigh
132XXX.XX.XXX.XXXxxxxxxxx.xx-xxx-xx-xxx.xxXxxxxx06/28/2023verifiedHigh
133XXX.XX.XXX.XXxxxxxxxx.xx-xxx-xx-xxx.xxXxxxxx05/05/2022verifiedHigh
134XXX.XXX.X.XXXXxxxxx05/05/2022verifiedHigh
135XXX.XX.XX.XXXxxxxx06/28/2023verifiedHigh
136XXX.XX.XXX.XXXxxxxx.xx-xxx-xx-xxx.xxXxxxxx05/05/2022verifiedHigh
137XXX.XX.X.XXXXxxxxx04/17/2023verifiedHigh
138XXX.XX.XXX.Xxxxxxx.xxxxxxxxxxxxxxx.xxXxxxxx08/20/2022verifiedHigh
139XXX.XX.XXX.XXxxxxxxxxx.xx-xxx-xx-xxx.xxXxxxxx04/28/2022verifiedHigh
140XXX.XX.XXX.XXxxxxxx.xx.xxx.xx.xxx.xxxxxxx.xxxx-xxxxxx.xxXxxxxx04/14/2022verifiedHigh
141XXX.XX.XXX.XXxxxxxxxx.xxxxx-xxxxxxx-xxxxxx.xxxXxxxxx10/15/2022verifiedHigh
142XXX.XXX.XXX.XXXXxxxxx05/05/2022verifiedHigh
143XXX.XXX.XXX.XXXxxx.xxx.xxx.xxx.xxxxxx.xxxxxx.xxxXxxxxx06/19/2022verifiedHigh
144XXX.XX.XX.XXXXxxxxx04/17/2023verifiedHigh
145XXX.XX.XX.XXXxxxxxxxxx.xxxxxxxx.xxxXxxxxx06/19/2022verifiedHigh
146XXX.XXX.XXX.XXXxxxxx04/14/2022verifiedHigh
147XXX.XX.XX.XXXxx-xx-xxx-xxx.xxxxxxx.xxxxxxxxxxxxxxxxx.xxx.xxXxxxxx05/08/2023verifiedHigh
148XXX.XXX.XX.XXxxxxxxxxxxxxx.xxXxxxxx04/28/2022verifiedHigh
149XXX.XXX.XX.XXXxxxxx.xxXxxxxx05/05/2022verifiedHigh
150XXX.XXX.XXX.XXXxxxx.xxxxxxxxx.xxx.xxXxxxxx05/05/2022verifiedHigh
151XXX.XXX.XXX.XXxxxxxxxxxx.xxxXxxxxx05/08/2023verifiedHigh
152XXX.XXX.XXX.XXXxxx-xxx-xxx-xxx.xxxxxxxxxxxx.xxxXxxxxx01/08/2022verifiedHigh
153XXX.XXX.XXX.XXxxx.xxxxxx.xxxXxxxxx05/05/2022verifiedHigh
154XXX.XXX.XXX.XXXxxx-xxx-xxx-xxx.xxxxxxxxxxxx.xxxXxxxxx10/15/2022verifiedHigh
155XXX.XX.XX.XXxxxxx.xxxxxxx.xxXxxxxx05/05/2022verifiedHigh
156XXX.XXX.XXX.XXxxxxx.xxxxxxx.xxxXxxxxx05/05/2022verifiedHigh
157XXX.XX.XXX.XXxxxxx04/14/2022verifiedHigh
158XXX.XXX.XXX.XXxxx.xxx.xxx.xx-xxxxx.xxxxx.xxxXxxxxx05/08/2023verifiedHigh
159XXX.X.XXX.XXxxxxxxx.xxxxx.xxxXxxxxx05/05/2022verifiedHigh
160XXX.XX.XXX.XXXXxxxxx08/14/2021verifiedHigh
161XXX.XX.XXX.XXXXxxxxx05/05/2022verifiedHigh
162XXX.XX.XXX.XXXxxxxx10/03/2021verifiedHigh
163XXX.XXX.XXX.XXXxxx-xxx-xxx-xxx.xxx.xxxxxxxxxxxx.xxXxxxxx06/25/2022verifiedHigh
