Liberty Front Press Analysis

IOB - Indicator of Behavior (1000)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en178
zh120
it80
ru80
ja76

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

ru82
it78
cn74
pl72
es72

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Tenda W15E12
Microsoft Windows4
MailCleaner4
GOG Galaxy4
Google Chrome4

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemEPSSCTICVE
1Apryse WebViewer PDF Document cross site scripting3.53.2$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.000450.08CVE-2024-4327
2MailCleaner Email os command injection9.89.5$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.000460.08CVE-2024-3191
3osCommerce all-products cross site scripting4.33.9$0-$5k$0-$5kProof-of-ConceptNot Defined0.000650.08CVE-2024-4348
4MailCleaner Admin Interface cross site scripting5.85.7$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.000450.08CVE-2024-3192
5SourceCodester Pisay Online E-Learning System controller.php unrestricted upload7.36.6$0-$5k$0-$5kProof-of-ConceptNot Defined0.000450.16CVE-2024-4349
6MailCleaner Admin Endpoints os command injection8.88.5$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.000460.08CVE-2024-3193
7BloomPixel Max Addons Pro for Bricks Plugin authorization6.56.4$0-$5k$0-$5kNot DefinedNot Defined0.000430.08CVE-2024-32951
8Elementor ImageBox Plugin cross site scripting3.53.4$0-$5k$0-$5kNot DefinedNot Defined0.000450.08CVE-2024-3074
9Dell Wyse Proprietary OS Telemetry Dashboard information disclosure4.74.7$0-$5k$0-$5kNot DefinedNot Defined0.000430.04CVE-2024-28963
10Apache Parquet Parquet-MR denial of service3.53.4$0-$5k$0-$5kNot DefinedOfficial Fix0.000860.00CVE-2021-41561
11Extend Themes Teluro Plugin cross-site request forgery4.34.2$0-$5k$0-$5kNot DefinedNot Defined0.000430.00CVE-2024-33688
12Dell Repository Manager API Module improper authorization8.38.1$5k-$25k$0-$5kNot DefinedOfficial Fix0.000430.04CVE-2024-28976
13Jegstudio Financio Plugin cross-site request forgery4.34.2$0-$5k$0-$5kNot DefinedNot Defined0.000430.03CVE-2024-33690
14Foliovision FV Flowplayer Video Player Plugin server-side request forgery5.65.5$0-$5k$0-$5kNot DefinedNot Defined0.000430.04CVE-2024-32955
15Apache HTTP Server mod_lua Multipart Parser r:parsebody out-of-bounds write8.58.4$25k-$100k$5k-$25kNot DefinedOfficial Fix0.088080.00CVE-2021-44790
16ThemeNcode Fan Page Widget by Plugin cross site scripting4.14.1$0-$5k$0-$5kNot DefinedNot Defined0.000430.00CVE-2024-33695
17AnnounceKit Plugin cross site scripting2.42.4$0-$5k$0-$5kNot DefinedNot Defined0.000450.04CVE-2024-3023
18Repute Infosystems ARMember Plugin authorization7.87.7$0-$5k$0-$5kNot DefinedNot Defined0.000430.07CVE-2024-32948
19Dell Repository Manager Logger Module improper authorization3.33.3$0-$5k$0-$5kNot DefinedNot Defined0.000430.00CVE-2024-28977

