MATA Analysis

IOB - Indicator of Behavior (288)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en230
zh36
fr6
es6
de4

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

la174
us50
me22
gb18
cn14

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Microsoft Windows14
WordPress8
PHP6
Google Android4
Ecommerce-CodeIgniter-Bootstrap4

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemCTIEPSSCVE
1Watchdog Anti-Virus IoControlCode wsdk-driver.sys 0x80002008 access control5.35.2$0-$5k$0-$5kProof-of-ConceptNot Defined0.000.00042CVE-2023-1453
2LogicBoard CMS away.php redirect6.36.1$0-$5k$0-$5kNot DefinedUnavailable1.370.00000
3Tiki Admin Password tiki-login.php improper authentication8.07.7$0-$5k$0-$5kNot DefinedOfficial Fix1.960.00786CVE-2020-15906
4WordPress AdServe adclick.php sql injection7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.200.00073CVE-2008-0507
5TikiWiki tiki-register.php input validation7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.500.01009CVE-2006-6168
6Primetek Primefaces inadequate encryption8.58.1$0-$5k$0-$5kProof-of-ConceptNot Defined0.040.97013CVE-2017-1000486
7Drupal Sanitization API cross site scripting3.53.4$0-$5k$0-$5kNot DefinedOfficial Fix0.000.00056CVE-2020-13672
8Microsoft Windows HMAC Key Derivation Local Privilege Escalation8.88.1$25k-$100k$5k-$25kUnprovenOfficial Fix0.020.00048CVE-2023-36400
9LiteSpeed Cache Plugin Shortcode cross site scripting3.53.4$0-$5k$0-$5kNot DefinedNot Defined0.030.00051CVE-2023-4372
10WebTitan Appliance Extensions Persistent cross site scripting3.53.4$0-$5k$0-$5kNot DefinedNot Defined0.020.00000
11ipTIME NAS-I Bulletin Manage unrestricted upload7.17.1$0-$5k$0-$5kNot DefinedNot Defined0.040.00988CVE-2020-7847
12RARLabs WinRAR ZIP Archive Remote Code Execution6.35.7$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.030.28864CVE-2023-38831
13request-baskets API Request {name} server-side request forgery6.46.4$0-$5k$0-$5kNot DefinedNot Defined0.000.04409CVE-2023-27163
14DZCP deV!L`z Clanportal config.php code injection7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.830.00954CVE-2010-0966
15PHP phpinfo cross site scripting4.33.9$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.290.01916CVE-2007-1287
16nginx request smuggling6.96.9$0-$5k$0-$5kNot DefinedNot Defined3.060.00000CVE-2020-12440
17Microsoft Windows Scripting Engine Remote Code Execution5.95.1$25k-$100k$5k-$25kUnprovenOfficial Fix0.030.35598CVE-2021-34480
18NotificationX Plugin SQL Statement sql injection5.65.4$0-$5k$0-$5kNot DefinedOfficial Fix0.030.03383CVE-2022-0349
19DevExpress ASP.NET Web Forms ASPxHttpHandlerModule DXR.axd resource injection4.34.2$0-$5k$0-$5kNot DefinedNot Defined0.090.00166CVE-2022-41479
20Basilix Webmail login.php3 command injection7.37.0$0-$5k$0-$5kNot DefinedOfficial Fix0.050.00000

IOC - Indicator of Compromise (19)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