164XXX.XXX.X.XXxxxx.xxxxxxxx.xxxXxxxxx05/05/2022verifiedHigh
165XXX.XXX.XXX.XXXxxx.xxxxxxxxx.xx.xxXxxxxx05/05/2022verifiedHigh
166XXX.X.XXX.XXxxx-x-xxx-xx-xxxxxx.xxx.xxxxxxxxxxxxxxx.xxxXxxxxx05/05/2022verifiedHigh
167XXX.X.XX.XXXxxxxxxx.xxxxx.xxxXxxxxx10/03/2021verifiedHigh
168XXX.XX.XXX.XXXxxxxx08/20/2022verifiedHigh
169XXX.XX.XXX.XXxxx-xx-xxx-xx.xxxxxxxxxxxx.xxxXxxxxx04/30/2022verifiedHigh
170XXX.XX.XXX.XXxxx-xx-xxx-xx.xxxxxxxxxxxx.xxxXxxxxx01/08/2022verifiedHigh
171XXX.XX.XX.XXXxxxxx-xxx.xxxxxxx.xxxxxx.xxxXxxxxx06/25/2022verifiedHigh
172XXX.XXX.XXX.XXXxxxxx04/17/2023verifiedHigh
173XXX.XXX.XXX.XXXXxxxxx05/05/2022verifiedHigh
174XXX.XX.XX.XXXxxxxxx-xxx-xx-xx-xxx.xxxxxxxxxxxx.xxxXxxxxx05/15/2023verifiedHigh
175XXX.XXX.XX.XXxxxx.xxxxxxxxxxx.xxxXxxxxx05/05/2022verifiedHigh
176XXX.XXX.XXX.XXxxxxxxxx.xxxxx.xxXxxxxx05/06/2022verifiedHigh
177XXX.XX.XXX.XXXxxx-xx-xxx-xxx.xxxxxxxx.xxx.xxXxxxxx05/05/2022verifiedHigh
178XXX.XX.XX.XXxxxxxx.xxxx.xxx.xxXxxxxx06/25/2022verifiedHigh
179XXX.XXX.XXX.XXxxxxx05/05/2022verifiedHigh
180XXX.XX.XXX.XXXx-xxxx.x-xxxxxx.xxxXxxxxx05/05/2022verifiedHigh
181XXX.XXX.XXX.XXXxxxxxxx.xxxxxxxxxxxxxxx.xxxXxxxxx05/05/2022verifiedHigh
182XXX.XXX.XXX.XXxxxxxxxxxxxxxxxx.xxxXxxxxx05/05/2022verifiedHigh
183XXX.XX.XXX.XXXxxxxx05/05/2022verifiedHigh
184XXX.XXX.XXX.XXXxxx.xxxxxxxxxxxxxxxx.xxxXxxxxx10/15/2022verifiedHigh
185XXX.XXX.XXX.XXXxxxxx05/05/2022verifiedHigh
186XXX.XX.XX.XXXxxxxx05/05/2022verifiedHigh
187XXX.XXX.XX.XXXxxx-xxx-xx-xxx.xxx.xxxxxxxxxxxx.xxXxxxxx05/05/2022verifiedHigh
188XXX.XXX.XXX.XXXxxx.xxx.xxx.xxx.xxx.xx.xx.xxxXxxxxx05/06/2022verifiedHigh
189XXX.XXX.XXX.XXXxxxxx01/08/2022verifiedHigh
190XXX.XXX.XXX.XXXXxxxxx04/14/2022verifiedHigh
191XXX.XXX.XXX.XXXxxxxxxxxx.xxxxxxxxxxxxxxx.xxxXxxxxx04/17/2023verifiedHigh
192XXX.XXX.XX.XXXxxxxxxxx.xxXxxxxx04/14/2022verifiedHigh
193XXX.XXX.XXX.XXXxxxxx05/05/2022verifiedHigh
194XXX.XXX.XXX.XXXxxxxx04/14/2022verifiedHigh
195XXX.XXX.XX.XXXxxxxx05/05/2022verifiedHigh

