Lebanese Cedar Analysisinfo

💳 Purchase Required

You need to purchase an additional CTI license to see detailed indicators.

IOB - Indicator of Behavior (248)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Language

en244
de2
fr2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

US: USA38
DE: Germany2
FR: France2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

Lebanese Cedar2
Arid Viper1
NetWire1

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

Not Defined88
Customer Relationship Management System34
E-Commerce Management Software4
Chat Software4
Router Operating System2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

Campcodes70
SourceCodester22
Not Defined18
Kashipara16
Cisco6

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Campcodes Complete Web-Based School Management Sys ...34
Kashipara College Management System16
Campcodes Legal Case Management System14
Campcodes Online Laundry Management System14
Campcodes Online Examination System8

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

These are the vulnerabilities that we have identified as researched, approached, or attacked.

#VulnerabilityBaseTemp0dayTodayExpCouKEVEPSSCTICVE
1OpenSSL Pointer Arithmetic integer overflow9.89.6$25k-$100k$0-$5kNot definedOfficial fix 0.343060.00CVE-2016-2177
2Image Sharing Script followBoard.php Error sql injection6.35.7$0-$5k$0-$5kProof-of-ConceptNot defined 0.000000.00
3Image Sharing Script postComment.php Stored cross site scripting3.53.2$0-$5k$0-$5kProof-of-ConceptNot defined 0.000000.00
4PHP Rental Classifieds Script sql injection6.35.8$0-$5k$0-$5kNot definedNot defined 0.000000.06
5GeniXCMS register.php sql injection7.37.1$0-$5k$0-$5kNot definedOfficial fix 0.004960.06CVE-2016-10096
6Wangshen SecGate 3600 g=log_import_save unrestricted upload6.36.1$0-$5k$0-$5kNot definedNot defined 0.000490.02CVE-2024-5050
7Tongda OA delete.php sql injection6.36.0$0-$5k$0-$5kProof-of-ConceptNot defined 0.000250.00CVE-2024-4903
8SourceCodester Simple Online Mens Salon Management System view_service.php sql injection6.35.7$0-$5k$0-$5kProof-of-ConceptNot defined 0.001300.04CVE-2024-5069
9SourceCodester Simple Online Bidding System ajax.php cross-site request forgery5.65.3$0-$5k$0-$5kProof-of-ConceptNot defined 0.000270.00CVE-2024-4929
10SourceCodester Simple Online Bidding System index.php sql injection7.57.3$0-$5k$0-$5kProof-of-ConceptNot defined 0.000390.02CVE-2024-4933
11SourceCodester Simple Online Bidding System index.php sql injection7.57.3$0-$5k$0-$5kProof-of-ConceptNot defined 0.001240.02CVE-2024-4932
12SourceCodester Simple Online Bidding System index.php sql injection7.57.3$0-$5k$0-$5kProof-of-ConceptNot defined 0.000390.03CVE-2024-4931
13SourceCodester Simple Online Bidding System index.php sql injection7.16.9$0-$5k$0-$5kProof-of-ConceptNot defined 0.001350.03CVE-2024-4930
14SourceCodester Simple Online Bidding System ajax.php sql injection7.57.3$0-$5k$0-$5kProof-of-ConceptNot defined 0.000390.04CVE-2024-4928
15SourceCodester Simple Online Bidding System ajax.php unrestricted upload8.28.2$0-$5k$0-$5kProof-of-ConceptNot defined 0.000940.02CVE-2024-4927
16SourceCodester School Intramurals Student Attendance Management System manage_student.php sql injection6.46.2$0-$5k$0-$5kProof-of-ConceptNot defined 0.000260.03CVE-2024-4926
17SourceCodester School Intramurals Student Attendance Management System manage_course.php sql injection6.46.2$0-$5k$0-$5kProof-of-ConceptNot defined 0.000240.04CVE-2024-4925
18SourceCodester Open Source Clinic Management System setting.php unrestricted upload6.35.7$0-$5k$0-$5kProof-of-ConceptNot defined 0.001230.08CVE-2024-4809
19SourceCodester Online Computer and Laptop Store SystemSettings.php unrestricted upload8.17.6$0-$5k$0-$5kProof-of-ConceptNot defined 0.000990.00CVE-2024-4820
20SourceCodester Online Computer and Laptop Store manage_brand.php sql injection6.35.7$0-$5k$0-$5kProof-of-ConceptNot defined 0.000840.02CVE-2024-4798