IOC - Indicator of Compromise (283)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsIdentifiedTypeConfidence
15.9.96.104static.104.96.9.5.clients.your-server.deLiberty Front Press01/27/2022verifiedHigh
25.79.68.107Liberty Front Press01/27/2022verifiedHigh
35.79.68.109Liberty Front Press01/27/2022verifiedHigh
45.79.68.110Liberty Front Press01/27/2022verifiedHigh
55.220.32.26Liberty Front Press01/27/2022verifiedHigh
618.197.248.23eu-staticip.multiscreensite.comLiberty Front Press01/27/2022verifiedHigh
734.98.99.3030.99.98.34.bc.googleusercontent.comLiberty Front Press01/27/2022verifiedMedium
834.102.136.180180.136.102.34.bc.googleusercontent.comLiberty Front Press01/27/2022verifiedMedium
934.208.93.148ec2-34-208-93-148.us-west-2.compute.amazonaws.comLiberty Front Press01/27/2022verifiedMedium
1034.211.118.203ec2-34-211-118-203.us-west-2.compute.amazonaws.comLiberty Front Press01/27/2022verifiedMedium
1134.211.213.227ec2-34-211-213-227.us-west-2.compute.amazonaws.comLiberty Front Press01/27/2022verifiedMedium
1234.214.135.41ec2-34-214-135-41.us-west-2.compute.amazonaws.comLiberty Front Press01/27/2022verifiedMedium
1334.224.160.149ec2-34-224-160-149.compute-1.amazonaws.comLiberty Front Press01/27/2022verifiedMedium
1437.48.65.148Liberty Front Press01/27/2022verifiedHigh
1537.48.65.149Liberty Front Press01/27/2022verifiedHigh
1637.48.65.150Liberty Front Press01/27/2022verifiedHigh
1737.48.65.151Liberty Front Press01/27/2022verifiedHigh
1837.48.65.152Liberty Front Press01/27/2022verifiedHigh
1937.48.65.153Liberty Front Press01/27/2022verifiedHigh
2037.48.65.154Liberty Front Press01/27/2022verifiedHigh
2137.48.65.155Liberty Front Press01/27/2022verifiedHigh
2244.229.223.74ec2-44-229-223-74.us-west-2.compute.amazonaws.comLiberty Front Press01/27/2022verifiedMedium
2346.4.6.184static.184.6.4.46.clients.your-server.deLiberty Front Press01/27/2022verifiedHigh
2446.166.182.52const-de.easywaypath.comLiberty Front Press01/27/2022verifiedHigh
2546.166.182.55Liberty Front Press01/27/2022verifiedHigh
2646.166.182.56server.eversservices.comLiberty Front Press01/27/2022verifiedHigh
2746.166.184.102102.http-proxy1.cloudns.netLiberty Front Press01/27/2022verifiedHigh
2846.166.184.104104.http-proxy1.cloudns.netLiberty Front Press01/27/2022verifiedHigh
2947.91.170.222Liberty Front Press01/27/2022verifiedHigh
3049.128.177.81ipv4-81-177-128.as55666.netLiberty Front Press01/27/2022verifiedHigh
3150.112.29.189ec2-50-112-29-189.us-west-2.compute.amazonaws.comLiberty Front Press01/27/2022verifiedMedium
3250.112.46.4ec2-50-112-46-4.us-west-2.compute.amazonaws.comLiberty Front Press01/27/2022verifiedMedium
3351.89.88.96cloud08.aztcotechnology.comLiberty Front Press01/27/2022verifiedHigh
3451.254.232.56ip56.ip-51-254-232.euLiberty Front Press01/27/2022verifiedHigh
3552.8.174.68ec2-52-8-174-68.us-west-1.compute.amazonaws.comLiberty Front Press01/27/2022verifiedMedium
3652.11.10.90ec2-52-11-10-90.us-west-2.compute.amazonaws.comLiberty Front Press01/27/2022verifiedMedium
3752.40.118.225ec2-52-40-118-225.us-west-2.compute.amazonaws.comLiberty Front Press01/27/2022verifiedMedium
3852.43.21.0ec2-52-43-21-0.us-west-2.compute.amazonaws.comLiberty Front Press01/27/2022verifiedMedium
3952.59.120.70eu-staticip2.multiscreensite.comLiberty Front Press01/27/2022verifiedHigh
4052.128.23.153Liberty Front Press01/27/2022verifiedHigh
4152.213.114.86ec2-52-213-114-86.eu-west-1.compute.amazonaws.comLiberty Front Press01/27/2022verifiedMedium
4254.37.218.50ip50.ip-54-37-218.euLiberty Front Press01/27/2022verifiedHigh
4354.38.220.85ns1.emailverification.infoLiberty Front Press01/27/2022verifiedHigh
4462.171.177.42vmi498625.contaboserver.netLiberty Front Press01/27/2022verifiedHigh
4563.143.32.9494-32-143-63.static.reverse.lstn.netLiberty Front Press01/27/2022verifiedHigh
4666.152.163.75host104.cloud-hostdone.comLiberty Front Press01/27/2022verifiedHigh
4769.172.201.153Liberty Front Press01/27/2022verifiedHigh
4869.172.201.208Liberty Front Press01/27/2022verifiedHigh
4972.1.32.168usdreamers.netLiberty Front Press01/27/2022verifiedHigh
5078.46.102.123static.123.102.46.78.clients.your-server.deLiberty Front Press01/27/2022verifiedHigh
5178.47.230.139static.139.230.47.78.server1.uaehost.spaceLiberty Front Press01/27/2022verifiedHigh
5279.143.85.44Liberty Front Press01/27/2022verifiedHigh
5381.169.145.149w95.rzone.deLiberty Front Press01/27/2022verifiedHigh
5485.159.233.35Liberty Front Press01/27/2022verifiedHigh
5585.159.233.60.Liberty Front Press01/27/2022verifiedHigh
5688.198.13.86static.88.198.13.86.clients.your-server.deLiberty Front Press01/27/2022verifiedHigh
5788.198.48.179static.88.198.48.179.clients.your-server.deLiberty Front Press01/27/2022verifiedHigh
58XX.XXX.XX.XXXxxxxxx.xx-xxx-xx-xxx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
59XX.XXX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
60XX.XXX.XXX.XXxxx.xxxxxxxxxxxx.xxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
61XX.XXX.XX.XXXxx.xxxx.xxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
62XX.XXX.XX.XXXxx.xxxx.xxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
63XX.XXX.XX.XXXxx.xxxx.xxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
64XX.XXX.XX.XXXxx.xxxx.xxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
65XX.XXX.XX.XXXxx.xxxx.xxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
66XX.XXX.XX.XXXxx.xxxx.xxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
67XX.XXX.XX.XXXxx.xxxx.xxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
68XX.XXX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
69XX.XXX.XX.Xxxxx.xxxxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
70XX.XXX.XXX.XXXxxxxxx.xxx.xxx.xxx.xx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
71XX.XXX.XX.XXXxxxxxx.xxx.xx.xxx.xx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
72XX.XX.XXX.XXxx.xx.xxx.xx.xxxxxx.xxxxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
73XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
74XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
75XXX.XX.XX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
76XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
77XXX.XX.XX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
78XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
79XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
80XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
81XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
82XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
83XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
84XXX.XX.X.XXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
85XXX.XX.X.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
86XXX.XX.X.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
87XXX.XX.X.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