TTP - Tactics, Techniques, Procedures (18)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IOA - Indicator of Attack (142)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/admin/dl_sendmail.phppredictiveHigh
2File/api/baskets/{name}predictiveHigh
3File/api/v2/cli/commandspredictiveHigh
4File/DXR.axdpredictiveMedium
5File/forum/away.phppredictiveHigh
6File/out.phppredictiveMedium
7File/owa/auth/logon.aspxpredictiveHigh
8File/phppath/phppredictiveMedium
9File/spip.phppredictiveMedium
10File/systemrw/predictiveMedium
11File/zm/index.phppredictiveHigh
12Fileadclick.phppredictiveMedium
13Fileadmin.jcomments.phppredictiveHigh
14Fileadmin/gv_mail.phppredictiveHigh
15Fileapplication/modules/admin/views/ecommerce/products.phppredictiveHigh
16Filebase/ErrorHandler.phppredictiveHigh
17Fileblog.phppredictiveMedium
18Filebs_disp_as_mime_type.phppredictiveHigh
19Filexxxx_xxxxxxx.xxxpredictiveHigh
20Filexxxxxxxx.xxxpredictiveMedium
21Filexxxxxx.xxxpredictiveMedium
22Filexxxxxxxxxx/xxxxxxxxxxxx/xxxxxxxxxxxx/xxxxxxxxxxxxx/xxxxxxxxxxxxxxxxxx/xxxx_xxxxx.xxxxpredictiveHigh
23Filexxxxx-xxxxxxx.xxxpredictiveHigh
24Filexxxxxxxxxx/xxx_xxxxxxxxxx/xxxxxxx/xxxxxxxxxx.xxxpredictiveHigh
25Filexxxxxxxxxx\xxxx.xxxpredictiveHigh
26Filexxxxxxxxxxx.xxxpredictiveHigh
27Filexxxx-xxxxxx.xxxpredictiveHigh
28Filexxxx.xxxpredictiveMedium
29Filexxx/xxxx/xxxx_xxxxxx.xpredictiveHigh
30Filexxxxxxxxxxx.xxxxx.xxxpredictiveHigh
31Filexxxxxxx.xxxpredictiveMedium
32Filexxxxx.xxxpredictiveMedium
33Filexxxx.xxxpredictiveMedium
34Filexxxxx_xxxx.xxxpredictiveHigh
35Filexxxxxxxxxx\xxxxxx\xxxxxxxxxxxxx.xxxpredictiveHigh
36Filexxx/xxxxxx.xxxpredictiveHigh
37Filexxxxxxxx/xxxxxxx/xxxxxxx.xxxx.xxxpredictiveHigh
38Filexxxxx.xxxpredictiveMedium
39Filexxxxx.xxx/xxxxxx.xxx/xxxxxxxxxxxxx.xxx/xxxxxxxx.xxxpredictiveHigh
40Filexxxxx.xxx?x=xxxx&x=xxxx&x=xx_xxx_xxxxxxpredictiveHigh
41Filexxxxx.xxx?x=xxxx&x=xxxxxxx&x=xxxpredictiveHigh
42Filexxxxxxxx/xxxxxxxx_xxxxxxx_xxxxxx/xxxxx.xxxpredictiveHigh
43Filexxxx_xxxx.xxxpredictiveHigh
44Filexxxx_xxxxxxx.xxxpredictiveHigh
45Filexxxxx.xxxxpredictiveMedium
46Filexxxxx.xxxpredictiveMedium
47Filexxxxxx/xxxxxxxxx.xxxpredictiveHigh
48Filexx_xxxx.xpredictiveMedium
49Filexxx/xxxx/xxxx_xxxxxxxxx.xpredictiveHigh
50Filexxxxxxx_xxxx.xxxpredictiveHigh
51Filexxxxxxxxxxxxxxxxx.xxxpredictiveHigh
52Filexxxxx_xxxxxx_xxxxxxxx.xxxpredictiveHigh
53Filexxxxxxx.xxxpredictiveMedium
54Filexxxxxxxxxxxxx.xxxpredictiveHigh
55Filexxxxxxxxxxxx.xxxpredictiveHigh
56Filexxxxxxx/xxxxxxx/xxx/xxxxxxxxxx.xxx?xxxxxxxx=xxxx&xxxxxx=xxxxxxxxxxpredictiveHigh
57Filexxxxx.xxxpredictiveMedium
58Filexxxx.xxxpredictiveMedium
59Filexxxxxxxx.xxxpredictiveMedium
60Filexxxxxxxxxx.xxxpredictiveHigh
61Filexxxxxxxx.xxpredictiveMedium
62Filexxxx_xxxx_xxxxxx.xxxpredictiveHigh
63Filexxxxxxxxxxxxxx.xxxpredictiveHigh
64Filexxxx_xxxxxxx_xxxxxxxx.xxxpredictiveHigh
65Filexxxx_xxxxx.xxxxpredictiveHigh
66Filexxxxxx\xxxxxxxx\xx_xxxxx_xxxxxxx.xxxpredictiveHigh
67Filexxxxxxx.xxx.xx.xxxxxxxxxxx.xxxpredictiveHigh