IOC - Indicator of Compromise (5)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsIdentifiedTypeConfidence
168.65.122.109server172-1.web-hosting.comLebanese Cedar05/31/2021verifiedVery Low
2XX.XXX.XX.XXXxxxxxxxxxx.xxxXxxxxxxx Xxxxx05/31/2021verifiedLow
3XXX.XX.XX.XXxx.xx.xxxx.xxx.xxxxxx.xx-xxxxxxx.xxxXxxxxxxx Xxxxx05/31/2021verifiedLow
4XXX.XXX.X.XXXXxxxxxxx Xxxxx05/31/2021verifiedLow
5XXX.XXX.XXX.XXXxxxxxxx Xxxxx05/31/2021verifiedLow

TTP - Tactics, Techniques, Procedures (11)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueClassVulnerabilitiesAccess VectorTypeConfidence
1T1006CWE-24Path TraversalpredictiveHigh
2T1059.007CAPEC-209CWE-79, CWE-80Basic Cross Site ScriptingpredictiveHigh
3T1068CAPEC-19CWE-264, CWE-284Execution with Unnecessary PrivilegespredictiveHigh
4TXXXXCAPEC-XXXCWE-XXXXxxx Xxx Xxxxxxxxx Xxxxxxxxxxx XxxxxxxxpredictiveHigh
5TXXXXCAPEC-XXXCWE-XXXxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx XxxxxxxxxpredictiveHigh
6TXXXXCAPEC-XXXCWE-XXXxx XxxxxxxxxpredictiveHigh
7TXXXX.XXXCAPEC-XCWE-XXXXxxxxxxx XxxxxxxxxxxxxpredictiveHigh
8TXXXXCWE-XXXXxxxxxxxxxx XxxxxxxxxxpredictiveHigh
9TXXXXCAPEC-XXXCWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx XxxxxxxxxxxpredictiveHigh
10TXXXXCWE-XXXXxxxxxxxxxxxx XxxxxxpredictiveHigh
11TXXXX.XXXCAPEC-XCWE-XXXXxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx XxxxxxxxxpredictiveHigh

IOA - Indicator of Attack (203)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/?g=log_import_savepredictiveHigh
2File/adminpredictiveLow
3File/admin/case-statuspredictiveHigh
4File/admin/case-typepredictiveHigh
5File/admin/clientspredictiveHigh
6File/admin/client_userpredictiveHigh
7File/admin/courtpredictiveMedium
8File/admin/court-typepredictiveHigh
9File/admin/expense-typepredictiveHigh
10File/admin/general-settingpredictiveHigh
11File/admin/index.phppredictiveHigh
12File/admin/judgepredictiveMedium
13File/admin/maintenance/manage_brand.phppredictiveHigh
14File/admin/rolepredictiveMedium
15File/admin/servicepredictiveHigh
16File/admin/taskspredictiveMedium
17File/admin/taxpredictiveMedium
18File/admin/vendorpredictiveHigh
19File/adminlogin.asppredictiveHigh
20File/adminpanel/admin/query/addCourseExe.phppredictiveHigh
21File/admin_class.phppredictiveHigh
22File/ajax-files/followBoard.phppredictiveHigh
23File/ajax-files/postComment.phppredictiveHigh
24File/ajax.phppredictiveMedium
25File/classes/SystemSettings.php?f=update_settingspredictiveHigh
26File/employee_gatepass/classes/Users.php?f=ssavepredictiveHigh
27File/endpoint/delete-mark.phppredictiveHigh
28File/xxxxxxx/xxxxxxx/xxxxxx/xxxxxx.xxxpredictiveHigh
29File/xxxxxxx/xxxx.xxxpredictiveHigh
30File/xxxxxxx/xxxx.xxxpredictiveHigh
31File/xxxxx.xxxpredictiveMedium
32File/xxxxxxx_xxxx/xxxxxx_xxxxxx.xxxpredictiveHigh
33File/xxxxxxx_xxxx/xxxxxx_xxxxxxx.xxxpredictiveHigh
34File/xxxxx.xxxpredictiveMedium
35File/xxxxxx_xxx.xxxpredictiveHigh
36File/xxxxxx_xxxxxxx.xxxpredictiveHigh
37File/xxxxxx_xxxxxxxxx.xxxpredictiveHigh
38File/xxxxxx_xxxx.xxxpredictiveHigh
39File/xxxxx/xxx_xxxxxxx_xxxxxxx.xxxpredictiveHigh
40File/xxxxx/xxxxxxx_xxxxx_xxxx.xxxpredictiveHigh
41File/xxxxx/xxxxxx_xxxxxx.xxxpredictiveHigh
42File/xxxxx/xxxxxx_xxxxxxx_xxxxx_xxxxxxx.xxxpredictiveHigh
43File/xxxxx/xxxxxx_xxxxxxxxx.xxxpredictiveHigh
44File/xxxxx/xxxxxx_xxxx.xxxpredictiveHigh
45File/xxxxx/xxxxxx_xxxxx.xxxpredictiveHigh
46File/xxxxx/xxxxxx_xxxxxxx.xxxpredictiveHigh
47File/xxxxxxxxxxxx/predictiveHigh
48File/xxxxxxx-xxxxxxxxxxxx.xxxpredictiveHigh
49File/xxxxxxxx.xxxpredictiveHigh
50File/xxxxxxxxx.xxxpredictiveHigh
51File/xxxxxx-xxxxxx-xxxxxxx-xxxxxx/xxxxx/xxxx.xxx?xxxxxx=xxxxxx_xxxxxxxxpredictiveHigh
52File/xxxxxx-xxxxxx-xxxxxxx-xxxxxx/xxxxx/xxxx.xxx?xxxxxx=xxxx_xxxxxxxpredictiveHigh
53File/xxxxxx-xxxxxx-xxxxxxx-xxxxxx/xxxxx/xxxx.xxx?xxxxxx=xxxx_xxxxpredictiveHigh
54File/xxxxxx-xxxxxx-xxxxxxx-xxxxxx/xxxxx/xxxxx.xxx?xxxx=xxxxxx_xxxxxxxpredictiveHigh
55File/xxxxxx-xxxxxx-xxxxxxx-xxxxxx/xxxxx/xxxxx.xxx?xxxx=xxxxxx_xxxxpredictiveHigh
56File/xxxxxx-xxxxxx-xxxxxxx-xxxxxx/xxxxx/xxxxx.xxx?xxxx=xxxx_xxxxpredictiveHigh
57File/xxxxxx-xxxxxx-xxxxxxx-xxxxxx/xxxxx.xxx?xxxx=xxxx_xxxxpredictiveHigh
58File/xxxxxxx/xxxxxxxxxx.xxxpredictiveHigh
59File/xxx_xxxxxxxx.xxx?xxxxxx=xxxxpredictiveHigh
60File/xxxxxxxx/xxxxxxxxxxxxxxx.xxxpredictiveHigh
61File/xxxx/xxx_xxxxxxx.xxxpredictiveHigh
62File/xxxx/xxxxxxxx/xxxxxxxx/xxxxxx.xxxpredictiveHigh
63File/xxxx/xxxxxxxxxxxx_xxxxxxx_xxxxx.xxxpredictiveHigh