88XXX.XX.X.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
89XXX.XX.X.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
90XXX.XX.XX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
91XXX.XX.XX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
92XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
93XXX.XX.XX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
94XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
95XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
96XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
97XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
98XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
99XXX.XX.XX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
100XXX.XX.XX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
101XXX.XX.XX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
102XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
103XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
104XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
105XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
106XXX.XX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
107XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
108XXX.XX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
109XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
110XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
111XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
112XXX.XX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
113XXX.XX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
114XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
115XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
116XXX.XX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
117XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
118XXX.XX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
119XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
120XXX.XX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
121XXX.XX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
122XXX.XX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
123XXX.XX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
124XXX.XX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
125XXX.XX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
126XXX.XX.X.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
127XXX.XX.X.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
128XXX.XX.XX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
129XXX.XX.XX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
130XXX.XX.XX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
131XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
132XXX.XX.XX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
133XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
134XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
135XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
136XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
137XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
138XXX.XX.XX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
139XXX.XX.XX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
140XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
141XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
142XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
143XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
144XXX.XX.XX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
145XXX.XX.XX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
146XXX.XX.XX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
147XXX.XX.XX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
148XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
149XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
150XXX.XX.XX.XXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
151XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
152XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
153XXX.XXX.XXX.XXXxxx-xxx-xxx-xxx.xxxxxxx-xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
154XXX.XXX.XX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
155XXX.XXX.XX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
156XXX.XXX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
157XXX.XX.XX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
158XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
159XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
160XXX.XX.XX.XXxxx.xx.xx.xx.xxxxxxxxxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
161XXX.XX.XX.XXxxx.xx.xx.xx.xxxxxxxxxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
162XXX.XX.XX.XXxxx.xx.xx.xx.xxxxxxxxxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
163XXX.XXX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
164XXX.XXX.XXX.XX.Xxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
165XXX.XXX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
166XXX.XXX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
167XXX.XXX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
168XXX.X.X.XxxxxxxxxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
169XXX.XXX.XX.Xxxxxxx.x.xx.xxx.xxx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
170XXX.XXX.XXX.XXXxxx.xxxxx-xxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
171XXX.XX.XX.XXXxxxxxx.xxx.xx.xx.xxx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
172XXX.XX.XXX.XXxxxxxx.xx.xxx.xx.xxx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
173XXX.XX.XXX.XXXxx-xxx-xxx-xx-xxx.xxxxxx.xxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
174XXX.XXX.X.XXxxxxxx.xx.x.xxx.xxx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
175XXX.XX.XXX.XXxxxx.xx-xxx-xx-xxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
176XXX.XX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
177XXX.XXX.X.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
178XXX.XXX.X.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
179XXX.XXX.X.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
180XXX.XXX.X.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
181XXX.XXX.X.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
182XXX.XXX.X.XXXxxxxxxxxxx.xxxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
183XXX.XXX.X.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
184XXX.XXX.X.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
185XXX.XXX.X.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
186XXX.XXX.X.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
187XXX.XXX.X.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
188XXX.XX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
189XXX.XX.XXX.XXxxxxx.xxxxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
190XXX.XX.XXX.XXXxxxxx.xxxxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