68Filexxxxxxxxx/xxxxxxxx.xxxpredictiveHigh
69Filexxxx-xxxxx.xxxpredictiveHigh
70Filexxxx-xxxxxxxx.xxxpredictiveHigh
71Filexxxxxx.xxxpredictiveMedium
72Filexxx.xxxpredictiveLow
73Filexxxxxxx-xxxxx.xxxpredictiveHigh
74Filexxxx/xxx/xxxx-xxxxx.xxxpredictiveHigh
75Filexxxx.xxxpredictiveMedium
76Filexxxxxxxx.xxxpredictiveMedium
77Filexxxxxxxxx.xxxpredictiveHigh
78Filexx-xxxxx-xxxxxx.xxxpredictiveHigh
79Filexx-xxxxxxxx/xxxx.xxxpredictiveHigh
80Filexx-xxxxxxxx/xxxx-xxx/xxxxxxxxx/xxxxx-xx-xxxx-xxxxx-xxxxxxxxxx.xxxpredictiveHigh
81Filexx-xxxxxxxxx.xxxpredictiveHigh
82Filexxxx.xxxpredictiveMedium
83File_xxxxxxxx/xxxx?xxxxpredictiveHigh
84File~/xxx/xxxx-xxxxxxxxx.xxxpredictiveHigh
85File~/xxxxxxxx/xxxxx-xx-xxxxxxxxxx-xxxxxxxxx.xxxpredictiveHigh
86Libraryxxxxxx.xxxpredictiveMedium
87Libraryxxxxxx.xxxpredictiveMedium
88Libraryxxxxxx.xxxpredictiveMedium
89Libraryxxxxxxx/xxx.xxx.xxx.xxxpredictiveHigh
90Libraryxxxx-xxxxxx.xxxpredictiveHigh
91Argumentxxx_xxxpredictiveLow
92ArgumentxxxxxxxxxpredictiveMedium
93ArgumentxxxxxxxxpredictiveMedium
94Argumentxxx_xxx_xx_xxx_xxxxxxxxxx_xpredictiveHigh
95Argumentxxxxx_xxxxpredictiveMedium
96Argumentxxxx_xxx_xxxxpredictiveHigh
97ArgumentxxxpredictiveLow
98ArgumentxxxxxxxxxpredictiveMedium
99Argumentxxx_xxpredictiveLow
100ArgumentxxxpredictiveLow
101ArgumentxxxpredictiveLow
102ArgumentxxxxxxxxxxxxxxxpredictiveHigh
103Argumentxxxx_xxpredictiveLow
104ArgumentxxxpredictiveLow
105Argumentxxxxxxxxx_xxxxxxpredictiveHigh
106ArgumentxxxxxxxxxpredictiveMedium
107Argumentxx_xxxxxxxpredictiveMedium
108ArgumentxxxxpredictiveLow
109ArgumentxxxxxxxxpredictiveMedium
110Argumentxxxxxx_xxxxxpredictiveMedium
111ArgumentxxxxxxxxxpredictiveMedium
112Argumentxx_xxpredictiveLow
113Argumentxxxxxxx[xxxxxxx]predictiveHigh
114ArgumentxxxxxpredictiveLow
115ArgumentxxpredictiveLow
116ArgumentxxxxpredictiveLow
117ArgumentxxxxpredictiveLow
118Argumentxxxx/xxxxxxxxpredictiveHigh
119Argumentxx_xxpredictiveLow
120ArgumentxxxxxxxpredictiveLow
121ArgumentxxxxxxxpredictiveLow
122ArgumentxxxxpredictiveLow
123ArgumentxxxxxxxxpredictiveMedium
124Argumentxxxxxx_xxxxxxpredictiveHigh
125Argumentxxxxxxxx_xxpredictiveMedium
126Argumentxxxxxxxx_xxxpredictiveMedium
127Argumentxxxxxx_xxxxxpredictiveMedium
128ArgumentxxxpredictiveLow
129Argumentxxxx_xxxxpredictiveMedium
130ArgumentxxxxxxxpredictiveLow
131Argumentxxx_xxxxpredictiveMedium
132Argumentxx_xxpredictiveLow
133ArgumentxxxxxpredictiveLow
134Argumentxxxxx_xxpredictiveMedium
135ArgumentxxxpredictiveLow
136ArgumentxxxxxxpredictiveLow
137ArgumentxxxxxxxxpredictiveMedium
138Argument_xxx_xxxxxxxxxxx_predictiveHigh
139Input Value<xxxxxx >xxxxx(xxx)</xxxxxx>predictiveHigh
140Input Valuexxxxxxxxx' xxx 'x'='xpredictiveHigh
141Pattern|xx xx xx xx|predictiveHigh
142Network Portxxx/xxxxxpredictiveMedium

References (2)

The following list contains external sources which discuss the actor and the associated activities:

Do you want to use VulDB in your project?

Use the official API to access entries easily!