Nemty Analysis

IOB - Indicator of Behavior (137)

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Lang

en118
de18
it2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Country

us22
it2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Actors

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Product

Microsoft Visual Studio10
SQLite6
FineCMS4
Idera Uptime Monitor4
Easy Modal Plugin2

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemCTIEPSSCVE
1Easy Modal Plugin modals.php sql injection5.95.7$0-$5kCalculatingNot DefinedOfficial Fix0.000.00885CVE-2017-12947
2Red Hat Enterprise Linux Address Translation buffer access with incorrect length value6.56.2$0-$5k$0-$5kNot DefinedOfficial Fix0.010.00885CVE-2019-19339
3Iatek ASPapp links.asp sql injection7.36.9$0-$5kCalculatingProof-of-ConceptNot Defined0.030.00986CVE-2008-1430
4SQLite Incomplete Fix CVE-2019-19880 select.c multiSelect null pointer dereference7.57.5$0-$5k$0-$5kNot DefinedNot Defined0.000.01537CVE-2019-19926
5SQLite CREATE Statement privileges management8.08.0$0-$5k$0-$5kNot DefinedNot Defined0.000.01742CVE-2019-19603
6SQLite NOT NULL pragma.c unusual condition9.39.3$5k-$25k$0-$5kNot DefinedNot Defined0.050.01108CVE-2019-19646
7serialize-to-js Regular Expression RegExp.prototype.toString cross site scripting3.73.3$0-$5k$0-$5kNot DefinedOfficial Fix0.000.00885CVE-2019-16772
8Mojoomla Hospital Management System sql injection7.56.8$0-$5kCalculatingProof-of-ConceptNot Defined0.000.01564CVE-2017-14846
9Microsoft Edge Chakra Javascript Engine access control8.07.7$25k-$100k$5k-$25kNot DefinedOfficial Fix0.000.06454CVE-2017-11767
10FormCraft Basic Plugin form.php sql injection8.58.5$0-$5k$0-$5kNot DefinedNot Defined0.050.00885CVE-2017-13137
11Easy Modal Plugin modals.php sql injection5.95.7$0-$5k$0-$5kNot DefinedOfficial Fix0.000.00885CVE-2017-12946
12IBM Sterling B2B Integrator Standard Edition Back-End Database sql injection7.57.5$5k-$25k$5k-$25kNot DefinedNot Defined0.080.01061CVE-2017-1174
13SLiMS 8 Akasia AJAX_lookup_handler.php sql injection7.57.3$0-$5k$0-$5kNot DefinedNot Defined0.000.01055CVE-2017-12585
14Hashtopus admin.php sql injection7.57.5$0-$5k$0-$5kNot DefinedNot Defined0.010.01055CVE-2017-11678
15GLPI getDropdownValue.php sql injection8.58.4$0-$5k$0-$5kNot DefinedOfficial Fix0.000.00885CVE-2017-11329
16Apache OpenMeetings sql injection7.57.5$0-$5k$0-$5kNot DefinedNot Defined0.200.00885CVE-2017-7681
17ShopXO Add Index.php access control5.55.5$0-$5k$0-$5kNot DefinedNot Defined0.030.00885CVE-2022-28056
18HashiCorp Vault/Vault Enterprise access control7.37.3$0-$5k$0-$5kNot DefinedNot Defined0.030.00954CVE-2022-36129
19Blue Prism Enterprise access control4.74.7$0-$5k$0-$5kNot DefinedNot Defined0.040.00890CVE-2022-36117
20Microsoft Windows WPAD data processing8.58.4$25k-$100k$0-$5kHighOfficial Fix0.490.33687CVE-2016-3236

IOC - Indicator of Compromise (25)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

TTP - Tactics, Techniques, Procedures (9)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueVulnerabilitiesAccess VectorTypeConfidence
1T1006CWE-22Pathname TraversalpredictiveHigh
2T1059.007CWE-79, CWE-80Cross Site ScriptingpredictiveHigh
3TXXXXCWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveHigh
4TXXXXCWE-XXXxxxxxx XxxxxxxxxpredictiveHigh
5TXXXX.XXXCWE-XXXXxxx XxxxxxxxpredictiveHigh
6TXXXXCWE-XXX7xx Xxxxxxxx XxxxxxxxpredictiveHigh
7TXXXXCWE-XXXxx XxxxxxxxxpredictiveHigh
8TXXXXCWE-XXXXxxxxxxxxxxxxpredictiveHigh
9TXXXXCWE-XXXX2xx Xxxxxxxxxxxxxxxx: Xxxx Xxxxxxxxxxxx Xxxxxxx XxxxxxxxxxpredictiveHigh