191XXX.XX.XXX.XXXxxxxx.xxxxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
192XXX.XXX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
193XXX.XXX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
194XXX.XXX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
195XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
196XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
197XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
198XXX.XX.XXX.XXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
199XXX.XX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
200XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
201XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
202XXX.XX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
203XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
204XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
205XXX.XX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
206XXX.XX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
207XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
208XXX.XX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
209XXX.XX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
210XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
211XXX.XX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
212XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
213XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
214XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
215XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
216XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
217XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
218XXX.XX.XXX.XXxxxxx-xxxxxxxxxxx-xx-xxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
219XXX.XX.XXX.XXxxxxx-xxxxxxxxxxx-xx-xxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
220XXX.XX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
221XXX.XXX.XX.XXXxxx-xxx-xx-xxx-xxxx.xxxxxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
222XXX.XX.XXX.XXxxx-xx-xxx-xx.xxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
223XXX.XXX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
224XXX.XXX.X.XXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
225XXX.XXX.X.XXXxxxxxx.xxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
226XXX.XXX.XX.XXXxxxxxxxxxxx.xxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
227XXX.XXX.XXX.XXXxxx.xxxx-xxxxxx.xxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
228XXX.X.XX.XXXxxxxxx.xxx.xx.x.xxx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
229XXX.X.XX.XXxxxxxx.xx.xx.x.xxx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
230XXX.X.XX.XXxxxxxx.xx.xx.x.xxx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
231XXX.X.XX.XXXxxxxxx.xxx.xx.x.xxx.xxxxxxx.xxxx-xxxxxx.xxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
232XXX.XX.XX.XXXxxxxx.xx-xxx-xx-xx.xxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
233XXX.XXX.XXX.XXxx-xxx-xxx-xxx-xx.xx.xxxxxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
234XXX.XXX.XXX.XXxx-xxx-xxx-xxx-xx.xx.xxxxxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
235XXX.XXX.XXX.XXxx-xxx-xxx-xxx-xx.xx.xxxxxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
236XXX.XX.XXX.XXXxxxxxxxx.xxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
237XXX.XX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
238XXX.XX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
239XXX.XX.XXX.XXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
240XXX.XX.XXX.XXXxxxxxxxxx-xx-xxxxx.xxxxxxxxxxxx.xxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
241XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
242XXX.XXX.XX.XXxxxx.xxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
243XXX.XXX.XXX.XXXxx.xxxx-xxxxxx.xxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
244XXX.XXX.XXX.XXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
245XXX.X.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
246XXX.XXX.XX.XXXxxxxx.xx-xxx-xxx-xx.xxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
247XXX.XX.XX.XXXxxx-xx-xx-xxx.xx.xxxx.xxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
248XXX.XX.XX.Xxxxxxxx.xxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
249XXX.XX.XXX.XXXxx.xxxx-xxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
250XXX.XXX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
251XXX.XXX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
252XXX.XX.XX.XXxxxxxxxxx-xxxx.xx-xxxxxxx-xxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
253XXX.XX.XXX.Xxx-xxx-xx-xxx-x.xx.xxxxxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
254XXX.XX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
255XXX.XXX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
256XXX.XXX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
257XXX.XXX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
258XXX.XXX.XXX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
259XXX.XXX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
260XXX.XXX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
261XXX.XXX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
262XXX.XXX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
263XXX.XX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
264XXX.XX.XX.XXxxx.xxxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
265XXX.XX.XX.XXxxx.xxxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
266XXX.XX.XX.XXXxx.xxxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
267XXX.XX.XX.XXXxxxx.xxxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
268XXX.XX.XXX.XXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
269XXX.XX.XX.XXXxxx-xx-xx-xxx.xxx.xxxxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
270XXX.XX.XX.XXXxxx-xx-xx-xxx.xxx.xxxxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
271XXX.XXX.XX.XXXxxxx.xxxxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
272XXX.XXX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
273XXX.XXX.XX.XXXxxxx.xxxxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
274XXX.XXX.XX.XXXxxxx.xxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
275XXX.XX.XXX.XXXxxxxx.xxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
276XXX.XXX.XX.XXXXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
277XXX.XXX.XXX.Xxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
278XXX.XXX.XXX.XXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
279XXX.XXX.XXX.XXxxxxxxxxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
280XXX.XXX.XXX.XXxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
281XXX.XXX.XXX.XXxxx.xxxxxxxx.xxxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
282XXX.XXX.XXX.XXxxxxxxx.xxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh
283XXX.XXX.XXX.XXXxxxxx.xx-xxx-xxx-xxx.xxXxxxxxx Xxxxx Xxxxx01/27/2022verifiedHigh