64File/xxxx/xxxxxx_xxxxxx.xxxpredictiveHigh
65File/xxxx/xxxxxx_xxxxx_xxxxx_xxxxxx_xxxx.xxxpredictiveHigh
66File/xxxx/xxxx_xxxxxxxxx.xxxpredictiveHigh
67File/xxxx/xxxx_xxxxxxxxx_xxxxx_xxxx.xxxpredictiveHigh
68File/xxxx/xxxx_xxxxxxxxx_xxxxxx_xxxx.xxxpredictiveHigh
69File/xxxx/xxxx_xxxxxxxxx_xxxxxx_xxxx.xxxpredictiveHigh
70File/xxxx/xxxx_xxxxxxx.xxxpredictiveHigh
71File/xxxx/xx_xxxxxxx_xxxx_xxxxxx.xxxpredictiveHigh
72File/xxxx/xxxxxxxxxxxxx/xxx/xxx_xxx_xxxxxx.xxxpredictiveHigh
73File/xxxx/xxxxxxxxxxxxx/xxxxxxxxxxxxxxxxx/xxxxxxxxx_xxxxxx.xxxpredictiveHigh
74File/xxxx/xxxxxxxxxxxxx/xxxxxxxxxxx/xxxxxxxxxxx/xxxxxx_xxxxx_xxxx_xxxxxx.xxxpredictiveHigh
75File/xxxx/xxxxx_xxxxx_xxxx.xxxpredictiveHigh
76File/xxxx/xxxx_xxxxxx.xxxpredictiveHigh
77File/xxxx/xxxx_xxxxxx_xxxxxxx.xxxpredictiveHigh
78File/xxxx/xxxx_xxxxxxxx.xxxpredictiveHigh
79File/xxxx/xxxx_xxxxxxxx.xxxpredictiveHigh
80File/xxxx/xxxx_xxxxxxx_xxxxx_xxxxxxx.xxxpredictiveHigh
81File/xxxx/xxxx_xxxxxxx_xxxxxxx.xxxpredictiveHigh
82File/xxxx/xxxxxxx_xxxxxxxxxx_xxxxxxxx.xxxpredictiveHigh
83File/xxxx/xxxxxxx_xxx_xxxxxxx.xxxpredictiveHigh
84File/xxxx/xxxxxxx_xxxx_xxxx_xxxxxx_xxxxx.xxxpredictiveHigh
85File/xxxx/xxxxxxx_xxxx_xxxx_xxxxxx_xxxx.xxxpredictiveHigh
86Filexxxxxxxxxx.xxxpredictiveHigh
87Filexxxxx/xxxxxxxxxx.xxxpredictiveHigh
88Filexxxxx/xxxxxxxxx.xxxpredictiveHigh
89Filexxxxx/xxxxxxxxxxx.xxxpredictiveHigh
90Filexxxxx/xxxxxxx.xxxpredictiveHigh
91Filexxxxx_xxxxx.xxxpredictiveHigh
92Filexxxxxx/xxxxx.xpredictiveHigh
93Filexxxxxx_xxxxxxx.xxxpredictiveHigh
94Filexxxxxx_xxxx.xxxpredictiveHigh
95Filexxxx_xxxxxxxxxxxxxx_xxxxxxxxxx.xxxpredictiveHigh
96Filexxxxxxxx.xxxpredictiveMedium
97Filexxxx_xxxxxxx.xxxpredictiveHigh
98Filexxxx_xxxx.xxxpredictiveHigh
99Filexxxx.xxxpredictiveMedium
100Filexxxxxxx/xxxxxxxxx_xxxxxxx.xxx.xxxpredictiveHigh
101Filexxxxx.xxxpredictiveMedium
102Filexxxxx.xxxpredictiveMedium
103Filexxxxxx_xxxx.xxxpredictiveHigh
104Filexxxxxx xxxxpredictiveMedium
105Filexxxx-xxxxxxx.xxxpredictiveHigh
106Filexxxxxxx/xxxxxxxx_xxxxxx/_xxxxxxxx.xxxxxx.xxxpredictiveHigh
107Filexxxxxxx-xxxx.xxxpredictiveHigh
108Filexxxxxxxx.xxxpredictiveMedium
109Filexxxxxxxxxxx.xxxpredictiveHigh
110Filexxxxxxxxx.xxxpredictiveHigh
111Filexxxxxx.xxxpredictiveMedium
112Filexxxxxxxxxxxxxxxxx.xxxpredictiveHigh
113Filexxxxxxx.xxxpredictiveMedium
114Filexxxxxxxxxxxxx/xxxxxpredictiveHigh
115Filexxxxxxxxxxxxxxx.xxxpredictiveHigh
116Filexxxxxx_xxxxx.xxxpredictiveHigh
117Filexxxxxx_xxxxxxxxxxxxxxx_xxxxxxxx.xxxpredictiveHigh
118Filexxxxxx_xxx_xxxxxxx.xxxpredictiveHigh
119Filexxxxxx_xxxxxxx.xxxpredictiveHigh
120Filexxxxxxxxxxxxxx.xxxpredictiveHigh
121Filexxxx_xxxx_xxxxxxx.xxxpredictiveHigh
122Filexxxx_xxxxxx.xxxpredictiveHigh
123Filexxxx_xxxxxxx.xxxpredictiveHigh
124Filexxxx_xxxxxxx.xxxpredictiveHigh
125Filexxxx_xxxxxxxx_xxxx_xxxxxx.xxxpredictiveHigh
126Filexx-xxxxxxxx/xx-xxxxxxxxx.xxxpredictiveHigh
127ArgumentxxxxxxxxxxpredictiveMedium
128Argumentxxxxxxxx_xxxxxxxxpredictiveHigh
129ArgumentxxxxxxxpredictiveLow
130Argumentxxxxx_xxxxxpredictiveMedium
131ArgumentxxxxxxxxxxpredictiveMedium
132ArgumentxxxxxpredictiveLow