TTP - Tactics, Techniques, Procedures (14)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IOA - Indicator of Attack (76)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File.htaccesspredictiveMedium
2File/admin/maintenance/view_designation.phppredictiveHigh
3File/cgi-bin/lucipredictiveHigh
4File/forum/away.phppredictiveHigh
5File/out.phppredictiveMedium
6File/run/courier/authdaemonpredictiveHigh
7File/uncpath/predictiveMedium
8Fileawstats.plpredictiveMedium
9Filebase/PdfParser.cpppredictiveHigh
10FileBSW_cxttongr.htmpredictiveHigh
11Filexxx.xxxpredictiveLow
12Filexxx-xxx/xxxxxxx.xxpredictiveHigh
13Filexxxxx.xxxxxxxxx.xxxpredictiveHigh
14Filexxx.xxxpredictiveLow
15Filexxx.xxx?xxx=xxxxx_xxxxpredictiveHigh
16Filexxxxxx/xxx.xpredictiveMedium
17Filexxxx/xxxxxxx/xxxxxx/xxxxxx_xxxx_xx.xxpredictiveHigh
18Filexxxx/xxxxxxxxxxxxxxx.xxxpredictiveHigh
19Filexxxx/xxxx_xxxxxx_xxxxxxx.xxxpredictiveHigh
20Filexxxxx.xxxpredictiveMedium
21Filexxxxxx.xxxpredictiveMedium
22Filexxxx.xxxpredictiveMedium
23Filexxxx.xxxpredictiveMedium
24Filexxx/xxxxxx.xxxpredictiveHigh
25Filexxxxx.xxxpredictiveMedium
26Filexxxxx_xxxxxx_xxxxxxxxxx.xxxpredictiveHigh
27Filexxx\xxxxx\xxxxxx\xxxxxxxxxx.xxxxx.xxxpredictiveHigh
28Filexxxxx.xxxpredictiveMedium
29Filexxx_xxxx.xxpredictiveMedium
30Filexxx_xxxx.xxxpredictiveMedium
31Filexxxx-xxxx_xxxxxxx.xxpredictiveHigh
32Filexxx/xxxxx.xxxxpredictiveHigh
33Filexxx.xpredictiveLow
34Filexxxx.xxxpredictiveMedium
35Filexxxxxxxxx/xxxxxxxxxxx/xxxxxxxxxxxxxxxxx.xxxpredictiveHigh
36Filexxxxx.xxxpredictiveMedium
37Filexxxxxxxx.xxpredictiveMedium
38Filexxxxxxxx.xxxpredictiveMedium
39Filexxxxxxxxxx.xxxpredictiveHigh
40Filexxxxxxxx.xxxpredictiveMedium
41Filexxx.xxxpredictiveLow
42Filexxxxx/xxxxx.xxpredictiveHigh
43Filexx-xxxxx/xxxx.xxxpredictiveHigh
44Filexx-xxxxxxxx/xxxxx-xx-xxxxx.xxxpredictiveHigh
45Library/xxx/xxx/xxx/xxx_xxxxxxxxxx/xxx_xxxx.xxxpredictiveHigh
46Libraryxxxxxxxx.xxxpredictiveMedium
47ArgumentxxxxxxxxpredictiveMedium
48ArgumentxxxpredictiveLow
49ArgumentxxxpredictiveLow
50ArgumentxxxxxxpredictiveLow
51ArgumentxxxxxxxxpredictiveMedium
52ArgumentxxxxxxpredictiveLow
53ArgumentxxxxxxxpredictiveLow
54ArgumentxxxxxxxxxpredictiveMedium
55Argumentxxxxxxxxx/xxxxxxpredictiveHigh
56ArgumentxxxxpredictiveLow
57Argumentxxxx_xxxxxpredictiveMedium
58Argumentxxxx_xxxxxpredictiveMedium
59ArgumentxxpredictiveLow
60ArgumentxxxxxxxxxpredictiveMedium
61Argumentxxx_xxxxxxxxpredictiveMedium
62ArgumentxxxpredictiveLow
63ArgumentxxxxxxpredictiveLow
64ArgumentxxxxxxxxpredictiveMedium
65ArgumentxxxxxxpredictiveLow
66ArgumentxxxxxxxxpredictiveMedium
67Argumentxxxxxx_xxpredictiveMedium
68ArgumentxxxxxxpredictiveLow
69Argumentxxxxx xxxxpredictiveMedium
70ArgumentxxxxxpredictiveLow
71ArgumentxxxxxxxpredictiveLow
72ArgumentxxxpredictiveLow
73ArgumentxxxpredictiveLow
74ArgumentxxxxxxxxpredictiveMedium
75ArgumentxxxxxxxxpredictiveMedium
76Input Value.%xxxxpredictiveLow

References (29)

The following list contains external sources which discuss the actor and the associated activities:

Do you know our Splunk app?

Download it now for free!