TTP - Tactics, Techniques, Procedures (18)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IOA - Indicator of Attack (110)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/api/runscriptpredictiveHigh
2File/api/v1/snapshotspredictiveHigh
3File/catalog/all-productspredictiveHigh
4File/changePasswordpredictiveHigh
5File/forum/away.phppredictiveHigh
6File/goform/addIpMacBindpredictiveHigh
7File/goform/DelDhcpRulepredictiveHigh
8File/goform/delIpMacBindpredictiveHigh
9File/goform/DelPortMappingpredictiveHigh
10File/goform/modifyDhcpRulepredictiveHigh
11File/goform/modifyIpMacBindpredictiveHigh
12File/goform/setBlackRulepredictiveHigh
13File/goform/SetDDNSCfgpredictiveHigh
14File/xxxxxx/xxxxxxxxxpredictiveHigh
15File/xxxxxx/xxxxxxxxxxxxxxxxpredictiveHigh
16File/xxxxxx/xxxxxxxxxxxxxxpredictiveHigh
17File/xxxxxx/xxxxxxxxxxxxxpredictiveHigh
18File/xxxxxx/xxxxxxxxxxxpredictiveHigh
19File/xxx/xxxxxxxxxxxx.xxxpredictiveHigh
20File/xxxxxx/xxxxxxxxxx.xxxpredictiveHigh
21File/xxxxxxxxxxx.xxx/xxxxxxxxpredictiveHigh
22File/xxxxxx_xx.xxxpredictiveHigh
23File/xxx.xxxpredictiveMedium
24File/xxxxxxxx.xxxpredictiveHigh
25File/xxxxxxxxx/predictiveMedium
26File/xxx/xxxxxxx/xxxpredictiveHigh
27File/xxx/xxxx/xxxxxxxxxxxx?xxxxxxxx=xxxxxpredictiveHigh
28File/xxxxxxxx/xxxxxxxxxxxxxxx.xxxpredictiveHigh
29File/xxxx/xxxxxxx xxxxxx/xxx/xxx_xxxx_xxxxxx.xxxpredictiveHigh
30File/xxxx/xxxxxxx_xxxxxxxxxx_xxxxxxxx.xxxpredictiveHigh
31File/xxxx/xxxxxx_xxx.xxxpredictiveHigh
32File/xx/xxxxx.xxxpredictiveHigh
33Filexxxxxxx.xxpredictiveMedium
34Filexxxxx/xxxxxxx/xxxxxxxxxxxxx.xxpredictiveHigh
35Filexxxxx.xxxpredictiveMedium
36Filexxxx-xxxx.xpredictiveMedium
37Filexxxx.xxxpredictiveMedium
38Filexxxxxxxxxxxx.xxxpredictiveHigh
39Filexxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
40Filexxxx.xxxpredictiveMedium
41Filexxxxxxx/xxxxxxxx.xxxpredictiveHigh
42Filexx/xxxxxx/xxxxxxxxxxpredictiveHigh
43Filexxxxx/xxxxxxxx/xxxxxxxxxxxx/xxxxxxxxxxxxpredictiveHigh
44Filexxx/xxx/xx_xxx.xpredictiveHigh
45Filexxxxxxxx.xxxpredictiveMedium
46Filexxx.xxpredictiveLow
47Filexxxxxxxx.xxxpredictiveMedium
48Filexxxxxxxx.xxxpredictiveMedium
49Filexxxxxxxx_xx.xxxpredictiveHigh
50Filexxxxxx_xxxx-xxxpredictiveHigh
51Filexxxxxxxxxxxxxxx.xxxpredictiveHigh
52Filexxxxxx_xxxxxx_xxxxx.xxxpredictiveHigh
53Filexxxx-xxxxx.xxxpredictiveHigh