133Argumentxxxx_xxxxxxpredictiveMedium
134Argumentxxxx_xxxx_xxxxpredictiveHigh
135ArgumentxxxpredictiveLow
136ArgumentxxxxxxxxpredictiveMedium
137Argumentxxxxxxx_xxxx/xxxxxxpredictiveHigh
138Argumentxxxxxxxxxxxx_xxpredictiveHigh
139ArgumentxxxxxpredictiveLow
140Argumentxxxxxx_xxxxpredictiveMedium
141Argumentxxxxx_xxxxpredictiveMedium
142Argumentxxxx_xx_xxxxxpredictiveHigh
143Argumentxxx_xxxxpredictiveMedium
144ArgumentxxxxpredictiveLow
145ArgumentxxxxxpredictiveLow
146Argumentxxxxx/xxxxxxxxpredictiveHigh
147Argumentxxxxx_xxpredictiveMedium
148ArgumentxxxxpredictiveLow
149ArgumentxxxxxxxxxpredictiveMedium
150Argumentxxxx_xxpredictiveLow
151Argumentxxxxx_xxpredictiveMedium
152Argumentxxxxxxx/xxxxpredictiveMedium
153ArgumentxxxxxxxxpredictiveMedium
154Argumentx_xxxxpredictiveLow
155ArgumentxxxxxpredictiveLow
156ArgumentxxpredictiveLow
157Argumentxx/xxxxxx_xxxxxxxx/xxxxxx_xxx/xxxxxx_xxxxxxx/xxxxxx_xxxxxx/xxxxxx_xxxx/xxxxx/xxxx_xxx/xxxx_xxxxpredictiveHigh
158ArgumentxxxpredictiveLow
159ArgumentxxxxxpredictiveLow
160ArgumentxxxpredictiveLow
161ArgumentxxxxxpredictiveLow
162ArgumentxxxxxpredictiveLow
163Argumentxxxxx_xxxxpredictiveMedium
164ArgumentxxxxpredictiveLow
165ArgumentxxxxpredictiveLow
166ArgumentxxxxxpredictiveLow
167Argumentxx_xxxxxpredictiveMedium
168Argumentxx_xxxxpredictiveLow
169Argumentx_xx_xxxpredictiveMedium
170ArgumentxxxxpredictiveLow
171Argumentxxxx/xxxxxxxx_xxxx/xxxxxxxxpredictiveHigh
172Argumentxxxx/xxxxxx/xxxxxxxpredictiveHigh
173Argumentxxxx/xxxxxx/xxxxx/xxpredictiveHigh
174Argumentxxx_xxxxxxpredictiveMedium
175ArgumentxxxpredictiveLow
176Argumentxxxxxxxxx/xxxxxxxxxxpredictiveHigh
177ArgumentxxxxpredictiveLow
178ArgumentxxxxxpredictiveLow
179ArgumentxxxxxpredictiveLow
180ArgumentxxxxxxxpredictiveLow
181ArgumentxxxxxxxxxxpredictiveMedium
182ArgumentxxxxxpredictiveLow
183ArgumentxxxxxpredictiveLow
184ArgumentxxxxxxxpredictiveLow
185ArgumentxxxxxxxxxpredictiveMedium
186ArgumentxxxxpredictiveLow
187Argumentxxxx_xxxxxxxpredictiveMedium
188ArgumentxxxxpredictiveLow
189ArgumentxxxxxxpredictiveLow
190ArgumentxxxxpredictiveLow
191ArgumentxxxpredictiveLow
192Argumentxxxxxxxx/xxxxxxxxpredictiveHigh
193Argumentxxxxxxxx/xxxxxxxxpredictiveHigh
194Argumentxxxxxxxx/xxxxxxxxpredictiveHigh
195Argumentxxx_xxxpredictiveLow
196ArgumentxxxxpredictiveLow
197Input Value"><xxx xxx=x xxxxxxx=xxxxxx(x)>predictiveHigh
198Input Value' xxx (xxxxxx xxxx xxxx(xxxxxx xxxxx(*),xxxxxx(xxxxxxxxxxxx,(xxxxxx (xxx(xxxx=xxxx,x))),xxxxxxxxxxxx,xxxxx(xxxx(x)*x))x xxxx xxxxxxxxxxx_xxxxxx.xxxxxxxxx_xxxx xxxxx xx x)x) xxx 'xxxx'='xxxxpredictiveHigh
199Input Value'xx''='predictiveLow
200Input Value-xxxx+xxxxx+xxx+xxxxxx+xxxx,xxxx,xxxx,xxxx,xxxxxxx(),xxxx--predictiveHigh
201Input Value../../../../../xxx/xxxxxxpredictiveHigh
202Input Valuexxxxxxxxxx' xxx xxxx=xxxx xxx 'xxxx'='xxxxpredictiveHigh
203Input Value<xxx xxx=x xxxxxxx=xxxxxx(x)>predictiveHigh

References (2)

The following list contains external sources which discuss the actor and the associated activities:

PreviousOverviewNext

This view requires CTI permissions

Just purchase a CTI license today!