IOA - Indicator of Attack (78)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/admin/edit_member.phppredictiveHigh
2File/apps/app_article/controller/editor.phppredictiveHigh
3File/front/actions.phppredictiveHigh
4File/front/search.phppredictiveHigh
5File/gadgets/definitions/uptime.CapacityWhatIfGadget/getmetrics.phppredictiveHigh
6File/gadgets/definitions/uptime.CapacityWhatifGadget/getxenmetrics.phppredictiveHigh
7File/goform/dir_setWanWifipredictiveHigh
8File/opt/tms/bin/clipredictiveHigh
9File/timeline2.phppredictiveHigh
10Fileadduser.phppredictiveMedium
11Filexxxxx.xxxpredictiveMedium
12Filexxxxx/xxxx_xxxxxx_xxxxxxx.xxxpredictiveHigh
13Filexxxxx/xxxxx.xxxxxxxxxxxxxxx_xxxx_xxxxx.xxxpredictiveHigh
14Filexxxx/xxxxxxxxxxxxxxxx.xxxpredictiveHigh
15Filexxxxx.xpredictiveLow
16Filexxx/xxxxxxx/xxxxxxxxxx/xxxxx.xxxpredictiveHigh
17Filexxxx.xxxpredictiveMedium
18Filexxxxx.xpredictiveLow
19Filexxxxxxxxxx.xxxpredictiveHigh
20Filexxxxx.xxxxxxxxxxxx.xxxpredictiveHigh
21Filexxxxxxx\xxxxxxxxxx\xxxxx\xxxxxx.xxxpredictiveHigh
22Filexxxxxxxx_xxxxxxxxxx_xxxxxxxxxxxx.xxxpredictiveHigh
23Filexx_xxxxxxxxxxxxx.xxxpredictiveHigh
24Filexxxx.xpredictiveLow
25Filexxxx.xxxpredictiveMedium
26Filexxxxxxxxxxx.xxxpredictiveHigh
27Filexxxxxxxx/xxx_xxxxx.xpredictiveHigh
28Filexx/xxxxxx/xxxxxx.xpredictiveHigh
29Filexxxxx.xxxpredictiveMedium
30Filexxxxx_xxxxxxxxx_xxxxxx.xxxpredictiveHigh
31FilexxxpredictiveLow
32Filexxx/xxxxxxxx_xxxxxxxxxxxxxxx.xxxxx.xxxpredictiveHigh
33Filexxxxx.xxxpredictiveMedium
34Filexxxxx.xxxpredictiveMedium
35Filexxxxxxxxx/xxxxxxxx.xxxpredictiveHigh
36Filexxxxx.xxxpredictiveMedium
37Filexxxxxx/xxxxx/xxxx.xxxpredictiveHigh
38Filexxxxxx.xpredictiveMedium
39Filexxxxxxxx.xxxpredictiveMedium
40Filexxxxxxx.xpredictiveMedium
41Filexxxxxx.xpredictiveMedium
42Filexxxxxxxxxx.xxxpredictiveHigh
43Filexxxxxx.xpredictiveMedium
44Argument$_xxxpredictiveLow
45Argument$_xxxxpredictiveLow
46Argument$_xxxx['xx']predictiveMedium
47ArgumentxxxxxpredictiveLow
48ArgumentxxxpredictiveLow
49ArgumentxxxxxpredictiveLow
50ArgumentxxxxxpredictiveLow
51ArgumentxxxpredictiveLow
52Argumentxx_xxxxxxxxxxxxx_xxpredictiveHigh
53ArgumentxxxxpredictiveLow
54ArgumentxxxxxxxxxxpredictiveMedium
55ArgumentxxxxxxxpredictiveLow
56ArgumentxxxxxpredictiveLow
57Argumentxxxxxx_xxxxxxxxpredictiveHigh
58ArgumentxxxxxpredictiveLow
59ArgumentxxxxxpredictiveLow
60ArgumentxxxxxxpredictiveLow
61Argumentxxxxx_xxxxxxxx_xxxxx_xx/xxxxx_xxxxxxxx_xxpredictiveHigh
62ArgumentxxpredictiveLow
63Argumentxx/xxx/xxxxxpredictiveMedium
64ArgumentxxxpredictiveLow
65ArgumentxxxxxpredictiveLow
66Argumentxxxxx/xxpredictiveMedium
67Argumentxxxxxxx_xxpredictiveMedium
68ArgumentxxxxxxxxxxxpredictiveMedium
69ArgumentxxxxxxxxxpredictiveMedium
70Argumentxxxx xxxxxx/xxxxxxxxxpredictiveHigh
71ArgumentxxxxpredictiveLow
72ArgumentxxxxxxxxxxxxxxxxxxxxpredictiveHigh
73Argumentxxxxxxxxx/xxxxxxxxxxxpredictiveHigh
74ArgumentxxxpredictiveLow
75ArgumentxxxxpredictiveLow
76ArgumentxxxxxxxxpredictiveMedium
77Argumentx-xxxxxxxxx-xxxpredictiveHigh
78Input Valuexxxxxxx(xxxxxxxxxx)predictiveHigh

References (2)

The following list contains external sources which discuss the actor and the associated activities:

Might our Artificial Intelligence support you?

Check our Alexa App!