54Filexxxx-xxxxxxxx.xxxpredictiveHigh
55Filexxxxxxxx-xxx.xxxpredictiveHigh
56Filexxxxxx.xxxpredictiveMedium
57Filexxxxxx_xxxxxxxx.xxxpredictiveHigh
58Filexxxx/xxx/xxxx-xxxxx.xxxpredictiveHigh
59Filexxxxxx/xxxxxxx/xxxxxxxx/xxxx/xxxxxxx.xxxpredictiveHigh
60Filexxxx_xxxxxxx.xxxpredictiveHigh
61Filexx-xxxx.xxxpredictiveMedium
62Filexx-xxxxxxxxx.xxxpredictiveHigh
63Argumentxxxxx_xxxxxpredictiveMedium
64ArgumentxxxxxxxxxxpredictiveMedium
65ArgumentxxxxxxxxxxxxxpredictiveHigh
66ArgumentxxxpredictiveLow
67Argumentxxxxx_xxxxpredictiveMedium
68ArgumentxxxxxxxxxpredictiveMedium
69ArgumentxxxxxpredictiveLow
70ArgumentxxxxxxxxxxxxpredictiveMedium
71ArgumentxxxxxxxxxxpredictiveMedium
72ArgumentxxxxxxxpredictiveLow
73ArgumentxxxxxxxxpredictiveMedium
74ArgumentxxxxpredictiveLow
75ArgumentxxxxxxxxxxxxxxxxxxxxxxpredictiveHigh
76Argumentxx/xxxxpredictiveLow
77ArgumentxxxxxxxpredictiveLow
78ArgumentxxpredictiveLow
79ArgumentxxpredictiveLow
80ArgumentxxxxxpredictiveLow
81ArgumentxxxxxxxxxxxxxxpredictiveHigh
82ArgumentxxxxxxxxxxxxxpredictiveHigh
83Argumentxxxxxxxxxxxxxxx/xxxxxxxxxxxxxxx/xxxxxxxxxxxxxxxx/xxxxxxxxxxxxxxxxxxxpredictiveHigh
84ArgumentxxxxxpredictiveLow
85ArgumentxxxxxxxxxxpredictiveMedium
86ArgumentxxxxxxxxxxxxpredictiveMedium
87Argumentxx_xxxxxx_xxxxxxxxxxxxpredictiveHigh
88Argumentxx_xxxxxpredictiveMedium
89ArgumentxxxxpredictiveLow
90Argumentxxxx/xxxxxx/xxxxxxxpredictiveHigh
91ArgumentxxxxxxxxxxxxxxxxpredictiveHigh
92Argumentxxxxxxx_xxxxxxx_xxxxx_xxxxx_xxxxxpredictiveHigh
93ArgumentxxxxxxpredictiveLow
94ArgumentxxxxxxxxpredictiveMedium
95ArgumentxxxxxxxxxxxxxxxxxxpredictiveHigh
96ArgumentxxxxxxxpredictiveLow
97ArgumentxxxxpredictiveLow
98ArgumentxxxxxxxxxxxxpredictiveMedium
99ArgumentxxxxxxxxxpredictiveMedium
100Argumentxxxxxxxxxx/xxxxxxxx/xxxxxxx/xxxxxxxxxxpredictiveHigh
101ArgumentxxxpredictiveLow
102ArgumentxxxxxxxxxpredictiveMedium
103ArgumentxxxxxxxxxxxxxxxxpredictiveHigh
104Argumentxx_xxpredictiveLow
105ArgumentxxxxpredictiveLow
106ArgumentxxxpredictiveLow
107Argumentxxx_xxxpredictiveLow
108ArgumentxxpredictiveLow
109Argumentxxxx/xxxxx/xxx/xxxx/xxxxxx/xxxxxxpredictiveHigh
110Network Portxxx/xxxxpredictiveMedium

References (3)

The following list contains external sources which discuss the actor and the associated activities:

Want to stay up to date on a daily basis?

Enable the mail alert feature now!